abclinuxu.cz AbcLinuxu.cz itbiz.cz ITBiz.cz HDmag.cz HDmag.cz abcprace.cz AbcPráce.cz
AbcLinuxu hledá autory!
Inzerujte na AbcPráce.cz od 950 Kč
Rozšířené hledání
×
dnes 13:37 | Bezpečnostní upozornění

Společnost Cloudflare (Wikipedie) na svém blogu potvrdila bezpečnostní problém s její službou. V požadovaných odpovědích od reverzní proxy byla odesílána také data z neinicializované paměti. Útočník tak mohl získat cookies, autentizační tokeny, data posílaná přes HTTP POST a další citlivé informace. Jednalo se o chybu v parsování HTML. Zneužitelná byla od 22. září 2016 do 18. února 2017. Seznam webů, kterých se bezpečnostní problém potenciálně týká na GitHubu.

Ladislav Hagara | Komentářů: 0
dnes 08:22 | Nová verze

Byla vydána první beta verze Ubuntu 17.04 s kódovým názvem Zesty Zapus. Ke stažení jsou obrazy Kubuntu, Lubuntu, Ubuntu Budgie, Ubuntu GNOME, Ubuntu Kylin, Ubuntu Studio a Xubuntu. Dle plánu by Ubuntu 17.04 mělo vyjít 13. dubna 2017.

Ladislav Hagara | Komentářů: 0
včera 17:53 | Bezpečnostní upozornění

Google na svém blogu věnovaném počítačové bezpečnost informuje o nalezení "reálného" způsobu generování kolizí hašovací funkce SHA-1. Podrobnosti a zdrojové kódy budou zveřejněny do 90 dnů. Již dnes lze ale na stránce SHAttered nalézt 2 pdf soubory, jejichž obsah se liší a SHA-1 otisk je stejný (infografika).

Ladislav Hagara | Komentářů: 12
včera 17:51 | Nová verze

Vyšla nová verzia open source software na správu a automatizáciu cloudových datacentier Danube Cloud 2.4. Danube Cloud je riešenie postavené na SmartOS, ZFS, KVM a zónach. Obsahuje vlastnosti ako integrovaný monitoring, DNS manažment, zálohy, a samozrejme rozsiahlu dokumentáciu.

dano | Komentářů: 5
včera 17:46 | Pozvánky

V Plzni se 3. až 5. března 2017 uskuteční AIMTEChackathon. Je to akce pro vývojáře, grafiky, webdesignéry i veřejnost. Akci provází zajímavé přednášky IT odborníků. Více o programu a možnosti přihlášení na stránkách akce.

cuba | Komentářů: 0
včera 01:00 | Nová verze

Známý šifrovaný komunikátor Signal od verze 3.30.0 již nevyžaduje Google Play Services. Autoři tak po letech vyslyšeli volání komunity, která dala vzniknout Google-free forku LibreSignal (dnes již neudržovaný). Oficiální binárky jsou stále distribuované pouze přes Google Play, ale lze použít neoficiální F-Droid repozitář fdroid.eutopia.cz s nezávislými buildy Signalu nebo oficiální binárku stáhnout z Google Play i bez Google účtu

… více »
xm | Komentářů: 6
22.2. 23:14 | Nová verze

Po třech týdnech od vydání první RC verze byla vydána první stabilní verze 17.01.0 linuxové distribuce pro routery a vestavěné systémy LEDE (Linux Embedded Development Environment), forku linuxové distribuce OpenWrt. Přehled novinek v poznámkách k vydání. Dotazy v diskusním fóru.

Ladislav Hagara | Komentářů: 6
22.2. 17:28 | Bezpečnostní upozornění

Byly zveřejněny informace o bezpečnostní chybě CVE-2017-6074 v Linuxu zneužitelné k lokální eskalaci práv. Jde o chybu v podpoře DCCP (Datagram Congestion Control Protocol). Do linuxového jádra se dostala v říjnu 2005. V upstreamu byla opravena 17. února (commit). Bezpečnostní chyba byla nalezena pomocí nástroje syzkaller [Hacker News].

Ladislav Hagara | Komentářů: 15
22.2. 15:00 | Zajímavý software

Společnost Valve vydala novou beta verzi SteamVR. Z novinek lze zdůraznit oficiální podporu Linuxu. Další informace o podpoře této platformy pro vývoj virtuální reality v Linuxu v diskusním fóru. Hlášení chyb na GitHubu.

Ladislav Hagara | Komentářů: 0
22.2. 06:00 | Nová verze

Po necelém roce od vydání verze 0.67 byla vydána verze 0.68 populárního telnet a ssh klienta PuTTY. Podrobnosti v přehledu změn. Řešeny jsou také bezpečnostní chyby.

Ladislav Hagara | Komentářů: 0
Jak se stavíte k trendu ztenčování přenosných zařízení (smartphony, notebooky)?
 (13%)
 (2%)
 (72%)
 (3%)
 (10%)
Celkem 701 hlasů
 Komentářů: 66, poslední 22.2. 18:57
    Rozcestník

    Dotaz: postfix - spam ?

    7.11.2008 17:23 kratas | skóre: 1
    postfix - spam ?
    Přečteno: 9948×
    Zdravim,

    mam tu ted docela zavazny problem asi... Bezi mi tu doma par dni postak, na ubuntu (LAMP) s postfixem. Ted najednou koukam, kdyz jsem si na rtr s mikrotikem dal logovat ten stroj s postakem, na 25ce, tak ta jeho ip, behem sekundy navaze cca 20 spojeni ven, na 25ce... Je mozny, aby takto cerstvy stroj byl nejak pohakovanej ?

    Nekdo mi rikal, ze by to mohlo delat open_relay... coz, by melo byt zakazany. Jedna se o domenu akrat.cz a pred chvili mi kamarad udelal test a z jednoho emailu prez me smtp si na svuj druhy email poslal ... Takze, vubec nevim :-( Este byla nejaka zminka, ze by bylo potreba nastavit postfixe, aby zvenku naslouchal jen emaily s domenou akrat.cz .. pomohl by mi nekdo z vas zkusenejsich, s timto problemem ? Divny, nmonitoring.cz hlasi mail.akrat.cz: Relay je zakázán - Relaying denied. tak netusim v cem by mohl byt problem, akorat je fakt, ze v tuto chvili slouzim asi jako verejne smtp.

    Tady mensi vypis z mailq
    B6E85205E0D*    2545 Fri Nov  7 08:50:48  jyqdkstorrhi@yahoo.com.tw
    (delivery temporarily suspended: host mx1.mail.tw.yahoo.com[203.188.197.9] refused to talk to me: 421 Message from (213.195.228.58) temporarily deferred - 4.16.50. Please refer to http://help.yahoo.com/help/us/mail/defer/defer-06.html)
                                             joan5263@yahoo.com.tw
                                             l122771@yahoo.com.tw
                                             zxcvbnm84469794@yahoo.com.tw
    (delivery temporarily suspended: connect to ms32a.hinet.net[168.95.5.32]:25: Connection timed out)
                                             a46se@ms32.hinet.net
    (delivery temporarily suspended: connect to ms51a.hinet.net[168.95.5.51]:25: Connection timed out)
                                             l76net@ms51.hinet.net
    (delivery temporarily suspended: connect to ms36a.hinet.net[168.95.5.36]:25: Connection timed out)
                                             penderlo@ms36.hinet.net
    (delivery temporarily suspended: host ms4a.hinet.net[168.95.5.4] refused to talk to me: 421 Too many SMTP sessions for this host)
                                             x5555222@ms4.hinet.net
    (delivery temporarily suspended: connect to msa-mx3.hinet.net[168.95.6.119]:25: Connection timed out)
                                             cris.jj@msa.hinet.net
                                             jackson.liang@msa.hinet.net
                                             tlcowang@ksmail.seed.net.tw
                                             f19888@ms72.url.com.tw
                                             u8311365@tknet.tku.edu.tw
                                             ingantai@ms2.kntech.com.tw
                                             ah9020@gigigaga.com
                                             andersen@so-net.net.tw
                                             gemini2505@pchome.com.tw
                                             d9303034@ms2.twcat.edu.tw
                                             jung@nvwtv.com.tw
    
    E72161FDE48*    1817 Fri Nov  7 08:06:07  wtgwfzwtgix@yahoo.com
    (delivery temporarily suspended: connect to ms11a.hinet.net[168.95.5.11]:25: Connection timed out)
                                             expoktjp@ms11.hinet.net
                                             ok168@ms52.url.com.tw
                                             woowoo@netvigator.com
                                             achou@mail.7-11.com.tw
                                             pelin@ms15.url.com.tw
                                             grace819@cht.com.tw
                                             ntc06j02@cht.com.tw
                                             fion.huang@scinopharm.com.tw
                                             dobo1677@pchome.com.tw
                                             ibme@m1.is.net.tw
                                             crystal_yang@vqti.com.tw
                                             yakage118@pchome.com.tw
                                             anson0126@hotmail.com
                                             k3259025@pchome.com.tw
                                             by001710@pchome.com.tw
                                             joseph@ms12.url.com.tw
    
