On Thu, Jan 16, 2003 at 11:50:32AM -0500, Pierre Fortin wrote: > On Tue, 14 Jan 2003 11:57:18 -0500 "Tibbetts, Ric" > <[EMAIL PROTECTED]> wrote: > > > Mark Weaver wrote: > > > On Tuesday 14 January 2003 09:59 am, Tibbetts, Ric wrote: > > > > > >>All; > > >>Ok, I've had enough spam for one lifetime.. ;) > > >> > > >>I'm trying to get postfix to start filtering spam. It "will". > > >> > > >>What I've added so far is: > > >>(from the relevant section of main.cf) > > >> > > >># -------------------------------------------------------------------- > > >># SPAM FILTER SECTION STARTS > > >># > > >># Look more info about spam filtering options at > > >># http://www.postfix.org/uce.html > > >># > > >># Open Relay Database filtering, look more info at > > >># http://www.ordb.org/ > > >># > > >># Comments and improvements are welcome. > > >># > > >>maps_rbl_domains = > > >> blackholes.mail-abuse.org, > > >> relays.ordb.org, > > >> blackholes.wirehub.net, > > >> relays.osirusoft.com, > > >> blackholes.five-ten-sg.com > > >> > > >>disable_vrfy_command = yes > > >>smtpd_helo_required = yes > > >>strict_rfc821_envelopes = yes > > >> > > >>smtpd_recipient_restrictions = > > >> permit_mynetworks, > > >> reject_unauth_destination, > > >> check_recipient_access hash:/etc/postfix/good_recipient.map, > > >> reject_unauth_pipelining, > > >> reject_invalid_hostname, > > >> reject_non_fqdn_hostname, > > >> reject_non_fqdn_sender, > > >> reject_non_fqdn_recipient, > > >> reject_maps_rbl, > > >> reject_unknown_client, > > >> reject_unknown_hostname, > > >> reject_unknown_sender_domain, > > >> reject_unknown_recipient_domain, > > >> permit > > >> > > >>/etc/postfix/good_recipient.map: > > >> > > >>abuse@ > > >>hostmaster@ > > >>postmaster@ > > >>@$mydomain > > >> > > >># --------------- > > >> > > >>The problem with the above: Now mail has either become incredibly > > > > > > slow, > > > > > >>or nothing is getting through. So I've gone amis somewhere. > > >> > > >>Can anyone shed some llight on this? I want to be sure that all "real" > > >>local receipients still get their mail, but the spam gets filtered. > > >> > > >>Thank you!! > > >> > > >>Ric > > > > > > > > > Hi Ric, > > > > > > Check things out on this site for setting up Postfix. Pierre has > > > really got it > > > going on when it comes to setting up Postfix for doing things > > > correctly. > > > > > > http://pfortin.com/Linux/PostFix/ > > > > > > Mark > > > > Thanks Mark, I'll have a look. > > Currently, my filter seems to be an inverse filter. I'm NOT getting the > > mail I want, but the spam is flowing freely.. lol. > > > > I did notice that Pierre references the same sites I've been using. I've > > > > just got a "bug" in the above (I've already made a few changes to the > > above). And.. you can't catch it all. Some spam is going to get through > > > > no matter what. > > > > Ric > > > Between a day travelling and my wife insisting on absconding with me for > my birthday, I missed all your fun... > > Something that may not be obvious on my pages is that I get a msg from > postfix for *every* mail rejection... while this sounds bad at first > glance, it helps in various ways... I use the info to: > - report some sites to ORDB > - add rejects to postfix > - whitelist some sites that just won't fix their DNS > - completely block some sites via iptables > - etc. > The volume of such reject messages is quite low now... so it was well > worth my time to develop those lists over time... this is config'ed in > main.cf: > # Notifying postmaster > notify_classes = > resource > software > policy > > The most important thing to do when mail stops coming in after making > changes to postfix config files is watch the logs... some config errors > are only noticed when mail actually comes in (generate incoming mail if > you can, or be prepared to wait). > > The stuff on my postfix page is not completely up-to-date; but you can see > my recent configs via the links at the bottom of the page. > > HTH, > Pierre >
Greetings Pierre! Yeah, you missed the show yesterday. I was having a record bad day. lol But it turned out well. It's all pieced back together now. I've been using the logs you referenced. They're coming out in /var/log/mail/info. It references all the mail. I weed through it, and, like you, use the info to stop good mail from getting filtered, and catching the bad stuff that sneaks through. Eventually, it should go into low maintenance mode. But since it's new, I'm watching it very closely. I'm really pleased that postfix has the ability to do this. It's a great feature, that I didn't know existed. One thing I did change from the bit posted above: I took out "reject_unknown_hostname". It was rejecting way too much mail! Even a lot of good mail. Seems that a lot of mail originates from within an intranet where the hostname is not known to the internet at large. Removing that, only allowed a small amount of spam to leak through, and I've been able to either filter that locally, or report it, so it's not a big deal. I just re-read your message, and checked my main.cf. YOu're talking about it actively mailing you for each rejection? I've added that stanza, we'll see what happens. Right now, I'm just relying on the logs. Thanks for the note, and the web site! It helped. Ric > Want to buy your Pack or Services from MandrakeSoft? > Go to http://www.mandrakestore.com
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
