* Janis: > Should I install amavis? It seems so trivial to block spam which > pretend to be sent as a spoofed message from oneself but yet I can't > block it.
Postfix's check_sender_access suffices to block forged envelope (!) sender addresses: # pcre:/etc/postfix/sender_access /\bi(yourdomain|yourotherdomain)\.tld$/ REJECT That should be combined with only allowing authenticated email via port 587 (submission). While this does not prevent somebody forging the "From" header, an adversary won't be able to forge a DKIM signature for said header. -Ralph
