Bom Dia.
Tenho um postfix, rodando em debian com smtpd autenticado, sem criptografia
abilitada, "smtpd_use_tls=no".
No my_networks, coloquei meu ranger externo de rede e o ranger 127.0.0.0/8.
Porem para receber e-mails de outros domínios eu tive que acrescentar no
my_networks 0.0.0.0/0 o que faz com que meu postfix fique como open relay.
coloquei as seguintes regras para client, sender, helo,e recipient:
# requerimentos para o status de HELO
smtpd_helo_restrictions = permit_mynetworks,
warn_if_reject reject_non_fqdn_hostname,
reject_invalid_hostname,
permit
# requerimentos para os remetentes
smtpd_sender_restrictions = permit_mynetworks,
permit_sasl_authenticated,
warn_if_reject reject_non_fqdn_sender,
reject_unknown_sender_domain,
reject_unauth_pipelining,
permit
# requerimentos para conexao com o server
smtpd_client_restrictions = reject_rbl_client sbl.spamhaus.org,
reject_rbl_client blackholes.easynet.nl,
reject_rbl_client dnsbl.njabl.org,
permit
# requirimentos para os recipientes
smtpd_recipient_restrictions = reject_unauth_pipelining,
permit_mynetworks,4.45.58.84]>: Client host rejected: Access denied;
from=<[email protected]> to=<[email protected]> proto=SMTP
helo=<200.159.167.34>
Jun 3 10:41:52 mail postfix/smtpd[9053]: NOQUEUE: reject: RCPT from
114-24-83-34.dynamic.hinet.net[114.24.83.34]: 554 5.7.1 <
114-24-83-34.dynamic.hinet.net[114.24.83.34]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:53 mail postfix/smtpd[9042]: NOQUEUE: reject: RCPT from
114-24-80-63.dynamic.hinet.net[114.24.80.63]: 554 5.7.1 <
114-24-80-63.dynamic.hinet.net[114.24.80.63]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]> proto=SMTP
helo=<200.159.167.34>
Jun 3 10:41:54 mail postfix/smtpd[9035]: NOQUEUE: reject: RCPT from
114-45-58-84.dynamic.hinet.net[114.45.58.84]: 554 5.7.1 <
114-45-58-84.dynamic.hinet.net[114.45.58.84]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:54 mail postfix/smtpd[9053]: NOQUEUE: reject: RCPT from
114-24-83-34.dynamic.hinet.net[114.24.83.34]: 554 5.7.1 <
114-24-83-34.dynamic.hinet.net[114.24.83.34]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:54 mail postfix/smtpd[9037]: connect from
114-24-95-188.dynamic.hinet.net[114.24.95.188]
Jun 3 10:41:55 mail postfix/smtpd[9035]: NOQUEUE: reject: RCPT from
114-45-58-84.dynamic.hinet.net[114.45.58.84]: 554 5.7.1 <
114-45-58-84.dynamic.hinet.net[114.45.58.84]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:55 mail postfix/smtpd[9034]: NOQUEUE: reject: RCPT from
114-42-32-18.dynamic.hinet.net[114.42.32.18]: 554 5.7.1 <
114-42-32-18.dynamic.hinet.net[114.42.32.18]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:55 mail postfix/smtpd[9055]: NOQUEUE: reject: RCPT from
114-24-95-188.dynamic.hinet.net[114.24.95.188]: 554 5.7.1 <
114-24-95-188.dynamic.hinet.net[114.24.95.188]>: Client host rejected:
Access denied; from=<[email protected]> to=<
[email protected]> proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:55 mail postfix/smtpd[9053]: NOQUEUE: reject: RCPT from
114-24-83-34.dynamic.hinet.net[114.24.83.34]: 554 5.7.1 <
114-24-83-34.dynamic.hinet.net[114.24.83.34]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:56 mail postfix/smtpd[9055]: NOQUEUE: reject: RCPT from
114-24-95-188.dynamic.hinet.net[114.24.95.188]: 554 5.7.1 <
114-24-95-188.dynamic.hinet.net[114.24.95.188]>: Client host rejected:
