(1) As was said earlier, but in greater detail: tell your MTA to look
at the SMTP client's IP address, and trust (do not give to SA) any
mail where the client IP address is in your local network(s) (this is
the best solution), or
(2) Modify the above to check your local network IP range(s), and
include your MTA name as well. For example:
Received =~ from .* \[192\.168\.100\.\d+\].* by ga\.impsec\.org
(where ga.impsec.org is my MTA and 192.168.100.x is my local network)
In order to bypass this a forger would need to know both your MTA's
system name and your local network IP range(s).
Hi John!
I learned postfix already to reject unknown sender - works pretty good.
Thanks for the hint!
To the RCVD issue -
I looked trough many incoming mails and discovered that every Received
header line
contains "rk-lilienfeld.at" (at least the first Received contains my
Mailadress and rk-lilienfeld.at)
... I am almost a newbie at spam prevention with
postfix/amavis/spamassassin but my thought
upon that is that this rule affects every mail (which possible is
completly wrong)
lg
martin
