Re: configure postfix to do reverse dns and do not accept ma…

Top Page
Attachments:
Message as email
+ (text/plain)
Delete this message
Reply to this message
Author: Craig White
Date:  
To: Main PLUG discussion list
Subject: Re: configure postfix to do reverse dns and do not accept mail if revers dns fails
On Wed, 2005-08-17 at 10:25 -0700, Jim B wrote:
> How can postfix be configured so that postfix will do a reverse dns on
> incoming mail and if it fails then the mail will not be accepted or
> will be discarded?

----
fwiw - a long discussion of postfix several months back resorted to my
putting this into postfix/main.cf - it has worked well...YMMV

### New rules gleaned from the following URL
# http://jimsun.linxnet.com/misc/postfix-anti-UCE.txt

smtpd_helo_required = yes
disable_vrfy_command = yes

smtpd_recipient_restrictions =
    permit_mynetworks,
    reject_invalid_hostname,
    reject_non_fqdn_hostname,
    reject_non_fqdn_sender,
    reject_non_fqdn_recipient,
    reject_unknown_sender_domain,
    reject_unknown_recipient_domain,
    reject_unauth_destination,
    check_helo_access hash:/etc/postfix/helo_checks,
    check_sender_access hash:/etc/postfix/sender_checks,
    check_client_access hash:/etc/postfix/client_checks,
    reject_rbl_client relays.ordb.org,
    reject_rbl_client opm.blitzed.org,
    reject_rbl_client list.dsbl.org,
    reject_rbl_client sbl.spamhaus.org,
    reject_rbl_client cbl.abuseat.org,
    reject_rbl_client dul.dnsbl.sorbs.net,
    permit


smtpd_data_restrictions =
    reject_unauth_pipelining,
    permit


Craig

---------------------------------------------------
PLUG-discuss mailing list -
To subscribe, unsubscribe, or to change you mail settings:
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss