Am 01.04.2011 09:47, schrieb Vincent Lefevre: >> Where helo_access contains my own IPs and hostnames. >> >> This setup will reject an AMAZING amount of spam. >> Fair warning: it may also yield the occasional false positive due to a >> misconfigured client mail system! >> The usual warn_if_reject will help out with that. > > I really think it is a bad idea to use reject_unknown_helo_hostname. > Some machines sending mail are on a local network, so that resolving > their hostname doesn't make sense outside this network. The main > goal of the EHLO hostname being for logging purpose (to identify > the machine), the easiest solution may be to give the hostname (the > alternate solution of giving the local IP address isn't a good idea > if the address is dynamical)
your users has to use SASL and are not affected as long your machine is useable configured, every other out there dealing directly as MTA has to have a PTR, A-Record and correct HELO(EHLO
signature.asc
Description: OpenPGP digital signature
