Hello. Thanks!...Your tip Works great!
One question more: ....You said ".example.com" (with point) What is the difference....includes subdomains? > > == sender_reject > example.com REJECT authentication required > .example.com REJECT authentication required > Thanks Josep El dom, 27-12-2009 a las 20:47 +0100, mouss escribió: > Josep M. a écrit : > > Hello. > > > > In lasts days one spammer had fun with my email address sending me > > hundresds of emails, most of them rejected by postfix anti-spam > > measures, but not all. > > > > I will explain the spammer send from internet (without authentication): > > > > from: websurfer at navegants.com > > to: websurfer at navegants.com > > > > I have saslauthd running ok, and noboby can send outside the network > > without auth (except localhost), but....Do I need something for that one > > IP from internet can't send email "from me to me" without > > authentication? > > > > > > depends what ou mean by "from:" > > if it's the From: header, then there's nothing you can do. check the > mail you posted to the list and you'll see that it has your address in > the "From:" header. > > if you mean the envelope sender (MAIL FROM command), then you can do > different things. For example, > > smtpd_recipient_restrictions = > permit_mynetworks > permit_sasl_authenticated > reject_unauth_destination > check_sender_access hash:/etc/postfix/restricted_sender > ... > > == sender_reject > example.com REJECT authentication required > .example.com REJECT authentication required > > > PS. Please put the check_sender_access AFTER reject_unauth_destination. > (sorry for shouting, but it's for your safety!). >
