Sorry for the delay, but the scanner had network issues and could not re-scan
the MTA
It turns out that the scanner is in the subnets defined by "mynetworks"
But here is the interesting part: all the message attempts made by the scanner
were rejected. I went through the logs with a fine-toothed comb and verified
this. The stoooopid scanner is NOT seeing the rejections. I may need to
wireshark this before submitting a bug report to Tenable.
I will keep the list informed as stuff happens.
-----Original Message-----
From: <owner-postfix-us...@postfix.org> on behalf of Daniel White
<daniel.e.wh...@nasa.gov>
Date: Friday, October 29, 2021 at 10:22
To: "postfix-users@postfix.org" <postfix-users@postfix.org>
Subject: [Non-NASA Source][EXTERNAL] Re: Nessus says I have an open relay
AFAIK, it is on a different subnet than the ones in "mynetworks"
I can triple check with the team that runs them.
-----Original Message-----
From: <owner-postfix-us...@postfix.org> on behalf of Matus UHLAR - fantomas
<uh...@fantomas.sk>
Date: Friday, October 29, 2021 at 06:40
To: "postfix-users@postfix.org" <postfix-users@postfix.org>
Subject: [EXTERNAL] Re: Nessus says I have an open relay
On 29.10.21 10:33, White, Daniel E. (GSFC-770.0)[NICS] wrote:
>Nessus Plugin 10167: NTMail3 Arbitrary Mail Relay
>TCP post 25
[...]
>Nessus Plugin 11852: MTA Open Mail Relaying Allowed (thorough test)
>TCP port 25
>Plugin Output:
>Nessus was able to relay mails by sending those sequences :
[...]
>mynetworks = 127.0.0.0/8 <and other IP subnets>
is it possible that IP of your nessus server is here?
