i've been really trying to tighten up spam rejection after getting lots of
complaints from users. I've added a bunch of things to the main.cf
for doing rejects, I'm not having any trouble sending email, but one of my
clients is and they are authenticating and I have
permit_sasl_authenticated all over the place. I have the log entry
and the relevent configuration, below.
Nov 17 22:04:35 canon postfix/smtpd[5847]: NOQUEUE: reject: RCPT from
unknown[202.130.114.130]: 450 4.7.1 Client host rejected: cannot find your
hostname, [202.130.114.130]; from=<i...@hankbeebe.com>
to=<amttoor...@hailirowa5.org> proto=SMTP helo=<abc.com>
smtpd_recipient_restrictions = permit_sasl_authenticated,
permit_mynetworks,
reject_unauth_destination,
reject_invalid_hostname,
reject_unknown_sender_domain,
reject_unknown_recipient_domain,
reject_unauth_pipelining,
reject_rbl_client bl.spamcop.net,
reject_rbl_client zen.spamhaus.org,
reject_rbl_client,b.barracudacentral.org
smtpd_client_restrictions = permit_sasl_authenticated,
permit_mynetworks,
reject_unknown_client,
reject_invalid_hostname,
reject_non_fqdn_sender,
reject_non_fqdn_recipient,
reject_unknown_sender_domain,
reject_unknown_recipient_domain,
reject_unauth_pipelining,
reject_unauth_destination,
reject_rbl_client bl.spamcop.net,
reject_rbl_client zen.spamhaus.org,
reject_rbl_client b.barracudacentral.org
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks,
reject_invalid_helo_hostname,
reject_non_fqdn_helo_hostname,
reject_unknown_helo_hostname
smtpd_sender_restrictions =
check_sender_access regexp:/etc/postfix/amavis.tag_as_originating.re
permit_mynetworks
permit_sasl_authenticated
permit_tls_clientcerts
