Am 05.10.2014 um 01:41 schrieb Karsten Bräckelmann:
On Sat, 2014-10-04 at 22:15 +0200, Reindl Harald wrote:i recently found "thisisjusttestletter@random-domain" as sender as well as "thisisjusttestletter@random-of-our-domains" as RCPT in my logs and remember that crap for many years nowSurely, SA would never see that message, since that's not an actual, valid address at your domain. And you're not using catch-all, do you? (Yes, that question is somewhere between rhetoric and sarcastic.)
but "thisisjusttestletter@random-domain" is a valid address in his domain until you prove the opposite with sender-verification and it's drawbacks
well, postfix access maps after switch away from commercial appliances - are there other well nown local-parts to add to this list?What would you need a blacklist of spammy address local parts for? Do not accept messages to SMTP RCPT addresses that don't exist. Do not use catch-all. Problem solved...
don't get me wrong but you missed the 'i recently found "thisisjusttestletter@random-domain' as sender" at the start of my post
signature.asc
Description: OpenPGP digital signature
