My daily run output (freebsd) sent this message (in part) for today.
Mail in submit queue:
-Queue ID- --Size-- ----Arrival Time---- -Sender/Recipient-------
27FC0118B7AF 9831 Tue May 21 14:29:35 MAILER-DAEMON
(host eforward3.registrar-servers.com[38.101.213.199] said: 450 4.1.1
<arthri...@andrite.com>: Recipient address rejected: unverified address:
unknown user: "arthri...@andrite.com" (in reply to RCPT TO command))
arthri...@andrite.com
45C9A118B7AD 10261 Mon May 20 19:14:02 MAILER-DAEMON
(host eforward3.registrar-servers.com[38.101.213.199] said: 450 4.1.1
<medicalbillingandcodingeducat...@magical-menagerie.net>: Recipient address
rejected: unverified address: unknown user:
"medicalbillingandcodingeducat...@magical-menagerie.net" (in reply to RCPT TO
command))
medicalbillingandcodingeducat...@magical-menagerie.net
So, I go and sure enough they are in the queue.
# postsuper -h 27FC0118B7AF
postsuper: 27FC0118B7AF: placed on hold
postsuper: Placed on hold: 1 message
So I go and check the maillot for yesterday and this is what I find.
May 21 14:29:35 mail postfix/cleanup[81455]: 27FC0118B7AF:
message-id=<20130521202935.27fc0118b...@mail.covisp.net>
May 21 14:29:35 mail postfix/bounce[81551]: 3F635118B777: sender non-delivery
notification: 27FC0118B7AF
May 21 14:29:35 mail postfix/qmgr[68570]: 27FC0118B7AF: from=<>, size=9831,
nrcpt=1 (queue active)
May 21 14:29:38 mail postfix/smtp[81526]: 27FC0118B7AF: host
eforward2.registrar-servers.com[209.105.246.195] said: 450 4.1.1
<arthri...@andrite.com>: Recipient address rejected: unverified address:
unknown user: "arthri...@andrite.com" (in reply to RCPT TO command)
And now I'm concerned, where did this mail come from, how do I have it, why is
there no from?
Then there are many 450 errors which I guess are the receiver treating unknown
user as a transient error which seems odd, but that's well out of my control.
The other message appears to be much the same as the first.
I'm obviously concerned there's some sir to of backscatter error, or something
else that is using my server as some sort of relay/reflector.
Postfix 2.8.14
$ postconf -n
alias_database = hash:$config_directory/aliases
alias_maps = hash:$config_directory/aliases,
hash:/usr/local/mailman/data/aliases
allow_percent_hack = no
body_checks = pcre:$config_directory/body_checks.pcre
bounce_size_limit = 10240
command_directory = /usr/local/sbin
config_directory = /etc/postfix
daemon_directory = /usr/local/libexec/postfix
data_directory = /var/db/postfix
debug_peer_level = 2
disable_vrfy_command = yes
header_checks = pcre:$config_directory/header_checks.pcre
header_size_limit = 10240
home_mailbox = Maildir/
html_directory = /usr/local/share/doc/postfix
inet_interfaces = all
mail_owner = postfix
mailbox_command = /usr/local/bin/procmail -t -a $EXTENSION
mailbox_size_limit = 52428800
mailq_path = /usr/local/bin/mailq
manpage_directory = /usr/local/man
maps_rbl_reject_code = 521
message_size_limit = 26214400
mime_header_checks = pcre:$config_directory/mime_headers.pcre
mydestination = $myhostname, localhost.$mydomain, $mydomain, localhost,
ns1.$mydomain, ns2.$mydomain, mail.$mydomain, www.$mydomain, webmail.$mydomain
mydomain = covisp.net
myhostname = mail.covisp.net
mynetworks = 75.148.117.88/29, 127.0.0.0/8
myorigin = $mydomain
newaliases_path = /usr/local/bin/newaliases
postscreen_access_list = permit_mynetworks,
cidr:$config_directory/postscreen_access.cidr
postscreen_dnsbl_action = enforce
postscreen_dnsbl_sites = zen.spamhaus.org*2
postscreen_greet_action = enforce
queue_directory = /var/spool/postfix
readme_directory = /usr/local/share/doc/postfix
recipient_delimiter = +
sample_directory = /usr/local/etc/postfix
sendmail_path = /usr/local/sbin/sendmail
setgid_group = maildrop
show_user_unknown_table_name = no
smtpd_banner = $myhostname ESMTP $mail_name $mail_version
smtpd_data_restrictions = reject_unauth_pipelining,
reject_multi_recipient_bounce, check_sender_access
hash:$config_directory/backscatter permit
smtpd_error_sleep_time = 28
smtpd_hard_error_limit = 8
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks, reject_invalid_helo_hostname,
reject_non_fqdn_helo_hostname, permit
smtpd_recipient_limit = 100
smtpd_recipient_restrictions = reject_non_fqdn_sender,
reject_non_fqdn_recipient, reject_unknown_sender_domain,
reject_invalid_hostname, permit_mynetworks, permit_sasl_authenticated,
reject_unauth_destination, reject_unlisted_recipient, reject_unlisted_sender,
reject_unknown_reverse_client_hostname, warn_if_reject
reject_unknown_client_hostname, check_client_access
cidr:/var/db/dnswl/postfix-dnswl-permit check_sender_access
pcre:$config_directory/sender_access.pcre, check_client_access
pcre:$config_directory/check_client_fqdn.pcre, check_recipient_access
pcre:$config_directory/recipient_checks.pcre, check_client_access
hash:$config_directory/access, permit
smtpd_sender_restrictions = permit_sasl_authenticated, permit_mynetworks
smtpd_soft_error_limit = 4
smtpd_starttls_timeout = 90s
smtpd_tls_cert_file = /etc/postfix/server.pem
smtpd_tls_key_file = $smtpd_tls_cert_file
smtpd_tls_loglevel = 2
smtpd_tls_security_level = may
smtpd_tls_session_cache_database = btree:$data_directory/smtpd_sessions
smtpd_tls_session_cache_timeout = 1800s
soft_bounce = no
swap_bangpath = no
transport_maps = hash:/etc/postfix/transport
undisclosed_recipients_header = To: List of Bcc addresses:;
unknown_local_recipient_reject_code = 550
virtual_alias_domains = kreme.com
virtual_alias_maps = hash:$config_directory/virtual
pcre:$config_directory/virtual.pcre,
pcre:$config_directory/virtual_sql.pcre,
proxy:mysql:$config_directory/mysql_virtual_alias_maps.cf
virtual_gid_maps = static:89
virtual_mailbox_base = /usr/local/virtual
virtual_mailbox_domains =
proxy:mysql:$config_directory/mysql_virtual_domains_maps.cf
virtual_mailbox_maps =
proxy:mysql:$config_directory/mysql_virtual_mailbox_maps.cf
virtual_minimum_uid = 89
virtual_transport = procmail
virtual_uid_maps = static:89
--
"I'm just like every modern woman trying to have it all. A loving
husband, a family. I only wish I had more time to seek out the dark
forces and join their hellish crusade."
