On Tue, Oct 15, 2024 at 16:03:13 +0100, Paul Fowler via Postfix-users wrote:
Are there best practices for avoid OS username enumeration on a mail relay?
On 16.10.24 23:54, Geert Hendrickx via Postfix-users wrote:
Just set local_recipient_maps appropriately, without unix:passwd.byname if you
don't need it.
I set it to $alias_maps plus an inline:{} list of actual local mail recipients.
note that if local_recipient_maps is empty, it disables recipient checking
- you may generate bounces for mail to non-existing users.
But if it's non-empty, postfix will reject mail for local addresses not in
local_recipient_maps
- but mail recipient enumeration is still possible.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Atheism is a non-prophet organization.
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
