Yes, of course it's about stemming the bleeding. We found the problem account almost right away and shut it down. It's no longer a problem. But I'm looking ahead to the next time.
It's just inevitable that new naive users are going to do this again to the system. People think, "Who would want my stuff?" And consequently they don't protect their credentials, which are then used to access my server, which is rich in tools. So for the time 6 months from now when someone doesn't protect their password adequately, I'd like to have my Postfix setup set to throttle individual users. Apparently I'm not saying this well, but no change that I've made to the Postfix configuration (following examples and directions around the net) has caused locally originated mail to be tested against my policy server (postfwd) running on port 10040. Other people have apparently encountered the same behaviour: http://serverfault.com/questions/537701/postfix-check-policy-service-only-checking-incoming-mail-ignoring-internal-an and https://www.howtoforge.com/community/threads/postfix-seems-to-ignore-check_policy_service.49235/ Don On Tue, Nov 10, 2015 at 6:04 PM, Ken Simpson <ksimp...@mailchannels.com> wrote: > Hi Donald, > > Chances are, the problem you're trying to solve (throttling users) is > actually a symptom of the larger problem of runaway spamming accounts. Am I > right? In this case, throttling users with policyd and a relatively > straightforward policyd script is a good option to stem the bleeding. But > you may need to also invest time/resources tracking down and solving the > cause of the excessive volume, such as compromised WordPress scripts or user > accounts. > > Ken > > On Tue, Nov 10, 2015 at 3:37 PM, Donald Bindner <dbind...@truman.edu> wrote: >> >> Yes, the point of my email is that I researched and tried to apply >> exactly this configuration, but it did not work. The >> smtpd_recipient_restrictions rule they suggest does not appear to >> apply to messages that originate on the server. Or at least making >> that single configuration does not have that effect. I can verify >> that emails originating on the server do not access the policy server >> running on port 10040. >> >> Don >> >> On Tue, Nov 10, 2015 at 4:53 PM, Curtis Maurand <cur...@maurand.com> >> wrote: >> > And this. >> > >> > >> > http://serverfault.com/questions/290684/postfix-limiting-the-rate-at-which-a-particular-user-can-send-email >> > >> > --Curtis > >