    06837225666*    2394 Fri Nov  7 13:09:47  ydovpsacqtm@yahoo.com.tw
    (delivery temporarily suspended: host mx1.mail.tw.yahoo.com[203.188.197.9] refused to talk to me: 421 Message from (213.195.228.58) temporarily deferred - 4.16.50. Please refer to http://help.yahoo.com/help/us/mail/defer/defer-06.html)
                                             a1215200@yahoo.com.tw
                                             peenttt@yahoo.com.tw
                                             venson@yahoo.com.tw
    (delivery temporarily suspended: connect to ms17a.hinet.net[168.95.5.17]:25: Connection timed out)
                                             cannybob@ms17.hinet.net
    (delivery temporarily suspended: connect to ms13a.hinet.net[168.95.5.13]:25: Connection timed out)
                                             kbspaul@ms13.hinet.net
    (delivery temporarily suspended: connect to ms26a.hinet.net[168.95.5.26]:25: Connection timed out)
                                             hsinjui@ms26.hinet.net
    (delivery temporarily suspended: connect to msa-mx3.hinet.net[168.95.6.119]:25: Connection timed out)
                                             jojo.emily@msa.hinet.net
                                             steve.abcd@msa.hinet.net
                                             natalie@mail.ntou.edu.tw
                                             vickey@cc.ncu.edu.tw
                                             maojen@seed.net.tw
                                             jason@bio-living.com
                                             pine12@pchome.com.tw
    
    CBAD7217726*    2149 Fri Nov  7 10:27:28  cxteueazx@yahoo.com
    (delivery temporarily suspended: host mx1.mail.tw.yahoo.com[203.188.197.9] refused to talk to me: 421 Message from (213.195.228.58) temporarily deferred - 4.16.50. Please refer to http://help.yahoo.com/help/us/mail/defer/defer-06.html)
                                             aaa123@yahoo.com.tw
                                             ab9803@yahoo.com.tw
                                             chengwenpin@yahoo.com.tw
                                             domo0310@yahoo.com.tw
                                             jlo0115@yahoo.com.tw
                                             tony720102@yahoo.com.tw
    (delivery temporarily suspended: connect to msa-mx3.hinet.net[168.95.6.119]:25: Connection timed out)
                                             sh.ka@msa.hinet.net
                                             sophia.changjc@msa.hinet.net
    (delivery temporarily suspended: connect to ebtnet.net[208.73.210.121]:25: Connection refused)
                                             xtianlei@ebtnet.net
                                             henry000@ms6.url.com.tw
                                             b0rg@fg.com.tw
                                             jade@blossomcomm.com.tw
                                             frank@megabeauty.com.tw
                                             dwl@seed.net.tw
                                             apaul@ms1.tcol.com.tw
                                             jameswu@kpmg.com.tw
    
    C2A1C22B68F*    1944 Fri Nov  7 14:16:09  tpkwthoyzn@yahoo.com.tw
    (delivery temporarily suspended: connect to sinamail.com[82.98.86.169]:25: Connection timed out)
                                             an520@sinamail.com
    (delivery temporarily suspended: connect to ms33a.hinet.net[168.95.5.33]:25: Connection timed out)
                                             sally814@ms33.hinet.net
    (delivery temporarily suspended: connect to ms13a.hinet.net[168.95.5.13]:25: Connection timed out)
                                             chang338@ms13.hinet.net
    (delivery temporarily suspended: connect to msa-mx3.hinet.net[168.95.6.119]:25: Connection timed out)
                                             jialuen.wen@msa.hinet.net
                                             yuan.jin@msa.hinet.net
                                             hschiang@ms2.tcol.com.tw
                                             ken@innotest.com.tw
                                             sturn338@ms45.url.com.tw
                                             tsao38@tpts4.seed.net.tw
                                             mau@cm1.ethome.net.tw
                                             young56@mradio.url.com.tw
                                             r2279s@ms2.url.com.tw
                                             eason522@so-net.net.tw
                                             staly@pchome.com.tw
                                             scyw@iscom.com.tw
                                             rw324@pchome.com.tw
                                             vili@ms82.url.com.tw
    
    B643E1F8EA6*    2033 Fri Nov  7 07:34:09  hefmzgpnlg@yahoo.com.tw
    (delivery temporarily suspended: connect to ms5a.hinet.net[168.95.5.5]:25: Connection timed out)
                                             a601016z@ms5.hinet.net
    (delivery temporarily suspended: connect to mx.citymail.com.tw[60.199.200.105]:25: Connection refused)
                                             ellis_tsai@citymail.com.tw
    (delivery temporarily suspended: connect to ms38a.hinet.net[168.95.5.38]:25: Connection timed out)
                                             kevinkhh@ms38.hinet.net
    (delivery temporarily suspended: connect to msa-mx3.hinet.net[168.95.6.119]:25: Connection timed out)
                                             chyibin.lin@msa.hinet.net
                                             erica.cute@msa.hinet.net
                                             kcnetlau@netvigator.com
                                             chris@apol.com.tw
                                             cftsai@antekic.com.tw
                                             pamelaj@pchome.com.tw
                                             78709@ms2.url.com.tw
                                             candy63@ms85.url.com.tw
                                             wyc0107@pchome.com.tw
                                             momo@kaplus.com.tw
    
    0CA3121C6FD*    1364 Fri Nov  7 11:28:34  udsimmrnoqruqvj@cercs.gatech.edu
    (delivery temporarily suspended: connect to ms51a.hinet.net[168.95.5.51]:25: Connection timed out)
                                             a89882@ms51.hinet.net
    (delivery temporarily suspended: connect to ms8a.hinet.net[168.95.5.8]:25: Connection timed out)
                                             arnoyang@ms8.hinet.net
                                             hsingkuo@degussa-huels.com.tw
                                             f4489505@ccmail.ncku.edu.tw
                                             cca358@cca.gov.tw
                                             ab1863@mail.skaps.tcc.edu.tw
                                             gcliev@seed.net.tw
                                             finlydia@moeaboft.gov.tw
                                             3djames1706@seed.net.tw
                                             chs@ms34.url.com.tw
                                             account@asiaa.sinica.edu.tw
                                             center@csrsr.ncu.edu.tw
                                             chdstat@mail.judicial.gov.tw
                                             691340516@s91.tku.edu.tw
                                             d6fa8200807@ms121.hinet.net
                                             foods@chinyeh.com.tw
    
    5715221C359*    1755 Fri Nov  7 11:25:09  onmknrlwqtb@yahoo.com.tw
    (delivery temporarily suspended: host mx1.mail.tw.yahoo.com[203.188.197.9] refused to talk to me: 421 Message from (213.195.228.58) temporarily deferred - 4.16.50. Please refer to http://help.yahoo.com/help/us/mail/defer/defer-06.html)
                                             0001300@yahoo.com.tw
                                             122121@yahoo.com.tw
                                             an6112004@yahoo.com.tw
                                             bf26834225@yahoo.com.tw
                                             s830639@yahoo.com.tw
                                             s85060186@yahoo.com.tw
                                             s983163@yahoo.com.tw
                                             susan01062001@yahoo.com.tw
                                             tonychen518@yahoo.com.tw
                                             trust005566@yahoo.com.tw
                                             woofishfish@yahoo.com.tw
                                             x0929731720@yahoo.com.tw
                                             x3232@yahoo.com.tw
                                             spo@edirect168.com
    
    6A9B921723B*    1862 Fri Nov  7 13:22:04  knliru@yahoo.com
    (delivery temporarily suspended: host mx1.mail.tw.yahoo.com[203.188.197.9] refused to talk to me: 421 Message from (213.195.228.58) temporarily deferred - 4.16.50. Please refer to http://help.yahoo.com/help/us/mail/defer/defer-06.html)
                                             bard7878@yahoo.com.tw
                                             ike2517@yahoo.com.tw
                                             j121913887@yahoo.com.tw
                                             joh0406@yahoo.com.tw
                                             lovely_faithful@yahoo.com.tw
                                             opopopopop2010@yahoo.com.tw
                                             till882002@yahoo.com.tw
    (delivery temporarily suspended: connect to ms17a.hinet.net[168.95.5.17]:25: Connection timed out)
                                             dk@ms17.hinet.net
    (delivery temporarily suspended: connect to ms23a.hinet.net[168.95.5.23]:25: Connection timed out)
                                             wee5779@ms23.hinet.net
    (delivery temporarily suspended: connect to msa-mx3.hinet.net[168.95.6.119]:25: Connection timed out)
                                             jds.ke@msa.hinet.net
                                             yo6607.liu@msa.hinet.net
                                             hfong77@hotmail.com
                                             linhard66@yahoo.com.hk
    
    78534239D32*    1110 Fri Nov  7 17:04:11  wjztq@wpoed.cn
    (delivery temporarily suspended: connect to sinamail.com[82.98.86.169]:25: Connection timed out)
                                             irtn@sinamail.com
                                             irto@sinamail.com
                                             irtp@sinamail.com
                                             irtn@seed.net.tw
                                             irtp@pchome.com.tw
    
    0A21720D210*     432 Fri Nov  7 09:24:59  jsaha@gmail.com
    (delivery temporarily suspended: host mx1.mail.tw.yahoo.com[203.188.197.9] refused to talk to me: 421 Message from (213.195.228.58) temporarily deferred - 4.16.50. Please refer to http://help.yahoo.com/help/us/mail/defer/defer-06.html)
                                             aso611@yahoo.com.tw
                                             bow2216@yahoo.com.tw
                                             huang_ggg@yahoo.com.tw
                                             paipei306@yahoo.com.tw
                                             passforever@yahoo.com.tw
    (delivery temporarily suspended: connect to ms68a.hinet.net[168.95.5.68]:25: Connection timed out)
                                             nylsandy@ms68.hinet.net
    (delivery temporarily suspended: connect to msa-mx3.hinet.net[168.95.6.119]:25: Connection timed out)
                                             ezrano.jan@msa.hinet.net
                                             jui.hsun@msa.hinet.net
                                             lsh@iuis.com.tw
                                             claudine@ms53.url.com.tw
                                             ciying_ycy@yahoo.com.hk
                                             andy@dns.lyaes.tpc.edu.tw
                                             jerry7@ms35.url.com.tw
                                             abcyei@pchome.com.tw
                                             paulhuang@nanshanlife.c^C^X

    Odpovědi

    7.11.2008 18:07 pupu | skóre: 30
    Rozbalit Rozbalit vše Re: postfix - spam ?
    Pokud neukazes konfigurace, tezko muzeme neco poradit. Kazdopadne takhle to vypada, ze to opravdu mas spatne nastavene a koledujes si o velky problem.

