On Fri, Dec 02, 2022 at 11:42:54AM -0500, Jonathan Capra wrote:
> # grep fongaboo.com /etc/postfix/relay_domains
> fongaboo.com OK
>
> # postmap -q fongaboo.com /etc/postfix/relay_domains
> OK
Fine.
> # grep fongaboo.com /etc/postfix/relay_recipients
Partial output here is not that useful. More useful would be a variant
of the below:
> # postmap -q t...@fongaboo.com /etc/postfix/relay_recipients
> OK
# postmap -q @fongaboo.com /etc/postfix/relay_recipients
> # postmap -q unkn...@fongaboo.com /etc/postfix/relay_recipients
Fine.
> >> # postconf -nf
> >>
> >> [...]
> >> relay_domains = hash:/etc/postfix/relay_domains
> >> relay_recipient_maps = hash:/etc/postfix/relay_recipients
> >> [...]
> >> smtpd_relay_restrictions = permit_mynetworks, reject_invalid_hostname,
> >> reject_unknown_sender_domain, reject_unknown_recipient_domain,
> >> reject_unauth_destination, reject_unlisted_recipient, permit
Looks ok so far.
> >> postconf: warning: /etc/postfix/main.cf: unused parameter:
> >> mtpd_tls_security_level=may
Oops.
> >> # postconf -Mf
> >>
> >> smtp inet n - y - - smtpd
Beware chroot, but not specifically for this issue.
So, with this configuration, could you post logs of Postfix accepting an
unlisted recipient?
--
Viktor.
