Figure out what the IP address of the offending machine is that is
generating the email, and send all email from that IP address to the bit
bucket. That will take care of the email that is being delivered to
your domain. About the only thing that I can think of that can help
with the messages that are falsifying your address is to implement
something like SPF so that at least some of the mail is seen as false by
others that have implemented SPF (http://spf.pobox.com/) and then dumped.
I don't know how to do it in postfix, but in sendmail, just add the
following in /etc/mail/access to ignore email from a particular IP address:
From:68.221.47.115 DISCARD
You can also use something like this to discard for a range of addresses:
From:68.221.47.
From:seznam.cz
From:.seznam.cz
and so forth.
The SPF implementation is a little more involved and is covered on the
spf.pobox.com web site.
Jeff G.
Joseph Tate wrote:
Someone has contracted a virus which is dastardly sending mail to and
from sales, info, and all the other rfc required e-mail addresses, so,
either they come to me directly or indirectly when they bounce. What
I'd like to do is boil the author of the virus in lye until there's
nothing left but their finger and toenails, but since I probably won't
get that chance, I'd like to set up postfix so that it won't accept
mail from my domain(s) except it's addressed from my handful of users.
Kinda like address verification, but just for my own domain. I'm
hoping that I can just tweak some setting in postfix.
Any ideas? I suppose I could just set up clamAV, but I haven't yet
gotten up the gumption to do that.
--
Jeff Groves
email: [EMAIL PROTECTED] Web Site: http://www.krenim.org/
--
TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
TriLUG Organizational FAQ : http://trilug.org/faq/
TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
TriLUG PGP Keyring : http://trilug.org/~chrish/trilug.asc