    Posli vypis 'postconf -n'
    7.11.2008 18:10 hysterix
    Rozbalit Rozbalit vše Re: postfix - spam ?
    Moje kristalova koule ti vzkazuje, ze to urcite odstranis privedenim 220V mezi pin 215 a pin 589 patice mikroprocesoru.
    7.11.2008 19:45 kratas | skóre: 1
    Rozbalit Rozbalit vše Re: postfix - spam ?
    takze, postconf -n
    alias_database = hash:/etc/aliases
    alias_maps = hash:/etc/aliases
    append_dot_mydomain = no
    biff = no
    config_directory = /etc/postfix
    inet_interfaces = all
    mailbox_command = procmail -a "$EXTENSION"
    mailbox_size_limit = 0
    mydestination = akrat.cz, mail.akrat.cz, localhost.akrat.cz, localhost
    myhostname = mail.akrat.cz
    mynetworks = 10.105.12.0/27 [::ffff:127.0.0.0]/104 [::1]/128
    myorigin = /etc/mailname
    readme_directory = no
    recipient_delimiter = +
    relayhost =
    smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
    smtpd_banner = Kratas mail server on ESMTP $mail_name ($myhostname)
    smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
    smtpd_tls_key_file = /etc/ssl/private/ssl-cert-snakeoil.key
    smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
    smtpd_use_tls = yes
    
    Nevim, cim zacit. Veskere confy a nastaveni, neni problem zaslat, staci rict co a dodam k prozkoumani, sotva se v tom ted vubec nejak orientuju :-(

    Predem vam vsem moc dekuji za odpovedi ;-)

    K.
    7.11.2008 20:08 pupu | skóre: 30
    Rozbalit Rozbalit vše Re: postfix - spam ?
    Fajn, to vypada v poradku. Tak ted posli treba aspon kus (do konce hlavicek) 'postcat -q CBAD7217726', pripadne jakykoliv jiny identifikator jasne spamove posty. At vidime, kudy to prislo...
    8.11.2008 11:16 Filip Jirsák | skóre: 66 | blog: Fa & Bi
    Rozbalit Rozbalit vše Re: postfix - spam ?
    Nemáte nastavený nějaký SNAT, že by se vše, co přijde na router s veřejnou IP na port 25, přeposílalo na váš mail server, ale se zdrojovou IP adresou z rozsahu 10.105.12.0/27? To by si pak váš mailserver o každém spojení z internetu myslel, že je z jeho lokální sítě, pro kterou má dělat relay.
    8.11.2008 14:46 kratas | skóre: 1
    Rozbalit Rozbalit vše Re: postfix - spam ?
    V podstate tak nejak ano... Mam ve meste na siti hlavni GW, kde za ni funguje podsit 10.105.0.0/16 a u sebe doma mam 10.105.12.0/27, server ma fyzicky 10.105.12.29 a ta gw tu 213.195.228.58 na ni preklapi. Je tam SRC a DST NAT, takze ted si s tim mynetworks taky nevim rady.
    8.11.2008 15:02 Filip Jirsák | skóre: 66 | blog: Fa & Bi
    Rozbalit Rozbalit vše Re: postfix - spam ?
    Je nutné ten SNAT dělat, nenašly by pakety cestu zpátky k routeru podle výchozí brány? Pokud to nejde, vyjměte adresu brány z těch, které mají povoleno přes server posílat e-maily, tj. (pokud má brána IP 10.105.0.1):
    mynetworks = 10.105.12.0/27 !10.105.0.1 [::ffff:127.0.0.0]/104 [::1]/128
    
    8.11.2008 15:49 hysterix
    Rozbalit Rozbalit vše Re: postfix - spam ?
    To neni tim. Napriklad dole v logu je adresa odesilatele 218.71.96.172. Pokud by to byl zfalsovany log, znamenalo by to, ze stroj je "v cizi moci" :-)
    8.11.2008 16:44 kratas | skóre: 1
    Rozbalit Rozbalit vše Re: postfix - spam ?
    pevne doufam, ze v cizi moci neni :-)
    8.11.2008 17:07 hysterix
    Rozbalit Rozbalit vše Re: postfix - spam ?
    A jak dopadly ty doporucovane testy dole? http://www.abclinuxu.cz/poradna/linux/show/244768#12

    Nejak od tebe nevidim zadnou akci. Jenom pokecem tady to nezjistime.
    7.11.2008 20:26 kratas | skóre: 1
    Rozbalit Rozbalit vše Re: postfix - spam ?
    root@home:~# postcat -q DBBB5119C1A
    *** ENVELOPE RECORDS active/DBBB5119C1A ***
    message_size:            1936            1754              13               0            1936
    message_arrival_time: Tue Nov  4 08:59:01 2008
    create_time: Tue Nov  4 08:59:01 2008
    named_attribute: rewrite_context=remote
    sender: oeuvvkzms@yahoo.com
    named_attribute: log_client_address=218.71.96.172
    named_attribute: log_client_port=1664
    named_attribute: log_message_origin=unknown[218.71.96.172]
    named_attribute: log_helo_name=213.195.228.58
    named_attribute: log_protocol_name=SMTP
    named_attribute: client_name=unknown
    named_attribute: reverse_client_name=172.96.71.218.broad.wz.zj.dynamic.163data.com.cn
    named_attribute: client_address=218.71.96.172
    named_attribute: client_port=1664
    named_attribute: helo_name=213.195.228.58
    named_attribute: client_address_type=2
    named_attribute: dsn_orig_rcpt=rfc822;l24373303@yahoo.com.tw
    original_recipient: l24373303@yahoo.com.tw
    recipient: l24373303@yahoo.com.tw
    named_attribute: dsn_orig_rcpt=rfc822;chia_min721122@yahoo.com.tw
    original_recipient: chia_min721122@yahoo.com.tw
    recipient: chia_min721122@yahoo.com.tw
    named_attribute: dsn_orig_rcpt=rfc822;d1223302@ms46.hinet.net
    original_recipient: d1223302@ms46.hinet.net
    recipient: d1223302@ms46.hinet.net
    named_attribute: dsn_orig_rcpt=rfc822;cloud.a123@msa.hinet.net
    original_recipient: cloud.a123@msa.hinet.net
    recipient: cloud.a123@msa.hinet.net
    named_attribute: dsn_orig_rcpt=rfc822;ywc.sister@msa.hinet.net
    original_recipient: ywc.sister@msa.hinet.net
    recipient: ywc.sister@msa.hinet.net
    named_attribute: dsn_orig_rcpt=rfc822;kisc18231@yahoo.com.tw
    original_recipient: kisc18231@yahoo.com.tw
    recipient: kisc18231@yahoo.com.tw
    named_attribute: dsn_orig_rcpt=rfc822;tml5919@yahoo.com.tw
    original_recipient: tml5919@yahoo.com.tw
    recipient: tml5919@yahoo.com.tw
    named_attribute: dsn_orig_rcpt=rfc822;steven-f@mail.apexgrp.com.tw
    original_recipient: steven-f@mail.apexgrp.com.tw
    done_recipient: steven-f@mail.apexgrp.com.tw
    named_attribute: dsn_orig_rcpt=rfc822;cwsz.a853@msa.hinet.net
    original_recipient: cwsz.a853@msa.hinet.net
    recipient: cwsz.a853@msa.hinet.net
    named_attribute: dsn_orig_rcpt=rfc822;a0918219693@yahoo.com.tw
    original_recipient: a0918219693@yahoo.com.tw
    recipient: a0918219693@yahoo.com.tw
    named_attribute: dsn_orig_rcpt=rfc822;alpha.wang@msa.hinet.net
    original_recipient: alpha.wang@msa.hinet.net
    recipient: alpha.wang@msa.hinet.net
    named_attribute: dsn_orig_rcpt=rfc822;w432@show-king.com.tw
    original_recipient: w432@show-king.com.tw
    done_recipient: w432@show-king.com.tw
    named_attribute: dsn_orig_rcpt=rfc822;890142@jsun.com
    original_recipient: 890142@jsun.com
    done_recipient: 890142@jsun.com
    *** MESSAGE CONTENTS active/DBBB5119C1A ***
    Received: from 213.195.228.58 (unknown [218.71.96.172])
            by mail.akrat.cz (Postfix) with SMTP id DBBB5119C1A;
            Tue,  4 Nov 2008 08:59:01 +0100 (CET)
    Received: from dns86.yahoo.com.hk (dns86.yahoo.com.hk [187.72.133.82]) by  with SMTP;
             Sat, 08 Nov 2008 12:55:09 +0500
    Message-ID: (uvbacdmlwhpvzdxtmnmxxwxy.40099274438893503259@yahoo.com.hk)
    Date: Sat, 08 Nov 2008 05:59:09 -0200
    From: "Ąš˘i˘iĄš˘i˘iFw: AV żWŽa¤¤¤ĺŚršő,DVDŻčŞĹŞŠ,şëŞö¤şŽe!!" (ynzpufzbsvlx@yahoo.com.hk)
    Reply-To: "Ą´˘i˘iĄ´˘i˘i Ą´˘i˘i˘i˘iżWŽa¤ŢśiDVDąM°Ďś}˝ć,§Y¤é°_śR10°e2,śR20°e4,¨C¤ů40¤¸" (ynzpufzbsvlx@yahoo.com.hk)
    To: l24373303@yahoo.com.tw
    Cc: chia_min721122@yahoo.com.tw, d1223302@ms46.hinet.net, cloud.a123@msa.hinet.net, ywc.sister@msa.hinet.net, kisc18231@yahoo.com.tw, tml5919@yahoo.com.tw, steven-f@mail.apexgrp.com.tw, cwsz.a853@msa.hinet.net, a0918219693@yahoo.com.tw, alpha.wang@msa.hinet.net, w432@show-king.com.tw, 890142@jsun.com
    Subject: ˝˛¨ĚŞLĄ§ŚŰşNĄ¨°Ę§@Ą§ĹSŠłĄ¨ĄP
    Mime-Version: 1.0
    Content-Type: multipart/alternative;
            boundary="--NextPart_p9t_b5bn_y07hmm1cur684t5i"
    
