Benedict,
> hi, I am trying to find information on preventing people spoofing email
> sent to a domain.
>
> For example my server handles email for the domain example.com, and the
> only people who can send from this domain are either internel or on a
> couple of external ip addresses.
>
> How do I stop everyone else pretending to send mail form [EMAIL PROTECTED]
> to [EMAIL PROTECTED]
>
> I can't seem to find much useful info so am probably looking in the wrong
> places.
Here is one possibility:
@score_sender_maps = ({
# site-wide opinions about senders (the '.' matches any recipient)
'.' => [ # the _first_ matching sender determines the score boost
# poor-man's SPF: local sender domain address used from outside,
# (to be counterbalanced by the same amount in MYNETS)
$mydomain => 1.3,
".$mydomain" => 2.3,
},
], # end of site-wide tables
});
$policy_bank{'MYNETS'} = { # mail originating from @mynetworks
# poor man's SPF: counterbalance the global penalty by the same amount:
score_sender_maps => [ @score_sender_maps,
{ '.' => [{$mydomain=>-1.3,".$mydomain"=>-2.3}] } ],
};
Note that high scores would break forwarding by remote sites,
and submission by remote authenticated users which submit
directly to your MTA (separate MSA solves this last problem,
as IP address for such mail would then be local).
Using domain keys (or SPF) is another possibility.
Mark
All the advantages of Linux Managed Hosting--Without the Cost and Risk!
Fully trained technicians. The highest number of Red Hat certifications in
the hosting industry. Fanatical Support. Click to learn more
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=107521&bid=248729&dat=121642
_______________________________________________
AMaViS-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
