Hadmut Danisch:
> Hi,
>
> I'm getting tons of spam with mail senders or helo names from TLDs like
> .date, e.g.
>
> Received: from koan-shf.date (unknown [78.129.179.127]) by...
>
> where the domain names (here: koan-shf.date) rapidly change and are
> obviously randomly generated. IP addresses also change daily.
>
> I'd therefore like to block TLDs like .date or .loan, which currently
> does not work with postfix. Following it's manpage 5 access, the
> block lists for mails and sender machines need at least? .domain.tld,
> i.e. two domain components.
I don't know if that restriction still exists, but you can match
arbitrary names with with PCRE tables.
/etc/postfix.main.cf:
smtpd_helo_restrictions = pcre:/etc/postfix/tld_access.pcre
/etc/postfix/tld_access.pcre:
/\.date$/ reject no dates here
/\.loan$/ reject no loans here
> This made sense as long as we had country code and the old generic TLDs
> like com and gov, but not anymore since ICANN allowed any nonsense to be
> registered as a TLD.
>
>
> I'd like to propose to allow? one component queries for mail addresses
> and hostnames in access lists as well.?
>
>
>
> regards
>
> Hadmut
>
>
>
>
>
