On Sun, 15 Jan 2012 11:04:21 -0500, Charles Marcus <cmar...@media-brokers.com> wrote:
> But I'd still be interested in seeing some example postscreen configs > actually in use right now, by you and anyone else willing to share... This works pretty well: as root: ## configure Postfix to use postscreen sed -i 's/^smtp .*smtpd$/#&/' /etc/postfix/master.cf sed -i '/\(smtpd .*pass\|postscreen\|dnsblog\|tlsproxy\)/s/^#//' /etc/postfix/master.cf grep '\(smtp .*smtpd$\|smtpd .*pass\|postscreen\|dnsblog\|tlsproxy\)' /etc/postfix/master.cf ## enable tests before the 220 SMTP server greeting postconf -e 'postscreen_blacklist_action = enforce' postconf -e 'postscreen_dnsbl_action = enforce' # about RBL lists <http://www.sdsc.edu/~jeff/spam/cbc.html> postconf -e 'postscreen_dnsbl_sites = zen.spamhaus.org*2, dnsbl-1.uceprotect.net*1, b.barracudacentral.org*1' postconf -e 'postscreen_dnsbl_threshold = 2' postconf -e 'postscreen_greet_action = enforce' ## enable tests after the 220 SMTP server greeting postconf -e 'postscreen_pipelining_enable = yes' #postconf -e 'postscreen_pipelining_action = enforce' postconf -e 'postscreen_non_smtp_command_enable = yes' #postconf -e 'postscreen_non_smtp_command_action = drop' postconf -e 'postscreen_bare_newline_enable = yes' postconf -e 'postscreen_bare_newline_action = enforce' /etc/init.d/postfix restart # pick /etc/postfix/master.cf changes M.