ddaas wrote:
Hi there,
Yahoo starts blocking e-mails from our server.
It is possible that someone/somehow is sending spams.
Please help me find what is sending spam from our server.
First please explain to me the following logs (ourdomain is hosted on
our server):
Feb 3 14:45:57 softexp postfix/smtpd[23394]: NOQUEUE: reject: RCPT from
unknown[117.87.x.x]: 554 5.7.1 Service unavailable; Client host
[117.87.x.x] blocked using sbl-xbl.spamhaus.org;
http://www.spamhaus.org/query/bl?ip=117.87.x.x; from=<x...@yahoo.com.au>
to=<experienceoff...@ourdomain.ro> proto=ESMTP helo=<PC-200901111752>
Your system rejects a message because the client is listed at
spamhaus. Good.
Feb 3 14:45:58 softexp postfix/smtp[23424]: 56966AC86D:
to=<x...@yahoo.com.au>, relay=d.mx.mail.yahoo.com[66.196.82.7]:25,
delay=7.6, delays=0/0.01/7.6/0, dsn=4.7.0, status=undeliverable (host
d.mx.mail.yahoo.com[66.196.82.7] refused to talk to me: 421 4.7.0 [TS02]
Messages from 80.96.148.194 temporarily deferred due to user complaints
- 4.16.56.1; see http://postmaster.yahoo.com/421-ts02.html)
You've configured your server to verify sender addresses.
Apparently Yahoo doesn't like it, and refuses to answer.
The output of postconf -n:
smtpd_recipient_restrictions = permit_mynetworks
permit_sasl_authenticated reject_unauth_destination check_sender_access
hash:/usr/local/etc/postfix/access_sender check_helo_access
pcre:/usr/local/etc/postfix/helo_checks reject_non_fqdn_recipient
reject_unknown_recipient_domain reject_unverified_recipient
reject_rbl_client list.dsbl.org, reject_rbl_client sbl-xbl.spamhaus.org,
reject_rhsbl_sender dsn.rfc-ignorant.org permit
Note that list.dsbl.org is no longer active. Remove it.
Rather than sbl-xbl.spamhaus.org, you might want to use
zen.spamhaus.org as it's more effective.
smtpd_sender_restrictions = reject_unknown_sender_domain,
reject_non_fqdn_sender, reject_unverified_sender, permit
remove "reject_unverified_sender" or move it to
smtpd_data_restrictions. Probably better to remove it.
-- Noel Jones
