On Wednesday 14 January 2009 16:22:25 Russ Lavoy wrote: > Hello List, > > I am wondering about an SPF checking addition for postfix. Where I see all > of the addon software, I am not 100% comfortable modifying the postfix code > and still have it be as secure as it was when I first set it up. > > Are there any plans on integrating SPF checking into postfix itself? > > If not, does anyone out there know how to stop forged emails coming in as > someone you know, but they did not send them (as per their email headers)? > > Thanks!
Personally, I use "python-postfix-policyd-spf" from http://www.openspf.org/Software (a.k.a. pypolicyd-spf), implemented as a check_policy_service. EG: master.cf: policyd-spf unix - n n - 0 spawn user=nobody argv=/usr/bin/policyd-spf main.cf: smtpd_recipient_restrictions = permit_mynetworks, reject_unauth_destination, ... check_policy_service unix:private/policyd-spf # ls -l /var/spool/postfix/private/policyd-spf srw-rw-rw- 1 postfix postfix 0 Jan 6 16:09 /var/spool/postfix/private/policyd-spf HTH, Mark. -- Mark Watts BSc RHCE MBCS Senior Systems Engineer QinetiQ Applied Technologies GPG Key: http://www.linux-corner.info/mwatts.gpg
signature.asc
Description: This is a digitally signed message part.
