> "MU" == Matus UHLAR <- fantomas via Postfix-users
> > writes:
MU> I have tried to explain it before: you should not use DNSBLs in
MU> submission/smtps services, as you can expect many your clients to
MU> connect from shared or dynamic IP addresses, which are surelly listed
On 05.02.24 16:59, Mark via Postfix-users wrote:
Hi again Matus, oh, now I got it!
After your reply, I now have in my master.cf ($mua_*);
submission inet n - y - - smtpd
-o smtpd_sasl_auth_enable=yes
-o smtpd_tls_auth_only=yes
-o smtpd_sender_restrictions=$mua_s
Hi again Matus, oh, now I got it!
After your reply, I now have in my master.cf ($mua_*);
submission inet n - y - - smtpd
-o smtpd_sasl_auth_enable=yes
-o smtpd_tls_auth_only=yes
-o smtpd_sender_restrictions=$mua_sender_restrictions
-o smtpd_recipient_restrict
On 05.02.24 15:46, Mark wrote:
Thanks for the idea below. I'm going to try wrapping them in $mua in main.cf
.
However, you said;
"Looking at your smtpd_recipient_restrictions and using reject_rbl_client,
you need to override them too."
I really didn't get this, by "overriding" could you explai
Hi Matus,
Thanks for the idea below. I'm going to try wrapping them in $mua in main.cf
.
However, you said;
"Looking at your smtpd_recipient_restrictions and using reject_rbl_client,
you need to override them too."
I really didn't get this, by "overriding" could you explain further please
where
On 04.02.24 22:06, Mark via Postfix-users wrote:
->"Best practice is to require submission users sending outbound mail do so
via ports 465 and/or 587."
Indeed here, I'm able to connect my smtp service *only* through;
port 465 - SSL only
port 587 - TLS only
Authentication/login is not enabled on
Hi again Viktor,
->"Best practice is to require submission users sending outbound mail do so
via ports 465 and/or 587."
Indeed here, I'm able to connect my smtp service *only* through;
port 465 - SSL only
port 587 - TLS only
Authentication/login is not enabled on port 25,
however port 25 is stil
On Sun, Feb 04, 2024 at 01:22:45PM +0200, Mark via Postfix-users wrote:
> Is it better to list reject_unauth_destination after;
>
> permit_mynetworks,
> permit_sasl_authenticated,
>
> Or before these? And why?
Best practice is to require submission users sending outbound mail do so
via ports 46
Hi Victor,
Thanks so much for very useful and informative reply and opinions, much
appreciated!
I'm using Postfix 3.7.9 (with Dovecot through LMTP, and virtual users in
MySQL).
Regarding 'smtpd_relay_before_recipient_restrictions', I don't have it
explicitly set in main.cf, it's as the default.
On Fri, Feb 02, 2024 at 08:26:20AM +0300, Mark via Postfix-users wrote:
> I'm trying to adjust my smtpd_recipient_restrictions so that any emails
> coming to a non-existent account on my server would be rejected BEFORE the
> attempt reaches RBLs/RBL queries.
If you're using Postfix 3.6 or later,
10 matches
Mail list logo
