On Aug 23, 2013, at 10:01, Barbara M. <barb...@rfx.it> wrote: > Probably trivial, but I am in holiday and using an emergency connection, so I > ask instead of searching again. > Problem: a website in a multidomain server is spamming probably due to a bug > in the site code. > The owners are also in holiday; I can't stop the website; I can't stop > postfix :-( > > All mail are from or to an address like s...@domaincustomer.com > > I need to block these mails > > Tried http://www.ericmichaelstone.com/?p=4382 and similar using > > smtpd_sender_restrictions = check_sender_access > hash:/etc/postfix/sender_access > smtpd_recipient_restrictions = check_recipient_access > hash:/etc/postfix/recipient_access > > Added > s...@domaincustomer.com REJECT > > to both files. > but seems not work for local sender. > > Where is my mistake? > > Thanks, B. > > > # rpm -q postfix > postfix-2.6.6-2.2.el6_1.i686
The 'smtpd_sender_restrictions' does not apply because it never touches that, being submitted locally. The simplest solution may be to find the offending code, and comment out the mail function. Assuming that this is a shared hosting server running some control panel and PHP for the site code, that is. Or even revoking permissions on the page that has the abused form on it. All other options I can think of right now require newer Postfix versions. Perhaps someone else has a better idea. Mvg, Joni
