Ben Cantrick (mackys) wrote,
Ben Cantrick
mackys

Spam count from 9am yesterday - noon today.


226

I'm thinking it's about time I dusted off the old whitelist script again, that bounces any email sent to me from an email address that's not pre-approved...

On another note: How do spammers get my email address? I never type it into web forms (that's what mailinator.com is for), I don't have it published in text form anywhere...


Edit: I first made a backup copy of, then edited my /etc/postfix/main.cf. Then used /etc/init.d/postfix restart to restart the mail system. Upon attempting to send an email from an outside domain, the following DNSBLs were dead and had to be removed from the .cf: relays.ordb.org, opm.blitzed.org, list.dsbl.org, multihop.dsbl.org.


My final config line liked like this:

smtpd_recipient_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
reject_invalid_hostname,
reject_non_fqdn_hostname,
reject_non_fqdn_recipient,
reject_rhsbl_client blackhole.securitysage.com,
reject_rhsbl_sender blackhole.securitysage.com,
reject_rbl_client blackholes.easynet.nl,
reject_rbl_client cbl.abuseat.org,
reject_rbl_client proxies.blackholes.wirehub.net,
reject_rbl_client bl.spamcop.net,
reject_rbl_client dnsbl.njabl.org,
reject_rbl_client zen.spamhaus.org,
reject_rbl_client dnsbl.sorbs.net
permit


Also I changed smtpd_helo_required = no to smtpd_helo_required = yes as recommended.

Sources:

http://www.postfix.org/SMTPD_ACCESS_README.html#danger
http://www.akadia.com/services/postfix_uce.html
http://www.dnsbl.com/
Subscribe
  • Post a new comment

    Error

    default userpic

    Your reply will be screened

    Your IP address will be recorded 

    When you submit the form an invisible reCAPTCHA check will be performed.
    You must follow the Privacy Policy and Google Terms of use.
  • 8 comments