    ----NextPart_p9t_b5bn_y07hmm1cur684t5i
    Content-Type: text/html;
    Content-Transfer-Encoding: quoted-printable
    
    (html)
    (head)
    (meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dbig5")(title)ynzpufzbsvlx(/title)
    (meta name=3D"GENERATOR" content=3D"Microsoft FrontPage 6.0")
    (/head)(p)(font color=3D"#ffffff")=B6H=BBA=C3=C4=AA=CE=ABO=BBX=ACO=A3x=B0=D5=
    =A5=A8(/font)(/p)
    (body)
    (p)(a href=3D"http://euyrhsjwo.ksuruer-jewkrjqw.com.cn/#ynzpufzbsvlx.googl=
    e.com.tw")(font size=3D"5" color=3D"#8000FF")(strong)
    =BCy=AF=AC=A5=FE=B7s=B6}=B9=F5,=A5=BB=AF=B8=A9=D2=A6=B3=A2=D2=A2=E4=A2=D2=A4=
    @=AB=DF40=A4=B8,=A5u=A6=B315=A4=D1=B3=E1,=BD=D0=A7=E2=B4=A4=AD=F2~ !!(/str=
    ong)(/font)(p)(font color=3D"#ffffff")=BC=C6=BD=B2=AA=A8=B9=EF=A7K=C2=C5=BE=
    =C7=AB=C8(/font)(/p)(/a)(/p)
    (/body)
    (/html)
    
    ----NextPart_p9t_b5bn_y07hmm1cur684t5i--
    
    
    *** HEADER EXTRACTED active/DBBB5119C1A ***
    *** MESSAGE FILE END active/DBBB5119C1A ***
    
    Zacal jsem to ted mazat, postsuper -d ALL ... jelikoz mi to behem tri dnu sezralo na disku pres 10Gb ... tak jsem to ted este radeji stopnul, kdybychom z toho potrebovali neco vycist... btw vsechny <> zavorky jsem muesel nahradit () zavorky, kvuli nepovolenym znackam...
    8.11.2008 10:59 hysterix
    Rozbalit Rozbalit vše Re: postfix - spam ?
    Zvlastni. Podle logu jedina nestandardni (ve smyslu navodna pro dalsi hledani) vec je, ze spammer pro helo pouziva tvou ip adresu. Pro zacatek bych (nez se to vyresi) odstrihl apnic rozsahy, ktere agresivne vyhledavaji derave mailservery. Je to docasna spinavost, ale uz velmi dlouhou dobu podle mych logu nikdo jiny derave mail servery prubezne a stale bezicim scanem nevyhledava. Tim budes moci poustet postfix i na delsi dobu bez rizika ze nejaky cinan to okamzite zneuzije ( bacha ale na rusaky :-) ). Nicmene problem se musi nejdrive nejak izolovat.
    iptables -I INPUT -s 58.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 59.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 60.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 61.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 114.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 115.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 116.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 117.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 118.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 119.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 120.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 121.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 122.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 123.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 124.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 125.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 126.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 202.0.0.0/254.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 211.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 218.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 219.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 220.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 221.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    iptables -I INPUT -s 222.0.0.0/255.0.0.0 -p tcp --dport 25 --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
    
