Dear Noel, thanks for your help. In the case of rejecting incoming mail from my own domain, do I have to use just SPF? Or is it possible to use an ACL defined in main.cf ?
Thanks again, good bye !!! El lun., 26 nov. 2018 a las 16:47, Noel Jones (<[email protected]>) escribió: > On 11/26/2018 1:34 PM, Roberto Carna wrote: > > Hi people, suppose my domain is "company.com <http://company.com>". > > > > My email users are as this: [email protected] <mailto:[email protected]> > > > > Is normal that I can send a mail from [email protected] > > <mailto:[email protected]> to [email protected] > > <mailto:[email protected]>, from a public IP not belonging to my > > company? > > > > In my case, I am at home and I execute: > > > > $ telnet smtp.company.com <http://smtp.company.com> 25 > > ehlo company.com <http://company.com> > > mail from: [email protected] <mailto:[email protected]> > > rcpt to:[email protected] <mailto:to%[email protected]> > > data > > test > > . > > > > and finally the message arrives to may Inbox. > > > > Because I suppose that the normal behavior is sending mail from > > local address just from an internal IP...not from external. > > > > Thanks a lot, regards!!! > > > That's perfectly normal. Anyone on the internet can send mail to > your company's public mailserver, and the mail from address is not > checked with default setup. > > If you don't like people spoofing the mail from: address, use SPF. > > > > -- Noel Jones >
