Viktor Dukhovni via Postfix-users <[email protected]> wrote:
>
> On Wed, Feb 11, 2026 at 04:01:53PM +0100, Michael Grimm via Postfix-users
> wrote:
>>> 1. Either remove from virtual_mailbox_domains, or equally good approach
>>> add access rules to prevent misuse.
>>
>> removed
> As a final tweak, you should probably also reject attempts to use that
> internal name as an envelope sender domain. This does require a couple
> of access(5) entries.
>
> main.cf:
> indexed = ${default_database_type}:${config_directory}/
> smtpd_sender_restrictions =
> check_sender_access ${indexed}sender_access
>
> sender_access:
> dom.example reject
> .dom.example reject
I happened to have a check_sender_access entry in smtpd_recipient_restrictions
for blacklisting. Thus, I just needed to add your entries to it. And it worked
as expected:
EDN-mail> telnet 10.0.1.1 25
Trying 10.0.1.1...
Connected to mail.mwn.ellael.lan.
Escape character is '^]'.
220 mx1.enfer-du-nord.net ESMTP Postfix
HELO mx3.enfer-du-nord.net
250 mx1.enfer-du-nord.net
MAIL FROM: <[email protected]>
250 2.1.0 Ok
RCPT TO: <[email protected]>
554 5.7.1 <[email protected]>: Sender address rejected: RFC 1918 address
space violation
quit
221 2.0.0 Bye
Connection closed by foreign host.
Thanks for all your efforts in getting my setup better and regards,
Michael
_______________________________________________
Postfix-users mailing list -- [email protected]
To unsubscribe send an email to [email protected]