    8.11.2008 22:13 pupu | skóre: 30
    Rozbalit Rozbalit vše Re: postfix - spam ?
    Tak tohle by ovsem vzhledem ke konfiguraci opravdu projit nemelo. Napadaji me jen dve moznosti - ten Postfix je tak prastary, ze pouziva jako default nebezpecne parametry (posli cely 'postconf', bez '-n'), nebo se na nej ty spamy nahrnuly jeste v dobe, kdy tato konfigurace nebyla aktivovana, a od te doby se uz jen dorucuji (doporucuji restart). Jinak nevim. Zkus jeste po vycisteni fronty na chvili Postfix pustit (predpokladam, ze ted nebezi - ja zadne MTA na dane IP adrese nevidim) a sledovat /var/log/maillog. Pokud tam najdes neco zajimaveho (treba nejaky warning), posli.
    9.11.2008 10:30 kratas | skóre: 1
    Rozbalit Rozbalit vše Re: postfix - spam ?
    takze, postconf
    2bounce_notice_recipient = postmaster
    access_map_reject_code = 554
    address_verify_default_transport = $default_transport
    address_verify_local_transport = $local_transport
    address_verify_map = 
    address_verify_negative_cache = yes
    address_verify_negative_expire_time = 3d
    address_verify_negative_refresh_time = 3h
    address_verify_poll_count = 3
    address_verify_poll_delay = 3s
    address_verify_positive_expire_time = 31d
    address_verify_positive_refresh_time = 7d
    address_verify_relay_transport = $relay_transport
    address_verify_relayhost = $relayhost
    address_verify_sender = $double_bounce_sender
    address_verify_sender_dependent_relayhost_maps = $sender_dependent_relayhost_maps
    address_verify_service_name = verify
    address_verify_transport_maps = $transport_maps
    address_verify_virtual_transport = $virtual_transport
    alias_database = hash:/etc/aliases
    alias_maps = hash:/etc/aliases
    allow_mail_to_commands = alias, forward
    allow_mail_to_files = alias, forward
    allow_min_user = no
    allow_percent_hack = yes
    allow_untrusted_routing = no
    alternate_config_directories = 
    always_bcc = 
    anvil_rate_time_unit = 60s
    anvil_status_update_time = 600s
    append_at_myorigin = yes
    append_dot_mydomain = no
    application_event_drain_time = 100s
    authorized_flush_users = static:anyone
    authorized_mailq_users = static:anyone
    authorized_submit_users = static:anyone
    backwards_bounce_logfile_compatibility = yes
    berkeley_db_create_buffer_size = 16777216
    berkeley_db_read_buffer_size = 131072
    best_mx_transport = 
    biff = no
    body_checks = 
    body_checks_size_limit = 51200
    bounce_notice_recipient = postmaster
    bounce_queue_lifetime = 5d
    bounce_service_name = bounce
    bounce_size_limit = 50000
    bounce_template_file = 
    broken_sasl_auth_clients = no
    canonical_classes = envelope_sender, envelope_recipient, header_sender, header_recipient
    canonical_maps = 
    cleanup_service_name = cleanup
    command_directory = /usr/sbin
    command_execution_directory = 
    command_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
    command_time_limit = 1000s
    config_directory = /etc/postfix
    connection_cache_protocol_timeout = 5s
    connection_cache_service_name = scache
    connection_cache_status_update_time = 600s
    connection_cache_ttl_limit = 2s
    content_filter = 
    cyrus_sasl_config_path = 
    daemon_directory = /usr/lib/postfix
    daemon_timeout = 18000s
    data_directory = /var/lib/postfix
    debug_peer_level = 2
    debug_peer_list = 
    default_database_type = hash
    default_delivery_slot_cost = 5
    default_delivery_slot_discount = 50
    default_delivery_slot_loan = 3
    default_destination_concurrency_failed_cohort_limit = 1
    default_destination_concurrency_limit = 20
    default_destination_concurrency_negative_feedback = 1
    default_destination_concurrency_positive_feedback = 1
    default_destination_rate_delay = 0s
    default_destination_recipient_limit = 50
    default_extra_recipient_limit = 1000
    default_minimum_delivery_slots = 3
    default_privs = nobody
    default_process_limit = 100
    default_rbl_reply = $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using $rbl_domain${rbl_reason?; $rbl_reason}
    default_recipient_limit = 20000
    default_recipient_refill_delay = 5s
    default_recipient_refill_limit = 100
    default_transport = smtp
    default_verp_delimiters = +=
    defer_code = 450
    defer_service_name = defer
    defer_transports = 
    delay_logging_resolution_limit = 2
    delay_notice_recipient = postmaster
    delay_warning_time = 0h
    deliver_lock_attempts = 20
    deliver_lock_delay = 1s
    destination_concurrency_feedback_debug = no
    detect_8bit_encoding_header = yes
    disable_dns_lookups = no
    disable_mime_input_processing = no
    disable_mime_output_conversion = no
    disable_verp_bounces = no
    disable_vrfy_command = no
    dont_remove = 0
    double_bounce_sender = double-bounce
    duplicate_filter_limit = 1000
    empty_address_recipient = MAILER-DAEMON
    empty_address_relayhost_maps_lookup_key = <>
    enable_original_recipient = yes
    error_notice_recipient = postmaster
    error_service_name = error
    execution_directory_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
    expand_owner_alias = no
    export_environment = TZ MAIL_CONFIG LANG
    fallback_transport = 
    fallback_transport_maps = 
    fast_flush_domains = $relay_domains
    fast_flush_purge_time = 7d
    fast_flush_refresh_time = 12h
    fault_injection_code = 0
    flush_service_name = flush
    fork_attempts = 5
    fork_delay = 1s
    forward_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ
    forward_path = $home/.forward${recipient_delimiter}${extension}, $home/.forward
    frozen_delivered_to = yes
    hash_queue_depth = 1
    hash_queue_names = deferred, defer
    header_address_token_limit = 10240
    header_checks = 
    header_size_limit = 102400
    helpful_warnings = yes
    home_mailbox = 
    hopcount_limit = 50
    html_directory = no
    ignore_mx_lookup_error = no
    import_environment = MAIL_CONFIG MAIL_DEBUG MAIL_LOGTAG TZ XAUTHORITY DISPLAY LANG=C
    in_flow_delay = 1s
    inet_interfaces = all
    inet_protocols = ipv4
    initial_destination_concurrency = 5
    internal_mail_filter_classes = 
    invalid_hostname_reject_code = 501
    ipc_idle = 5s
    ipc_timeout = 3600s
    ipc_ttl = 1000s
    line_length_limit = 2048
    lmtp_bind_address = 
    lmtp_bind_address6 = 
    lmtp_body_checks = 
    lmtp_cname_overrides_servername = no
    lmtp_connect_timeout = 0s
    lmtp_connection_cache_destinations = 
    lmtp_connection_cache_on_demand = yes
    lmtp_connection_cache_time_limit = 2s
    lmtp_connection_reuse_time_limit = 300s
    lmtp_data_done_timeout = 600s
    lmtp_data_init_timeout = 120s
    lmtp_data_xfer_timeout = 180s
    lmtp_defer_if_no_mx_address_found = no
    lmtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
    lmtp_destination_concurrency_limit = $default_destination_concurrency_limit
    lmtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
    lmtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
    lmtp_destination_rate_delay = $default_destination_rate_delay
    lmtp_destination_recipient_limit = $default_destination_recipient_limit
    lmtp_discard_lhlo_keyword_address_maps = 
    lmtp_discard_lhlo_keywords = 
    lmtp_enforce_tls = no
    lmtp_generic_maps = 
    lmtp_header_checks = 
    lmtp_host_lookup = dns
    lmtp_initial_destination_concurrency = $initial_destination_concurrency
    lmtp_lhlo_name = $myhostname
    lmtp_lhlo_timeout = 300s
    lmtp_line_length_limit = 990
    lmtp_mail_timeout = 300s
    lmtp_mime_header_checks = 
    lmtp_mx_address_limit = 5
    lmtp_mx_session_limit = 2
    lmtp_nested_header_checks = 
    lmtp_pix_workaround_delay_time = 10s
    lmtp_pix_workaround_maps = 
    lmtp_pix_workaround_threshold_time = 500s
    lmtp_pix_workarounds = disable_esmtp,delay_dotcrlf
    lmtp_quit_timeout = 300s
    lmtp_quote_rfc821_envelope = yes
    lmtp_randomize_addresses = yes
    lmtp_rcpt_timeout = 300s
    lmtp_rset_timeout = 20s
    lmtp_sasl_auth_cache_name = 
    lmtp_sasl_auth_cache_time = 90d
    lmtp_sasl_auth_enable = no
    lmtp_sasl_auth_soft_bounce = yes
    lmtp_sasl_mechanism_filter = 
    lmtp_sasl_password_maps = 
    lmtp_sasl_path = 
    lmtp_sasl_security_options = noplaintext, noanonymous
    lmtp_sasl_tls_security_options = $lmtp_sasl_security_options
    lmtp_sasl_tls_verified_security_options = $lmtp_sasl_tls_security_options
    lmtp_sasl_type = cyrus
    lmtp_send_xforward_command = no
    lmtp_sender_dependent_authentication = no
    lmtp_skip_5xx_greeting = yes
    lmtp_starttls_timeout = 300s
    lmtp_tcp_port = 24
    lmtp_tls_CAfile = 
    lmtp_tls_CApath = 
    lmtp_tls_cert_file = 
    lmtp_tls_dcert_file = 
    lmtp_tls_dkey_file = $lmtp_tls_dcert_file
    lmtp_tls_enforce_peername = yes
    lmtp_tls_exclude_ciphers = 
    lmtp_tls_fingerprint_cert_match = 
    lmtp_tls_fingerprint_digest = md5
    lmtp_tls_key_file = $lmtp_tls_cert_file
    lmtp_tls_loglevel = 0
    lmtp_tls_mandatory_ciphers = medium
    lmtp_tls_mandatory_exclude_ciphers = 
    lmtp_tls_mandatory_protocols = SSLv3, TLSv1
    lmtp_tls_note_starttls_offer = no
    lmtp_tls_per_site = 
    lmtp_tls_policy_maps = 
    lmtp_tls_scert_verifydepth = 9
    lmtp_tls_secure_cert_match = nexthop
    lmtp_tls_security_level = 
    lmtp_tls_session_cache_database = 
    lmtp_tls_session_cache_timeout = 3600s
    lmtp_tls_verify_cert_match = hostname
    lmtp_use_tls = no
    lmtp_xforward_timeout = 300s
    local_command_shell = 
    local_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
    local_destination_concurrency_limit = 2
    local_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
    local_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
    local_destination_rate_delay = $default_destination_rate_delay
    local_destination_recipient_limit = 1
    local_header_rewrite_clients = permit_inet_interfaces
    local_initial_destination_concurrency = $initial_destination_concurrency
    local_recipient_maps = proxy:unix:passwd.byname $alias_maps
    local_transport = local:$myhostname
    luser_relay = 
    mail_name = Postfix
    mail_owner = postfix
    mail_release_date = 20080902
    mail_spool_directory = /var/mail
    mail_version = 2.5.5
    mailbox_command = procmail -a "$EXTENSION"
    mailbox_command_maps = 
    mailbox_delivery_lock = fcntl, dotlock
    mailbox_size_limit = 0
    mailbox_transport = 
    mailbox_transport_maps = 
    mailq_path = /usr/bin/mailq
    manpage_directory = /usr/share/man
    maps_rbl_domains = 
    maps_rbl_reject_code = 554
    masquerade_classes = envelope_sender, header_sender, header_recipient
    masquerade_domains = 
    masquerade_exceptions = 
    max_idle = 100s
    max_use = 100
    maximal_backoff_time = 4000s
    maximal_queue_lifetime = 5d
    message_reject_characters = 
    message_size_limit = 10240000
    message_strip_characters = 
    milter_command_timeout = 30s
    milter_connect_macros = j {daemon_name} v
    milter_connect_timeout = 30s
    milter_content_timeout = 300s
    milter_data_macros = i
    milter_default_action = tempfail
    milter_end_of_data_macros = i
    milter_end_of_header_macros = i
    milter_helo_macros = {tls_version} {cipher} {cipher_bits} {cert_subject} {cert_issuer}
    milter_macro_daemon_name = $myhostname
    milter_macro_v = $mail_name $mail_version
    milter_mail_macros = i {auth_type} {auth_authen} {auth_author} {mail_addr}
    milter_protocol = 2
    milter_rcpt_macros = i {rcpt_addr}
    milter_unknown_command_macros = 
    mime_boundary_length_limit = 2048
    mime_header_checks = $header_checks
    mime_nesting_limit = 100
    minimal_backoff_time = 300s
    multi_recipient_bounce_reject_code = 550
    mydestination = akrat.cz, mail.akrat.cz, localhost.akrat.cz, localhost
    mydomain = akrat.cz
    myhostname = mail.akrat.cz
    mynetworks = 10.105.12.0/27 [::ffff:127.0.0.0]/104 [::1]/128
    mynetworks_style = subnet
    myorigin = /etc/mailname
    nested_header_checks = $header_checks
    newaliases_path = /usr/bin/newaliases
    non_fqdn_reject_code = 504
    non_smtpd_milters = 
    notify_classes = resource, software
    owner_request_special = yes
    parent_domain_matches_subdomains = debug_peer_list,fast_flush_domains,mynetworks,permit_mx_backup_networks,qmqpd_authorized_clients,smtpd_access_maps
    permit_mx_backup_networks = 
    pickup_service_name = pickup
    plaintext_reject_code = 450
    prepend_delivered_header = command, file, forward
    process_id_directory = pid
    propagate_unmatched_extensions = canonical, virtual
    proxy_interfaces = 
    proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $sender_bcc_maps $recipient_bcc_maps $smtp_generic_maps $lmtp_generic_maps
    proxy_write_maps = $smtp_sasl_auth_cache_name $lmtp_sasl_auth_cache_name
    qmgr_clog_warn_time = 300s
    qmgr_fudge_factor = 100
    qmgr_message_active_limit = 20000
    qmgr_message_recipient_limit = 20000
    qmgr_message_recipient_minimum = 10
    qmqpd_authorized_clients = 
    qmqpd_client_port_logging = no
    qmqpd_error_delay = 1s
    qmqpd_timeout = 300s
    queue_directory = /var/spool/postfix
    queue_file_attribute_count_limit = 100
    queue_minfree = 0
    queue_run_delay = 300s
    queue_service_name = qmgr
    rbl_reply_maps = 
    readme_directory = no
    receive_override_options = 
    recipient_bcc_maps = 
    recipient_canonical_classes = envelope_recipient, header_recipient
    recipient_canonical_maps = 
    recipient_delimiter = +
    reject_code = 554
    relay_clientcerts = 
    relay_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
    relay_destination_concurrency_limit = $default_destination_concurrency_limit
    relay_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
    relay_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
    relay_destination_rate_delay = $default_destination_rate_delay
    relay_destination_recipient_limit = $default_destination_recipient_limit
    relay_domains = $mydestination
    relay_domains_reject_code = 554
    relay_initial_destination_concurrency = $initial_destination_concurrency
    relay_recipient_maps = 
    relay_transport = relay
    relayhost = 
    relocated_maps = 
    remote_header_rewrite_domain = 
    require_home_directory = no
    resolve_dequoted_address = yes
    resolve_null_domain = no
    resolve_numeric_domain = no
    rewrite_service_name = rewrite
    sample_directory = /usr/share/doc/postfix/examples
    send_cyrus_sasl_authzid = no
    sender_bcc_maps = 
    sender_canonical_classes = envelope_sender, header_sender
    sender_canonical_maps = 
    sender_dependent_relayhost_maps = 
    sendmail_path = /usr/sbin/sendmail
    service_throttle_time = 60s
    setgid_group = postdrop
    show_user_unknown_table_name = yes
    showq_service_name = showq
    smtp_always_send_ehlo = yes
    smtp_bind_address = 
    smtp_bind_address6 = 
    smtp_body_checks = 
    smtp_cname_overrides_servername = no
    smtp_connect_timeout = 30s
    smtp_connection_cache_destinations = 
    smtp_connection_cache_on_demand = yes
    smtp_connection_cache_time_limit = 2s
    smtp_connection_reuse_time_limit = 300s
    smtp_data_done_timeout = 600s
    smtp_data_init_timeout = 120s
    smtp_data_xfer_timeout = 180s
    smtp_defer_if_no_mx_address_found = no
    smtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
    smtp_destination_concurrency_limit = $default_destination_concurrency_limit
    smtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
    smtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
    smtp_destination_rate_delay = $default_destination_rate_delay
    smtp_destination_recipient_limit = $default_destination_recipient_limit
    smtp_discard_ehlo_keyword_address_maps = 
    smtp_discard_ehlo_keywords = 
    smtp_enforce_tls = no
    smtp_fallback_relay = $fallback_relay
    smtp_generic_maps = 
    smtp_header_checks = 
    smtp_helo_name = $myhostname
    smtp_helo_timeout = 300s
    smtp_host_lookup = dns
    smtp_initial_destination_concurrency = $initial_destination_concurrency
    smtp_line_length_limit = 990
    smtp_mail_timeout = 300s
    smtp_mime_header_checks = 
    smtp_mx_address_limit = 5
    smtp_mx_session_limit = 2
    smtp_nested_header_checks = 
    smtp_never_send_ehlo = no
    smtp_pix_workaround_delay_time = 10s
    smtp_pix_workaround_maps = 
    smtp_pix_workaround_threshold_time = 500s
    smtp_pix_workarounds = disable_esmtp,delay_dotcrlf
    smtp_quit_timeout = 300s
    smtp_quote_rfc821_envelope = yes
    smtp_randomize_addresses = yes
    smtp_rcpt_timeout = 300s
    smtp_rset_timeout = 20s
    smtp_sasl_auth_cache_name = 
    smtp_sasl_auth_cache_time = 90d
    smtp_sasl_auth_enable = no
    smtp_sasl_auth_soft_bounce = yes
    smtp_sasl_mechanism_filter = 
    smtp_sasl_password_maps = 
    smtp_sasl_path = 
    smtp_sasl_security_options = noplaintext, noanonymous
    smtp_sasl_tls_security_options = $smtp_sasl_security_options
    smtp_sasl_tls_verified_security_options = $smtp_sasl_tls_security_options
    smtp_sasl_type = cyrus
    smtp_send_xforward_command = no
    smtp_sender_dependent_authentication = no
    smtp_skip_5xx_greeting = yes
    smtp_skip_quit_response = yes
    smtp_starttls_timeout = 300s
    smtp_tls_CAfile = 
    smtp_tls_CApath = 
    smtp_tls_cert_file = 
    smtp_tls_dcert_file = 
    smtp_tls_dkey_file = $smtp_tls_dcert_file
    smtp_tls_enforce_peername = yes
    smtp_tls_exclude_ciphers = 
    smtp_tls_fingerprint_cert_match = 
    smtp_tls_fingerprint_digest = md5
    smtp_tls_key_file = $smtp_tls_cert_file
    smtp_tls_loglevel = 0
    smtp_tls_mandatory_ciphers = medium
    smtp_tls_mandatory_exclude_ciphers = 
    smtp_tls_mandatory_protocols = SSLv3, TLSv1
    smtp_tls_note_starttls_offer = no
    smtp_tls_per_site = 
    smtp_tls_policy_maps = 
    smtp_tls_scert_verifydepth = 9
    smtp_tls_secure_cert_match = nexthop, dot-nexthop
    smtp_tls_security_level = 
    smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
    smtp_tls_session_cache_timeout = 3600s
    smtp_tls_verify_cert_match = hostname
    smtp_use_tls = no
    smtp_xforward_timeout = 300s
    smtpd_authorized_verp_clients = $authorized_verp_clients
    smtpd_authorized_xclient_hosts = 
    smtpd_authorized_xforward_hosts = 
    smtpd_banner = Kratas mail server on ESMTP $mail_name ($myhostname)
    smtpd_client_connection_count_limit = 50
    smtpd_client_connection_rate_limit = 0
    smtpd_client_event_limit_exceptions = ${smtpd_client_connection_limit_exceptions:$mynetworks}
    smtpd_client_message_rate_limit = 0
    smtpd_client_new_tls_session_rate_limit = 0
    smtpd_client_port_logging = no
    smtpd_client_recipient_rate_limit = 0
    smtpd_client_restrictions = 
    smtpd_data_restrictions = 
    smtpd_delay_open_until_valid_rcpt = yes
    smtpd_delay_reject = yes
    smtpd_discard_ehlo_keyword_address_maps = 
    smtpd_discard_ehlo_keywords = 
    smtpd_end_of_data_restrictions = 
    smtpd_enforce_tls = no
    smtpd_error_sleep_time = 1s
    smtpd_etrn_restrictions = 
    smtpd_expansion_filter = \t\40!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~
    smtpd_forbidden_commands = CONNECT GET POST
    smtpd_hard_error_limit = 20
    smtpd_helo_required = no
    smtpd_helo_restrictions = 
    smtpd_history_flush_threshold = 100
    smtpd_junk_command_limit = 100
    smtpd_milters = 
    smtpd_noop_commands = 
    smtpd_null_access_lookup_key = <>
    smtpd_peername_lookup = yes
    smtpd_policy_service_max_idle = 300s
    smtpd_policy_service_max_ttl = 1000s
    smtpd_policy_service_timeout = 100s
    smtpd_proxy_ehlo = $myhostname
    smtpd_proxy_filter = 
    smtpd_proxy_timeout = 100s
    smtpd_recipient_limit = 1000
    smtpd_recipient_overshoot_limit = 1000
    smtpd_recipient_restrictions = permit_mynetworks, reject_unauth_destination
    smtpd_reject_unlisted_recipient = yes
    smtpd_reject_unlisted_sender = no
    smtpd_restriction_classes = 
    smtpd_sasl_auth_enable = no
    smtpd_sasl_authenticated_header = no
    smtpd_sasl_exceptions_networks = 
    smtpd_sasl_local_domain = 
    smtpd_sasl_path = smtpd
    smtpd_sasl_security_options = noanonymous
    smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
    smtpd_sasl_type = cyrus
    smtpd_sender_login_maps = 
    smtpd_sender_restrictions = 
    smtpd_soft_error_limit = 10
    smtpd_starttls_timeout = 300s
    smtpd_timeout = 300s
    smtpd_tls_CAfile = 
    smtpd_tls_CApath = 
    smtpd_tls_always_issue_session_ids = yes
    smtpd_tls_ask_ccert = no
    smtpd_tls_auth_only = no
    smtpd_tls_ccert_verifydepth = 9
    smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
    smtpd_tls_dcert_file = 
    smtpd_tls_dh1024_param_file = 
    smtpd_tls_dh512_param_file = 
    smtpd_tls_dkey_file = $smtpd_tls_dcert_file
    smtpd_tls_exclude_ciphers = 
    smtpd_tls_fingerprint_digest = md5
    smtpd_tls_key_file = /etc/ssl/private/ssl-cert-snakeoil.key
    smtpd_tls_loglevel = 0
    smtpd_tls_mandatory_ciphers = medium
    smtpd_tls_mandatory_exclude_ciphers = 
    smtpd_tls_mandatory_protocols = SSLv3, TLSv1
    smtpd_tls_received_header = no
    smtpd_tls_req_ccert = no
    smtpd_tls_security_level = 
    smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
    smtpd_tls_session_cache_timeout = 3600s
    smtpd_tls_wrappermode = no
    smtpd_use_tls = yes
    soft_bounce = no
    stale_lock_time = 500s
    stress = 
    strict_7bit_headers = no
    strict_8bitmime = no
    strict_8bitmime_body = no
    strict_mailbox_ownership = yes
    strict_mime_encoding_domain = no
    strict_rfc821_envelopes = no
    sun_mailtool_compatibility = no
    swap_bangpath = yes
    syslog_facility = mail
    syslog_name = postfix
    tls_daemon_random_bytes = 32
    tls_export_cipherlist = ALL:+RC4:@STRENGTH
    tls_high_cipherlist = ALL:!EXPORT:!LOW:!MEDIUM:+RC4:@STRENGTH
    tls_low_cipherlist = ALL:!EXPORT:+RC4:@STRENGTH
    tls_medium_cipherlist = ALL:!EXPORT:!LOW:+RC4:@STRENGTH
    tls_null_cipherlist = eNULL:!aNULL
    tls_random_bytes = 32
    tls_random_exchange_name = ${data_directory}/prng_exch
    tls_random_prng_update_period = 3600s
    tls_random_reseed_period = 3600s
    tls_random_source = dev:/dev/urandom
    trace_service_name = trace
    transport_maps = 
    transport_retry_time = 60s
    trigger_timeout = 10s
    undisclosed_recipients_header = To: undisclosed-recipients:;
    unknown_address_reject_code = 450
    unknown_client_reject_code = 450
    unknown_hostname_reject_code = 450
    unknown_local_recipient_reject_code = 550
    unknown_relay_recipient_reject_code = 550
    unknown_virtual_alias_reject_code = 550
    unknown_virtual_mailbox_reject_code = 550
    unverified_recipient_reject_code = 450
    unverified_sender_reject_code = 450
    verp_delimiter_filter = -=+
    virtual_alias_domains = $virtual_alias_maps
    virtual_alias_expansion_limit = 1000
    virtual_alias_maps = $virtual_maps
    virtual_alias_recursion_limit = 1000
    virtual_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit
    virtual_destination_concurrency_limit = $default_destination_concurrency_limit
    virtual_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback
    virtual_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback
    virtual_destination_rate_delay = $default_destination_rate_delay
    virtual_destination_recipient_limit = $default_destination_recipient_limit
    virtual_gid_maps = 
    virtual_initial_destination_concurrency = $initial_destination_concurrency
    virtual_mailbox_base = 
    virtual_mailbox_domains = $virtual_mailbox_maps
    virtual_mailbox_limit = 51200000
    virtual_mailbox_lock = fcntl, dotlock
    virtual_mailbox_maps = 
    virtual_minimum_uid = 100
    virtual_transport = virtual
    virtual_uid_maps = 
    
