On Jun 11, 2012, at 15:00, tobi wrote: > Am 11.06.2012 13:17, schrieb DTNX Postmaster: >> Also, since it seems you are trying to block the use of address >> literals; the use of these is perfectly valid according to spec, so it >> may be a good idea to adjust your message somewhat, and explain; >> >> /^\[.*\]$/ >> REJECT address literals not accepted from non-client hosts > I always thought in helo_name a fqdn has to be provided according to spec. > This check is not for recipient or sender but just for the helo name the > client sends. > > But thanks for putting my on the right track. I just created a cidr map with > client ips which should not be helo checked. I put this map before my helo > checks and it works fine
A fully-qualified domain name is indeed required. You can enforce this by including the following check; http://www.postfix.org/postconf.5.html#reject_non_fqdn_helo_hostname There is however a special exception for systems without a domain in the spec, see; http://tools.ietf.org/html/rfc5321#section-4.1.3 Which is why Postfix does not provide for a way to block them, as they are technically correct. Cya, Jona
