David Cottle wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi All,
I now have added dnswl to my config to whitelist.
Can I get some comments it looks okay please?
smtpd_client_restrictions = check_client_access
hash:/etc/postfix/whitelist, check_sender_access
hash:/etc/postfix/check_backscatterer, check_sender_access
hash:/etc/postfix/check_spamcannibal, check_client_access
cidr:/etc/postfix/postfix-dnswl-permit, reject_rbl_client
bl.spamcop.net, reject_rbl_client zen.spamhaus.org, reject_rbl_client
b.barracudacentral.org
I want my whitelist run first and anyone on it gets to the end
I then want to remove those pesky backscatters to <>, postmaster and
MAILER_DAEMON
I then want to run my postfix-dnswl-permit
And then onto the RBLs
Looks OK from here. As I said before, I would be surprised if
"postmaster" or "MAILER_DAEMON" ever match anything, but
leaving them does no harm.
postconf -n
smtpd_sender_restrictions = check_sender_access
hash:/var/spool/postfix/plesk/blacklists, reject_non_fqdn_sender
What's in this blacklist? You may want to list your client
whitelist before the blacklist.
It's also common (but not required) to list permit_mynetworks
before these checks to exempt local mail.
-- Noel Jones