    postfix bezi uz asi 5min, zatim asi jen dva nezname maily, cekam dal, kdyztak zaslu log.
    9.11.2008 11:06 kratas | skóre: 1
    Rozbalit Rozbalit vše Re: postfix - spam ?
    takze, uz se tam neco ukazalo, ale nic extra.
    Nov  9 10:15:19 home postfix/master[27301]: daemon started -- version 2.5.5, configuration /etc/postfix
    Nov  9 10:22:08 home postfix/smtpd[27898]: connect from kratas-ntbw-work.brezinova.net[10.105.12.7]
    Nov  9 10:22:08 home postfix/smtpd[27898]: 4EF84DC193: client=kratas-ntbw-work.brezinova.net[10.105.12.7]
    Nov  9 10:22:08 home postfix/cleanup[27902]: 4EF84DC193: message-id=000601c9424d$00bf1e90$070c690a@kratasntbwork
    Nov  9 10:22:08 home postfix/qmgr[27305]: 4EF84DC193: from=test@akrat.cz, size=1393, nrcpt=1 (queue active)
    Nov  9 10:22:08 home postfix/smtpd[27898]: disconnect from kratas-ntbw-work.brezinova.net[10.105.12.7]
    Nov  9 10:22:08 home postfix/smtp[27903]: 4EF84DC193: to=kratas@brezinova.net, relay=energy.brezinova.net[10.105.255.14]:25, delay=0.16, delays=0.12/0/0.01/0.02, dsn=2.0.0, status=sent (250 ok 1226222622 qp 30615)
    Nov  9 10:22:08 home postfix/qmgr[27305]: 4EF84DC193: removed
    Nov  9 10:26:01 home postfix/smtpd[28030]: connect from NK219-91-108-126.adsl.dynamic.apol.com.tw[219.91.108.126]
    Nov  9 10:26:01 home postfix/smtpd[28030]: lost connection after CONNECT from NK219-91-108-126.adsl.dynamic.apol.com.tw[219.91.108.126]
    Nov  9 10:26:01 home postfix/smtpd[28030]: disconnect from NK219-91-108-126.adsl.dynamic.apol.com.tw[219.91.108.126]
    Nov  9 10:27:44 home postfix/smtpd[28073]: connect from NK219-91-108-126.adsl.dynamic.apol.com.tw[219.91.108.126]
    Nov  9 10:27:48 home postfix/smtpd[28073]: NOQUEUE: reject: RCPT from NK219-91-108-126.adsl.dynamic.apol.com.tw[219.91.108.126]: 554 5.7.1 kandy@pcmail.com.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=kandy@pcmail.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:27:49 home postfix/smtpd[28073]: NOQUEUE: reject: RCPT from NK219-91-108-126.adsl.dynamic.apol.com.tw[219.91.108.126]: 554 5.7.1 sanshine@mail.sunsec.com.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=sanshine@mail.sunsec.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:27:49 home postfix/smtpd[28073]: NOQUEUE: reject: RCPT from NK219-91-108-126.adsl.dynamic.apol.com.tw[219.91.108.126]: 554 5.7.1 simin.chang@msa.hinet.net: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=simin.chang@msa.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:27:50 home postfix/smtpd[28073]: NOQUEUE: reject: RCPT from NK219-91-108-126.adsl.dynamic.apol.com.tw[219.91.108.126]: 554 5.7.1 lichiu@email.ttv.com.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=lichiu@email.ttv.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:03 home postfix/smtpd[28105]: connect from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]
    Nov  9 10:28:04 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 kandy@pcmail.com.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=kandy@pcmail.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:04 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 sanshine@mail.sunsec.com.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=sanshine@mail.sunsec.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:07 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 simin.chang@msa.hinet.net: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=simin.chang@msa.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:28:07 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 lichiu@email.ttv.com.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=lichiu@email.ttv.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:08 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 kevin_wu@citynetek.com.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=kevin_wu@citynetek.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:08 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 lucky0701@mail.khb.gov.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=lucky0701@mail.khb.gov.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:09 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 oest@mail.stut.edu.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=oest@mail.stut.edu.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:09 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 rex41622@ms16.hinet.net: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=rex41622@ms16.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:28:12 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 micher369@mail2000.com.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=micher369@mail2000.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:14 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 kay12@seed.net.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.krto=kay12@seed.net.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:14 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 rferf@ygfd.com.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.krto=rferf@ygfd.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:16 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 sunny_mix_blue@yahoo.com.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=sunny_mix_blue@yahoo.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:17 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 noble.kk@msa.hinet.net: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.kr to=noble.kk@msa.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:28:19 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 kevvh@yahoo.com.tw: Relay access denied; from=aionroxkjutwts@sidea.uos.ac.krto=kevvh@yahoo.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:25 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 lon@netnews.hinet.net: Relay access denied; from=ryofvsfena@osaka.cci.or.jpto=lon@netnews.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:28:27 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 lover@mail2000.com.tw: Relay access denied; from=ryofvsfena@osaka.cci.or.jp to=lover@mail2000.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:28 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 li5@netnews.hinet.net: Relay access denied; from=ryofvsfena@osaka.cci.or.jp to=li5@netnews.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:28:30 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 maz-593@yahoo.com.tw: Relay access denied; from=ryofvsfena@osaka.cci.or.jp to=maz-593@yahoo.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:31 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 swei@t-tanaka.com.tw: Relay access denied; from=ryofvsfena@osaka.cci.or.jp to=swei@t-tanaka.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:35 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 joe00205@ms34.hinet.net: Relay access denied; from=ryofvsfena@osaka.cci.or.jp to=joe00205@ms34.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:28:37 home postfix/smtpd[28105]: too many errors after RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]
    Nov  9 10:28:37 home postfix/smtpd[28105]: disconnect from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]
    Nov  9 10:28:57 home postfix/smtpd[28105]: connect from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]
    Nov  9 10:28:58 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 snservice@imageweb.com.tw: Relay access denied; from=ilrzimndahh@chedu.gov.cn to=snservice@imageweb.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:59 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 ruth@mail.nctu.edu.tw: Relay access denied; from=ilrzimndahh@chedu.gov.cn to=ruth@mail.nctu.edu.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:59 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 s890326@cc.gdjh.tcc.edu.tw: Relay access denied; from=ilrzimndahh@chedu.gov.cn to=s890326@cc.gdjh.tcc.edu.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:28:59 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 liza3866@webmail.mlc.edu.tw: Relay access denied; from=ilrzimndahh@chedu.gov.cn to=liza3866@webmail.mlc.edu.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:02 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 jao@gwater.agec.ntu.edu.tw: Relay access denied; from=ilrzimndahh@chedu.gov.cn to=jao@gwater.agec.ntu.edu.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:02 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 rainwalk@ms59.hinet.net: Relay access denied; from=ilrzimndahh@chedu.gov.cn to=rainwalk@ms59.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:29:03 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 marshal.tour@msa.hinet.net: Relay access denied; from=ilrzimndahh@chedu.gov.cn to=marshal.tour@msa.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:29:03 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 kawaki@child.nutn.edu.tw: Relay access denied; from=ilrzimndahh@chedu.gov.cn to=kawaki@child.nutn.edu.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:05 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 thbedc17@ms32.hinet.net: Relay access denied; from=daqjorewustz@acpub.duke.edu to=thbedc17@ms32.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:29:05 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 susan@scope.com.tw: Relay access denied; from=daqjorewustz@acpub.duke.eduto=susan@scope.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:06 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 p057@kpvs.tpc.edu.tw: Relay access denied; from=daqjorewustz@acpub.duke.edu to=p057@kpvs.tpc.edu.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:07 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 mycasino@yahoo.com.tw: Relay access denied; from=daqjorewustz@acpub.duke.edu to=mycasino@yahoo.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:09 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 lausinan@yahoo.com.tw: Relay access denied; from=daqjorewustz@acpub.duke.edu to=lausinan@yahoo.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:10 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 liou881h1h@msa.hinet.net: Relay access denied; from=daqjorewustz@acpub.duke.edu to=liou881h1h@msa.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:29:12 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 monpost5915@yahoo.com.tw: Relay access denied; from=daqjorewustz@acpub.duke.edu to=monpost5915@yahoo.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:13 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 parsed@mail.apol.com.tw: Relay access denied; from=daqjorewustz@acpub.duke.edu to=parsed@mail.apol.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:15 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 twosome@ms37.hinet.net: Relay access denied; from=daqjorewustz@acpub.duke.edu to=twosome@ms37.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:29:17 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 pepe8787520@yaho00002235o.com.tw: Relay access denied; from=daqjorewustz@acpub.duke.edu to=pepe8787520@yaho00002235o.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:22 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 k0812004@ms4.kntech.com.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=k0812004@ms4.kntech.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:23 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 mumino@yahoo.com.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk
    to=mumino@yahoo.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:25 home postfix/smtpd[28105]: too many errors after RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]
    Nov  9 10:29:25 home postfix/smtpd[28105]: disconnect from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]
    Nov  9 10:29:28 home postfix/smtpd[28105]: connect from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]
    Nov  9 10:29:29 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 k0812004@ms4.kntech.com.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=k0812004@ms4.kntech.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:30 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 mumino@yahoo.com.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=mumino@yahoo.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:30 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 s4618014@ntut.edu.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=s4618014@ntut.edu.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:30 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 kenduest@titanic.net.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=kenduest@titanic.net.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:31 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 muncie@mail.apol.com.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=muncie@mail.apol.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:31 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 tcc.puli@msa.hinet.net: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=tcc.puli@msa.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:29:32 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 j456789a@yahoo.com.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=j456789a@yahoo.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:33 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 pinalain@ms2.seeder.net: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=pinalain@ms2.seeder.net proto=SMTP helo=213.195.228.58
    Nov  9 10:29:34 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 jo2000.tw@yahoo.com.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=jo2000.tw@yahoo.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:34 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 kevinng@everchk.com.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=kevinng@everchk.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:35 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 tn710933@ms28.hinet.net: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=tn710933@ms28.hinet.net proto=SMTP helo=213.195.228.58
    Nov  9 10:29:36 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 s137528@davicom.com.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=s137528@davicom.com.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:37 home postfix/smtpd[28105]: NOQUEUE: reject: RCPT from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]: 554 5.7.1 raylingwood@ma.ks.edu.tw: Relay access denied; from=jqbgydkzdagrz@hkbu.edu.hk to=raylingwood@ma.ks.edu.tw proto=SMTP helo=213.195.228.58
    Nov  9 10:29:40 home postfix/smtpd[28105]: disconnect from NK219-91-109-121.adsl.dynamic.apol.com.tw[219.91.109.121]
    Nov  9 10:32:50 home postfix/smtpd[28073]: timeout after RCPT from NK219-91-108-126.adsl.dynamic.apol.com.tw[219.91.108.126]
    Nov  9 10:32:50 home postfix/smtpd[28073]: disconnect from NK219-91-108-126.adsl.dynamic.apol.com.tw[219.91.108.126]
    Nov  9 10:36:01 home postfix/anvil[28032]: statistics: max connection rate 2/60s for (smtp:219.91.109.121) at Nov  9 10:28:57
    Nov  9 10:36:01 home postfix/anvil[28032]: statistics: max connection count 1 for (smtp:219.91.108.126) at Nov  9 10:26:01
    Nov  9 10:36:01 home postfix/anvil[28032]: statistics: max cache size 2 at Nov  9 10:28:03
    
