on 02/15/2010 02:44 PM /dev/rob0 wrote the following: > Ahh, someone here today with a Postfix question, not a Cisco one! ;) > > On Mon, Feb 15, 2010 at 12:57:40PM +0200, Aggelos wrote: >> I want to deny incoming mail from domain blu0.hotmail.com. > > "From domain" means what? Sender addr...@blu0.hotmail.com ?
Actually I want to deny all mail that has in the source something like the following: Received: from blu0-omc1-s16.blu0.hotmail.com > >> I have put in /etc/postfix/sender_access the following line: >> blu0.hotmail.com 554 Spam is not welcome >> >> and then I run >> postmap /etc/postfix/sender_access > > Is there something magical about this /etc/postfix/sender_access > filename that you are not telling us? > >> and >> postfix reload >> >> Is that enough? > > Not even close. > > You must first understand how Postfix smtpd(8) access restrictions > work. See: http://www.postfix.org/SMTPD_ACCESS_README.html > as a starting point. > > Since the text of your rejection implies that spam is the problem > you're trying to address, you really need to understand more about > spam and spammers, too. Here is a good overview: > http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt Here is what I have at the end of the main.cf : allow_percent_hack = no body_checks = regexp:/etc/postfix/body_checks config_directory = /etc/postfix disable_vrfy_command = yes header_checks = regexp:/etc/postfix/header_checks smtpd_helo_required = yes smtpd_recipient_restrictions = permit_mynetworks, reject_unauth_destination, reject_unknown_recipient_domain, check_sender_access hash:/etc/postfix/sender_access, check_helo_access hash:/etc/postfix/helo_access, reject_invalid_hostname, reject_non_fqdn_hostname, reject_unknown_hostname, reject_non_fqdn_sender, reject_unknown_sender_domain, reject_non_fqdn_recipient, reject_unauth_pipelining, check_client_access hash:/etc/postfix/client_access, reject_unknown_client, reject_rbl_client bl.spamcop.net, reject_rbl_client sbl.spamhaus.org, reject_rbl_client list.dsbl.org, reject_rbl_client dnsbl.njabl.org, reject_rbl_client dnsbl.sorbs.net strict_rfc821_envelopes = yes swap_bangpath = no unknown_address_reject_code = 554 unknown_client_reject_code = 554 unknown_hostname_reject_code = 554 unlisted_recipient_reject_code = 554
