> I've seen everything set up per the documents and all the online tests > showing that i'm not an open relay. I have no need for external > sendmail and I've used all the proper configs and all the suggestions > on the list, and I still get some guy with watches for sale who can > send mail anyway. When I asked on the list, I was told post my logs > etc, which would be very handy for a spammer probably reading this > list.
Filter out your IP's and replace them with "x.x.x.x". I believe that was mentioned several times. Then filter out the recipient domain names, replace it with example.com. Then filter out any other internal stuff that will identify the machine. Now, with filter, it doesn't mean remove each line you think is irrelevant, it means replacing it with meaningless data that can still be used to identify the original intent. Providing this information doesn't help the spammers at all. > > What I would like to due is block all sendmail to any address other > than those in the virtual file and those originating from localhost. I > have no legitimate users that should be able to send anything from the > machine. > Email is originating from that machine somehow. It could be an act of religion or magic. As such, the best thing to do in that case is for us to guess, at best. > I figured it's be pretty easy, say have some file like used in the > various popauth schemes. If the IP address of the connection in not in > the list, NO relay. It wasn't. Strict 822RFC is set and it doesn't > stop the guy from sending from <> Still, there is little people on this list can do to help you without the additional information.