    A zatim jen dle logu na routeru pred tim, je par spojeni z venku ke me na 25, nikoli jako predtim brutalni konexe (cca 20/sec) odeme ven na 25.
    9.11.2008 12:29 pupu | skóre: 30
    Rozbalit Rozbalit vše Re: postfix - spam ?
    To vypada OK. Takze bych rekl, ze to byl jenom nejaky ulet po instalaci. Stane se. Doporucuji nasadit pflogsumm a logwatch, nechat si kazdy den posilat vysledky a sledovat, jestli se tam neubojevi nejake nekalosti.
    9.11.2008 17:10 kratas | skóre: 1
    Rozbalit Rozbalit vše Re: postfix - spam ?
    takze, postfix mi stale bezi a akorat jsem se mrkl do mail logu, primo do warning a je tam toto
    Nov  9 10:43:09 home postfix/smtpd[28762]: warning: 219.91.113.118: hostname NK219-91-113-118.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 10:45:40 home postfix/smtpd[28766]: warning: 219.91.114.82: hostname NK219-91-114-82.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 10:46:04 home postfix/smtpd[28766]: warning: 219.91.114.82: hostname NK219-91-114-82.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 10:46:37 home postfix/smtpd[28766]: warning: 219.91.114.82: hostname NK219-91-114-82.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 10:54:19 home postfix/smtpd[28848]: warning: 219.91.115.196: hostname NK219-91-115-196.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 10:58:31 home postfix/smtpd[28852]: warning: 219.91.117.131: hostname NK219-91-117-131.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:15:57 home postfix/smtpd[29072]: warning: 219.91.122.99: hostname NK219-91-122-99.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:16:20 home postfix/smtpd[29072]: warning: 219.91.122.99: hostname NK219-91-122-99.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:20:30 home postfix/smtpd[29159]: warning: 116.59.24.98: hostname 116-59-24-98.dynamic.hinet.net verification failed: No address associated with hostname
    Nov  9 11:22:12 home postfix/smtpd[29163]: warning: 219.91.123.220: hostname NK219-91-123-220.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:22:18 home postfix/smtpd[29164]: warning: 219.91.123.243: hostname NK219-91-123-243.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:22:48 home postfix/smtpd[29163]: warning: 219.91.123.243: hostname NK219-91-123-243.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:23:01 home postfix/smtpd[29164]: warning: 219.91.123.220: hostname NK219-91-123-220.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:23:26 home postfix/smtpd[29163]: warning: 219.91.123.220: hostname NK219-91-123-220.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:28:15 home postfix/smtpd[29165]: warning: 219.91.125.94: hostname NK219-91-125-94.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:28:19 home postfix/smtpd[29167]: warning: 219.91.125.102: hostname NK219-91-125-102.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:28:43 home postfix/smtpd[29167]: warning: 219.91.125.94: hostname NK219-91-125-94.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:28:50 home postfix/smtpd[29165]: warning: 219.91.125.102: hostname NK219-91-125-102.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:38:32 home postfix/smtpd[29244]: warning: 219.91.127.167: hostname NK219-91-127-167.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 11:38:56 home postfix/smtpd[29244]: warning: 219.91.127.167: hostname NK219-91-127-167.adsl.dynamic.apol.com.tw verification failed: No address associated with hostname
    Nov  9 15:06:06 home postfix/smtpd[31454]: warning: 75.126.32.187: address not listed for hostname 7715.net
    Nov  9 16:12:02 home postfix/smtpd[32225]: warning: non-SMTP command from 118-168-137-34.dynamic.hinet.net[118.168.137.34]: CONNECT mx3.mail2000.com.tw:25 HTTP/1.0
    Nov  9 16:13:55 home postfix/smtpd[32225]: warning: 123.204.0.106: hostname 123-204-0-106.dynamic.seed.net.tw verification failed: No address associated with hostname
    Nov  9 16:14:26 home postfix/smtpd[32101]: warning: 123.204.0.106: hostname 123-204-0-106.dynamic.seed.net.tw verification failed: No address associated with hostname
    Nov  9 16:40:39 home postfix/smtpd[32413]: warning: 123.204.0.247: hostname 123-204-0-247.dynamic.seed.net.tw verification failed: No address associated with hostname
    
