I will try the <authRequired>true</authRequired>, but for the RemoteAddrNotInNetwork=127.0.0.1, if I enable this, many of good emails will be dropped : the users use their own ISP smtp server and not the james one...
Carl
Fox Sterling wrote:
Look in the smtpserver block. There is a <authRequired> (by default commented out): <authRequired>true</authRequired>
This will require the sender to authenticate before your server will relay emails. Local emails still delivered without authentication.
May also wish to comment out the following mailet with authentication on: <mailet match="RemoteAddrNotInNetwork=127.0.0.1" class="ToProcessor"> <processor>spam</processor> </mailet>
This mailet will prevent people sending from outside your network to relay through the server. The first will prevent mail from reaching the spool, the second will check once in spool.
----- Original Message ----- From: "Carl" <[EMAIL PROTECTED]>
To: "James Users List" <[EMAIL PROTECTED]>
Sent: Tuesday, November 18, 2003 7:56 PM
Subject: Configuring James to avoid spam open-relay
Hi,
I use James to serve 2 domains. The email clients doesn't use the James SMTP server directly but rather their own ISP smtp.
I use the out of the box James 2.1.3 confi.xml (with very little change) and looking at the spool, I see that some people use my server as an open relay to spam. (more than 1000 emails a day in the spool). As some of many of spammed victim's email are wrong, James send a new mail to inform the spam sender witch ,of course, use a fake email, so James isn't able to deliver correctly the notification, and finally the mail is marked as error.
Is there a way to configure it to reject mails that are not for my 2 domains without loosing the email notification to sender on the error processor ?
I've thought about an mailet/matcher at the root prcessor's begining, but as far as I red the docs, all mails first goes to the root processor, even the error notification...
Any help greatly appreciate,
Carl
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
