Thanks, I'll check postfwd in details too and see what fits best to my use
case.
All the best,
François
>As far as I know, "msmtp" can be used >as a replacement for
>/usr/sbin/sendmail to submit mail via >SMTP instead of writing it directly
to
>the queue
That was a suggestion of Viktor too, but I did not investigated further
after reading the outdated description of a piece of software that seemed
o
sible. I was trying to find a single centralized solution for mail
throttling with proper reporting of abuse.
Le mer. 4 janv. 2023, à 00 h 37, Viktor Dukhovni
a écrit :
> On Wed, Jan 04, 2023 at 12:25:47AM -0500, Hébergement Arbre Binaire wrote:
>
> > I don't know if this cou
>The real "only" way to enqueue mail for local delivery via Postfix is
>postdrop(1), which is "setgid" to a group that can write to the
>"maildrop" queue. If you set "authorized_submit_users" to a restricted
>set of trusted system accounts, then all users would have to use your
>shim, a postdrop(1
>Otherwise, the script can just send mail directly
As far as my experience goes, abusive scripts depend on the local MTA to
relay abusive mail. They would need to crack two hosts instead of a single
one to route bad mail.
Maybe I should ask another question: is sendmail the ONLY way for a local
>If submission rate limits are required, use SMTP instead of the Postfix
sendmail command.
Aside from creating a "shim" of some sort to catch sendmail calls made by
random malicious scripts and that uses SMTP to route mail to the local MTA,
I don't see any solution. It's a bit above my paygrade s
I really appreciate your (very) thorough answer. I'll use it to search for
a solution or devise a homemade one.
The problem I'm describing affects so many web hosts... I'm surprised that
this security problem has not been circumvented in any reliable way. I
understand Postfix cannot fix alone t
First part of my question:
I successfully could limit outbound emails sent from remote clients using
this main.cf testing configuration:
anvil_rate_time_unit = 60s
smtpd_client_message_rate_limit = 1
This conf, however, cannot limit clients sending emails from within the
host. I then found this
