On 10/15/24 16:52, Bill Cole via Postfix-users wrote:
Unless you've intentionally enabled EXPN in your config, you probably have not done anything really wrong but not all defaults are ideal. There are some non-defaults which will break SOME enumeration attempts: main.cf: smtpd_reject_unlisted_sender = yes disable_vrfy_command = yes
What version of nmap do you have? In my case nmap used RCPT TO for checking recipients, so disabling VRFY is of no help:
Oct 15 16:44:25 cheems postfix/smtpd[1051067]: disconnect from x.x.x.x[x.x.x.x]:46118 ehlo=1 mail=1 rcpt=10 quit=1 commands=13
As for smtpd_reject_unlisted_sender, it won't help for address that is not in local, virtual or relay address class: https://www.postfix.org/ADDRESS_CLASS_README.html#classes _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
