Creating exceptions to greylisting

Sat, 02 Feb 2013 08:26:43 -0800 

I have set up my smtpd restrictions as follows:

smtpd_client_restrictions = permit_mynetworks permit_sasl_authenticated 
check_sender_access hash:/etc/postfix/whitelist reject_rbl_client 
zen.spamhaus.org permit
smtpd_recipient_restrictions = permit_sasl_authenticated permit_mynetworks  
reject_unauth_destination check_policy_service unix:private/policy permit

Now, when some larger institutions, like Facebook and Amazon try to send mail, 
it fails. For Amazon, they react to a 4xx error as to a 5xx error, they never 
try to resend. Facebook presents me with another problem,

Feb  2 16:59:40 vanroodewierda postfix/smtpd[17722]: connect from 
outmail023.snc4.facebook.com[66.220.144.157]
Feb  2 16:59:41 vanroodewierda postfix/smtpd[17722]: NOQUEUE: reject: RCPT from 
outmail023.snc4.facebook.com[66.220.144.157]: 450 4.7.1 
<faceb...@masteringarchimate.com>: Recipient address rejected: Service is 
unavailable; from=<password+kjdph3k_-...@facebookmail.com> 
to=<faceb...@masteringarchimate.com> proto=ESMTP helo=<mx-out.facebook.com>
Feb  2 16:59:46 vanroodewierda postfix/smtpd[17722]: disconnect from 
outmail023.snc4.facebook.com[66.220.144.157]
Feb  2 17:06:56 vanroodewierda postfix/smtpd[18015]: connect from 
outmail016.snc4.facebook.com[66.220.144.150]
Feb  2 17:06:57 vanroodewierda postfix/smtpd[18015]: NOQUEUE: reject: RCPT from 
outmail016.snc4.facebook.com[66.220.144.150]: 450 4.7.1 
<faceb...@masteringarchimate.com>: Recipient address rejected: Service is 
unavailable; from=<password+kjdph3k_-...@facebookmail.com> 
to=<faceb...@masteringarchimate.com> proto=ESMTP helo=<mx-out.facebook.com>
Feb  2 17:07:02 vanroodewierda postfix/smtpd[18015]: disconnect from 
outmail016.snc4.facebook.com[66.220.144.150]

Every next time the attempt is made, it is made from a different server, so 
until I have they whole farm of facebook in my DB it will not pass.

So, I need a whitelist. But how?

I tried adding something to client restrictions, but that does not work. I 
obviously need something in the list of recipient restrictions. How can I tell 
postfix to accept mail from facebook (above example) or Amazon (in general), 
preferably with some form of regular expressions?

Thanks,

G

Reply via email to