-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am 10.02.2010 23:17, schrieb Jan Kohnert: > Hi, > > Jannis Achstetter schrieb: >> An email (FROM is not in $mydestination) from an unauthenticated user to >> an address in $mydestination is accecpted. This is also fine. >> An email from an unauthenticated user to any destination but >> $mydestination (open relay) is denied. Perfect. >> BUT: Any email (FROM is in $mydestination) to $mydestination is accepted >> by any user since TO is in $mydestination. How do I stop this? > > Only if the sender IP is in mynetworks. I think you possibly want > > mynetworks = 127.0.0.1 > > Then only senders from the local machine can send unauthenticated.
I had "mynetworks_style = host" so I thought to be fine. Setting "mynetworks = 127.0.0.1" didn't help. So, here is the output from postfinger and an excerpt from the logfile (assuming you guys beeing trustworthy for that type of content ;) where a mail is accepted that should not be. I don't have my domains listed in mydestination but in virtual_mailbox_domains since it is a pure virtual setup. Mailserver-configuration (postfinger): http://kripton.kripserver.net/self/postfix/postfinger.log Logfile for the one mail: http://kripton.kripserver.net/self/postfix/log.log I left the amavis-stuff in for completeness Jannis -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAkt5anwACgkQeYlewm37lbgibwCcD8UhThFrw6I8Qy7Lz50S2Btf BiQAn2SolvGYpi4z+WBDbnT7R/vyRD4U =CXrK -----END PGP SIGNATURE-----
