On 3 Mar 2021, at 9:51, Marek Kozlowski wrote:
:-)
When testing my server via telnet ... 25 it works:
MAIL FROM: <"">
250 2.1.0 Ok
Rejections in SMTP based on client, helo, and sender policy criteria are
normally postponed until the RCPT stage of the transaction, no matter
what the reason for rejection. A '250' response to MAIL only indicates
that the command was issued in the correct state (after EHLO or HELO)
and was not syntactically invalid.
Moreover an active 'reject_sender_login_mismatch' restriction not
blocked mail from SASL authenticated user (a compromised account) with
such an envelope address. What have I missed?
Log entries showing actual mail being allowed with such a sender along
with the output of 'postconf -n' would be necessary to understand
precisely why it was not rejected.
BTW:
MAIL FROM: <>
503 5.5.1 Error: nested MAIL command
MAIL FROM: ""
503 5.5.1 Error: nested MAIL command
Those are precisely what they say: SMTP does not allow more than one
MAIL command per transaction. Once you've had a successful MAIL command,
you must either complete the transaction OR send a RSET command before
Postfix will consider any new MAIL command.
--
Bill Cole
[email protected] or [email protected]
(AKA @grumpybozo and many *@billmail.scconsult.com addresses)
Not Currently Available For Hire