Access denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:56 mail postfix/smtpd[9055]: NOQUEUE: reject: RCPT from
114-24-95-188.dynamic.hinet.net[114.24.95.188]: 554 5.7.1 <
114-24-95-188.dynamic.hinet.net[114.24.95.188]>: Client host rejected:
Access denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:56 mail postfix/smtpd[9035]: NOQUEUE: reject: RCPT from
114-45-58-84.dynamic.hinet.net[114.45.58.84]: 554 5.7.1 <
114-45-58-84.dynamic.hinet.net[114.45.58.84]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9034]: NOQUEUE: reject: RCPT from
114-42-32-18.dynamic.hinet.net[114.42.32.18]: 554 5.7.1 <
114-42-32-18.dynamic.hinet.net[114.42.32.18]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9055]: NOQUEUE: reject: RCPT from
114-24-95-188.dynamic.hinet.net[114.24.95.188]: 554 5.7.1 <
114-24-95-188.dynamic.hinet.net[114.24.95.188]>: Client host rejected:
Access denied; from=<[email protected]> to=<trudyliu.tw@
yahoo.com.tw> proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9053]: NOQUEUE: reject: RCPT from
114-24-83-34.dynamic.hinet.net[114.24.83.34]: 554 5.7.1 <
114-24-83-34.dynamic.hinet.net[114.24.83.34]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9033]: connect from
114-42-32-18.dynamic.hinet.net[114.42.32.18]
Jun 3 10:41:57 mail postfix/smtpd[9054]: NOQUEUE: reject: RCPT from
114-24-80-63.dynamic.hinet.net[114.24.80.63]: 554 5.7.1 <
114-24-80-63.dynamic.hinet.net[114.24.80.63]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9030]: NOQUEUE: reject: RCPT from
114-45-58-84.dynamic.hinet.net[114.45.58.84]: 554 5.7.1 <
114-45-58-84.dynamic.hinet.net[114.45.58.84]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]> proto=SMTP
helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9056]: connect from
114-24-80-63.dynamic.hinet.net[114.24.80.63]
permit_sasl_authenticated,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unauth_destination,
check_policy_service inet:127.0.0.1:10023,
permit
Se eu remover o 0.0.0.0/0 do my_networks, o postfix passa a não receber mais
e-mails do domínio que está tentando enviar pelo meu post:
4.45.58.84]>: Client host rejected: Access denied; from=<
[email protected]> to=<[email protected]> proto=SMTP
helo=<200.159.167.34>
Jun 3 10:41:52 mail postfix/smtpd[9053]: NOQUEUE: reject: RCPT from
114-24-83-34.dynamic.hinet.net[114.24.83.34]: 554 5.7.1 <
114-24-83-34.dynamic.hinet.net[114.24.83.34]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:53 mail postfix/smtpd[9042]: NOQUEUE: reject: RCPT from
114-24-80-63.dynamic.hinet.net[114.24.80.63]: 554 5.7.1 <
114-24-80-63.dynamic.hinet.net[114.24.80.63]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]> proto=SMTP
helo=<200.159.167.34>
Jun 3 10:41:54 mail postfix/smtpd[9035]: NOQUEUE: reject: RCPT from
114-45-58-84.dynamic.hinet.net[114.45.58.84]: 554 5.7.1 <
114-45-58-84.dynamic.hinet.net[114.45.58.84]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:54 mail postfix/smtpd[9053]: NOQUEUE: reject: RCPT from
114-24-83-34.dynamic.hinet.net[114.24.83.34]: 554 5.7.1 <
114-24-83-34.dynamic.hinet.net[114.24.83.34]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:54 mail postfix/smtpd[9037]: connect from
114-24-95-188.dynamic.hinet.net[114.24.95.188]
Jun 3 10:41:55 mail postfix/smtpd[9035]: NOQUEUE: reject: RCPT from
114-45-58-84.dynamic.hinet.net[114.45.58.84]: 554 5.7.1 <
