I'm following a discussion on another list regarding a Communigate
gateway that is rejecting spoofed "MAIL FROM" before "RCPT TO" is
received. I posted a sample SMTP exchange showing that Postfix rejects
spoofed senders (via reject_unlisted_sender) after the "RCPT TO" stage:
220 mail.inetmsg.com
Wietse Venema wrote:
> Bill Landry:
>> I'm following a discussion on another list regarding a Communigate
>> gateway that is rejecting spoofed "MAIL FROM" before "RCPT TO" is
>> received.
>
> This is perfectly legitimate usage of SMTP. Clients
Cameron Camp wrote:
> I've been happily using denyhosts for ssh brute force attacks,
>
> 1. What are best practices for the same functionality for Postfix
> 2. Are there "gotcha's" for trying to use denyhosts/fail2ban for this
> 3. Should I use something else?
>
> I'd like to stop attacks at the
Victor Duchovni wrote:
> On Wed, May 06, 2009 at 03:26:50PM -0700, Quanah Gibson-Mount wrote:
>
>> --On Wednesday, April 29, 2009 8:40 AM -0400 Wietse Venema
>> wrote:
>>
>>> Postfix 2.6 stable release candidate 3 is available. If this has
>>> no problems, then Postfix 2.6.0 will happen soon. Th
Julio Cesar Covolato wrote:
> Hi!
>
> I made a litle shell script to stoping bootnets and zombis, and I want
> know what you think about it.
>
> The purpose is drop via iptables hosts that are rejected several
> times in a litle space of time, reading the log generated by postfix.
>
> Teste
Scott Haneda wrote:
> Thank you Wietse. One point of clarification please. If 2.5.7 has
> defect back ports from 2.6, then that equates to new features brought
> into 2.5.7?
Wietse said:
"Postfix 2.5.7 has 'defect fixes' back-ported from Postfix 2.6.0."
[Emphasis added] Note that he says "de
On 3/1/2010 11:51 PM, Stan Hoeppner wrote:
Daniel L. Miller put forth on 3/2/2010 1:18 AM:
OK - I'm an idiot. I'll just admit that up front and get it out of the
way.
Now that that's settled, what is the difference between "SSL" and "TLS"
in a MUA - particularly Thunderbird - in a Postfix cont
Wietse Venema wrote:
> Ralf Hildebrandt:
>> * Noel Jones :
>>> Ralf Hildebrandt wrote:
* Noel Jones :
> corona
Corona, St.George, what's it with the beer names?
>>> Corona - outer atmosphere of a star
>> Latin for Crown
>
> Good names I have seen sofar that suggest what the
Security Admin (NetSec) wrote:
> Could someone provide links to sites where IP addresses are grouped by
> country? ASNs would work too but would prefer IP lists that I could put
> in a file that my postfix mail gateway could read. Obvious countries
> like China and Brazil I would like to block wh
