On Fri, Apr 27, 2012, at 06:43 PM, Bastian Blank wrote: > On Fri, Apr 27, 2012 at 08:55:15AM -0700, kar...@mailcan.com wrote: > > smtpd_recipient_restrictions = > > check_recipient_access hash:/usr/local/etc/postfix/conf/bozos > > Remove or at least move _after_ reject_unauth_destination. This is prone for > open relay.
'bozos' holds a list of "To:" addresses that I discard. I'm not clear why/how that's "prone for open relay". I'll look into it. > > reject_non_fqdn_recipient > > Why? Because countless documentation examples suggest it, including in "The Postfix Book". > > permit_sasl_authenticated > > permit_mynetworks > > reject_unauth_destination > > reject_unlisted_recipient > > reject_non_fqdn_sender > > reject_unknown_sender_domain > > reject_rbl_client zen.spamhaus.org > > reject_rbl_client b.barracudacentral.org > > permit > > Remove, it does nothing anyway. Remove what, specifically? All of those? What "does nothing"? -- Thanks, Karen