114-45-58-84.dynamic.hinet.net[114.45.58.84]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:55 mail postfix/smtpd[9034]: NOQUEUE: reject: RCPT from
114-42-32-18.dynamic.hinet.net[114.42.32.18]: 554 5.7.1 <
114-42-32-18.dynamic.hinet.net[114.42.32.18]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:55 mail postfix/smtpd[9055]: NOQUEUE: reject: RCPT from
114-24-95-188.dynamic.hinet.net[114.24.95.188]: 554 5.7.1 <
114-24-95-188.dynamic.hinet.net[114.24.95.188]>: Client host rejected:
Access denied; from=<[email protected]> to=<
[email protected]> proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:55 mail postfix/smtpd[9053]: NOQUEUE: reject: RCPT from
114-24-83-34.dynamic.hinet.net[114.24.83.34]: 554 5.7.1 <
114-24-83-34.dynamic.hinet.net[114.24.83.34]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:56 mail postfix/smtpd[9055]: NOQUEUE: reject: RCPT from
114-24-95-188.dynamic.hinet.net[114.24.95.188]: 554 5.7.1 <
114-24-95-188.dynamic.hinet.net[114.24.95.188]>: Client host rejected:
Access denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:56 mail postfix/smtpd[9055]: NOQUEUE: reject: RCPT from
114-24-95-188.dynamic.hinet.net[114.24.95.188]: 554 5.7.1 <
114-24-95-188.dynamic.hinet.net[114.24.95.188]>: Client host rejected:
Access denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:56 mail postfix/smtpd[9035]: NOQUEUE: reject: RCPT from
114-45-58-84.dynamic.hinet.net[114.45.58.84]: 554 5.7.1 <
114-45-58-84.dynamic.hinet.net[114.45.58.84]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9034]: NOQUEUE: reject: RCPT from
114-42-32-18.dynamic.hinet.net[114.42.32.18]: 554 5.7.1 <
114-42-32-18.dynamic.hinet.net[114.42.32.18]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9055]: NOQUEUE: reject: RCPT from
114-24-95-188.dynamic.hinet.net[114.24.95.188]: 554 5.7.1 <
114-24-95-188.dynamic.hinet.net[114.24.95.188]>: Client host rejected:
Access denied; from=<[email protected]> to=<trudyliu.tw@
yahoo.com.tw> proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9053]: NOQUEUE: reject: RCPT from
114-24-83-34.dynamic.hinet.net[114.24.83.34]: 554 5.7.1 <
114-24-83-34.dynamic.hinet.net[114.24.83.34]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9033]: connect from
114-42-32-18.dynamic.hinet.net[114.42.32.18]
Jun 3 10:41:57 mail postfix/smtpd[9054]: NOQUEUE: reject: RCPT from
114-24-80-63.dynamic.hinet.net[114.24.80.63]: 554 5.7.1 <
114-24-80-63.dynamic.hinet.net[114.24.80.63]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]>
proto=SMTP helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9030]: NOQUEUE: reject: RCPT from
114-45-58-84.dynamic.hinet.net[114.45.58.84]: 554 5.7.1 <
114-45-58-84.dynamic.hinet.net[114.45.58.84]>: Client host rejected: Access
denied; from=<[email protected]> to=<[email protected]> proto=SMTP
helo=<200.159.167.34>
Jun 3 10:41:57 mail postfix/smtpd[9056]: connect from
114-24-80-63.dynamic.hinet.net[114.24.80.63]
Porem a partir dessa mudança eu passo a não receber e-mail de mais nenhum
outro domínio.
Caso eu volte a acrescentar no my_networks o 0.0.0.0/0, volta o recebimento
de todos os domínios porem meu server para de responder devido ao DOS que
passo a sofre : ( !
_______________________________________________
Postfix-BR mailing list
[email protected]
http://listas.softwarelivre.org/mailman/listinfo/postfix-br
