Re: connect then disconnect; backscatter?

Sat, 17 Apr 2021 13:38:55 -0700 


On Sat, 17 Apr 2021 14:35:37 +0200
Benny Pedersen <m...@junc.eu> wrote:

> On 2021-04-17 09:58, li...@lazygranch.com wrote:
> > I am getting a lot of these:
> > 
> > Apr 17 07:27:10 mydomain postfix/smtpd[21897]: connect from
> > mone183.secundiarourous.com[141.98.10.183]
> > Apr 17 07:27:11 mydomain postfix/smtpd[21897]: disconnect from
> > mone183.secundiarourous.com[141.98.10.183] ehlo=1 auth=0/1 quit=1
> > commands=2/3
> 
> https://docs.iredmail.org/enable.smtp.auth.on.port.25.html
> 
> have you enabled sasl on port 25 ?
> 
> dont do this if you have
> 
> its a common mistake
> 
> smtpd_sasl_auth_enable = yes is not ment for being in main.cf
> 
> sorry if i read auth=0/1 incorrect


I do have "smtpd_sasl_auth_enable = yes" and I use port 587. Before I
comment out that line, here is the general area of my main.cf dealing
with sasl. I cut out my rbls but otherwise this is what I use. Any other
problems?
-------
unknown_client_reject_code = 550
# SASL
smtpd_sasl_type = dovecot
broken_sasl_auth_clients = yes
smtpd_helo_required = yes
smtpd_sasl_path = private/auth
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_recipient_restrictions =
  permit_sasl_authenticated,
  permit_mynetworks,
  reject_unauth_destination,
  reject_unauth_pipelining,
  reject_non_fqdn_sender,
  reject_unknown_sender_domain,
  reject_unknown_recipient_domain,
  reject_non_fqdn_recipient,
  check_client_access hash:/etc/postfix/client_checks,
  check_sender_access hash:/etc/postfix/sender_checks,
  reject_rbl_client SOMERBLS,
  check_policy_service unix:private/policy
smtpd_client_restrictions =
  permit_sasl_authenticated,
  permit_mynetworks,
  reject_unauth_destination,
  check_reverse_client_hostname_access pcre:/etc/postfix/fqrdns.pcre,
  reject_unknown_reverse_client_hostname,
  check_client_access hash:/etc/postfix/spamsources
smtpd_sender_restrictions =
  permit_sasl_authenticated,
  permit_mynetworks,
  reject_unauth_destination,
  reject_unknown_address,
  check_sender_access hash:/etc/postfix/spamsources
smtpd_relay_restrictions =
  permit_sasl_authenticated,
  permit_mynetworks,
  reject_unauth_destination,
  check_policy_service unix:private/policy























					Reply via email to