On Wed, Jan 27, 2010 at 09:21:16AM -0500, Alan McKay wrote: > Does this sound right so far? No MX record for this guy?
The MX is for receiving mail for a domain. You're only receiving mail from the list, to relay out, no mailboxes. This is similar in spirit to the null client example: http://www.postfix.org/STANDARD_CONFIGURATION_README.html#null_client > Is there a preferred way to get it to not accept unsolicited > connections? Or does this matter? I guess nobody would have a > reason to start sending it mail anyway. Spammers continually search for exploitable services on the Internet, port 25/SMTP being among the commonly attacked ones. "If you build it, they will come," a "Server of Dreams," so to speak. You should consider setting up an abuse and postmaster mailbox for this hostname. While it should be obvious to contact those at the parent domain, it wouldn't hurt. But, you don't have to receive it at the Postfix box directly; you could set it up as an alias at the existing MX host, and create the MX for this subdomain to point to that host. > Should I configure it to know about the Kerio users, just in case? While you might eventually want to convert, there's no need for this at this time. Keep it simple? > And if so, can you point me at the appropriate readme for that? So > it can just forward to the other mail server. http://www.postfix.org/STANDARD_CONFIGURATION_README.html#backup http://www.postfix.org/ADDRESS_CLASS_README.html#relay_domain_class > Oh, one thing I should mention as well. We currently have a > program I wrote which combs the Kerio mail logs for rejects from > the nightly "alert run". This all gets logged into a database, and > we have another program that goes through the database and turns > off emails for people with a certain number of rejects. This is of > course to help prevent us from getting flagged as spammers. I > assume that with the above setup, that Postfix should keep a > similar log and all I'll have to do is tweak my program to account > for the Postfix log format (if there are differences from Kerio). > Is this a safe assumption? Postfix will log all rejections AND BOUNCE permanent errors or queue expiration ($maximal_queue_lifetime) mails. You also need some means of handling the bounces. > And finally, is there a recommended way to configure something like > this so we don't get flagged as spammers? Seriously, the main thing to avoid being considered a spammer is to not send spam! That's all about your list management practices, and has little to do with how you set up your mailer. If you are sending UBE, you will (and should be) considered a spammer. If you need help with that, the Spam-L mailing list can help: http://spam-l.com/ > The only obvious setting I see is this one : > default_destination_concurrency_limit = 5 > > What else should I be doing? Not tweaking random default settings without good cause. :) Google this mailing list for similar questions from similar bulk senders. It comes up regularly. You're probably already on feedback loops with major receivers, right? They might need to know that you're changing your mailer and source IP address. -- Offlist mail to this address is discarded unless "/dev/rob0" or "not-spam" is in Subject: header
