#1  
Old 23rd October 2005, 11:34
Ovidiu Ovidiu is offline
Senior Member
 
Join Date: Sep 2005
Posts: 1,262
Thanks: 78
Thanked 24 Times in 20 Posts
Default postfix questions

hi guys,

I have been reading /usr/share/postfix/main.cf.dist lately as well as some postfix dokus and had some questions about what I found there.

1.
Quote:
relay_domains

the variable relay_domains specifies with which domains the sending of emails is allowedd. AS far as I unerstand if we set it to relay_domains = $mydestination there is no faking of email addresses possible?
2.
Quote:
I inserted these entries additionally, as they seemed "logical" to me. Any problems with that?
delay_warning_time = 4h
maximal_queue_lifetime = 5d
3.
Quote:
what about these settings? too paranoid?
smtpd_recipient_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
reject_invalid_hostname,
reject_unknown_hostname,
reject_unknown_sender_domain,
reject_unknown_recipient_domain,
4.
Quote:
how about this:

echo 'allow_percent_hack = no' >> /etc/postfix/main.cf
/etc/init.d/postfix reload

Last edited by Ovidiu; 23rd October 2005 at 12:30.
Reply With Quote
Sponsored Links
  #2  
Old 23rd October 2005, 13:20
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,739 Times in 2,574 Posts
 
Default

Quote:
relay_domains

the variable relay_domains specifies with which domains the sending of emails is allowedd. AS far as I unerstand if we set it to relay_domains = $mydestination there is no faking of email addresses possible?
As long as the user has a valid username and password for SMTP-AUTH or is sending directly from the server (e.g. with webmail) or sends a mail to a recipient on the server he can use whatever sender address he likes. You cannot prevent the user from faking the sender address.

Quote:
I inserted these entries additionally, as they seemed "logical" to me. Any problems with that?
delay_warning_time = 4h
maximal_queue_lifetime = 5d
No.

Quote:
what about these settings? too paranoid?
smtpd_recipient_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
reject_invalid_hostname,
reject_unknown_hostname,
reject_unknown_sender_domain,
reject_unknown_recipient_domain,
I'd try it for a few days and then check if too many valid emails have been rejected.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Postfix Header Checks dirk Installation/Configuration 8 30th May 2010 13:38
Hostname & DNS questions... SurfingAlien Installation/Configuration 6 16th October 2007 16:32
Removed PostFix, Now MySql Problems!!! sapient Installation/Configuration 10 24th October 2005 07:11
postfix queue setting questions Ovidiu Server Operation 1 21st October 2005 15:05
Error Postfix misterm Server Operation 6 28th August 2005 10:18


All times are GMT +2. The time now is 02:05.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.