On Sat, Oct 22, 2016 at 03:18:36PM +0900, Tomoyuki Murakami wrote: > On Fri, 21 Oct 2016 22:15:32 +0200, Paul van der Vlis wrote: > > Hello, > > > Some settings and logs: > > > > smtpd_relay_restrictions = > > permit_mynetworks, > > permit_sasl_authenticated, > > check_sender_access hash:/etc/postfix/whitelist, > > reject_invalid_hostname, > > reject_non_fqdn_sender, > > reject_non_fqdn_recipient, > > reject_unknown_sender_domain, > > reject_unknown_recipient_domain, > > reject_unauth_pipelining, > > reject_unauth_destination, > > check_policy_service unix:private/shadelist, > > reject_rbl_client bl.spamcop.net, > > reject_rbl_client zen.spamhaus.org, > > reject_rbl_client ix.dnsbl.manitu.net, > > permit > > permit after all ?
Hummm. In networking firewall rules it common[1] to have a couple of deny rules with an allow rule closing such groups. Rereading http://www.postfix.org/SMTPD_ACCESS_README.html did not show any "closing permit". Should "closing 'permit' lines" be removed from live configurations? Groeten Geert Stappers [1] Common sense is the least common sense of all :-( -- Leven en laten leven
