When I first set up my home mail server I mashed several "postfix
recipies" to get my working system. Not knowing why, this line
made it into main.cf.
smtpd_relay_restrictions = \
permit_mynetworks, permit_sasl_authenticated
I have no need to relay mail from anywhere except my own network
and I don't authenticate for that. I do get 500-1000 daily attempts
to relay but because I never set up an SASL Authentication Server,
none can ever authenticate.
I'd like to get rid of the "permit_sasl_authenticated" setting,
perhaps rejecting relay attempts earlier. But I'm hesitant that
I may be creating a relay server due to other settings.
Another current setting that may be pertinent is
smtpd_sender_restrictions = permit_mynetworks \
reject_non_fqdn_sender reject_unknown_sender_domain
Suggestions or advice on getting rid of the SASL settings, still
allowing relay from my private network, yet not an open relay?
Thanks, Jon