    Nevim, ale asi nic zvlastniho, fronta je prazdna, ale stejne, dle logu u me na routeru, viz http://www.akrat.cz/down/log.JPG, me stale nekdo obtezuje na 25ce, neni toho asi tolik ale opakuje se to, nevim, behem 10-15min vzdy nekdo zatuka, stale jeden a ten samy okruh ip adres. Odeme ven uz nic, cisto, v nic takoveho neloguju, jen ke me. Divny, ja jse msi ted prave zkusil z firemniho mailu a z mailu na me siti test, proposloat si mail mezi sebou navzajem i z obou na volny.cz skrz moje smtp a vzdy to dorazilo.

    Slo by nejakym zpusobem aby smtp akceptovalo pro odeslani posty jen domenu, kde je schranka vedena, cili akrat.cz ?

    A ty ip co me neustale otravuji asi vyfiltruju ve fw a bude to.
    9.11.2008 17:53 pupu | skóre: 30
    Rozbalit Rozbalit vše Re: postfix - spam ?
    Pokusy o odeslani jsou normalni a bezne, sam jich mam taky desitky za den. Nemluve o firemnich strojich... Kontrolu na odesilani jen z danych adres udelat lze, ale - jsi si jist, ze to ma smysl? Ja tedy ne.

    Jinak doporucuji zapojeni dalsich beznych komponent - antivir, antispam & spol.
    9.11.2008 18:01 kratas | skóre: 1
    Rozbalit Rozbalit vše Re: postfix - spam ?
    No, takhle. Me slo primarne o to, abych prez smtp mail.akrat.cz mohl poslat jen email z jakekoliv schranky @akrat.cz Stejne, bude tam jestli, tak max 5-10 schranek a to jen mych pro me pouziti.

    Me slo jen o to, aby to smtp fungovalo jen pro domenu akrat.cz ale i z venku, jestlize mam smtp nastavene na bookovi a budu chtit resit postu z venku, aby me to doma na postakovi akceptovalo. Vyhnul bych se problemum aby me nekdo (nebo neco) pouzival jako verejne free smtp pro spamy.

    Divny, ty emaily se mi mezi sebou opravdu odeslali, muzes zkusit, postak stale bezi...

    No, dalsi komponenty co se tyce posty asi nasadit budu muset, ale opet je to pro me velke tabu :] Mohu Te pozadat, jen ze svych vlastnich zkusenosti, uvedl by jsi konkretne (treba nejaky link) danou vec, ktera ti pro toto vyuziti vyhovuje ? Vim, ze je to mozna otravny, ale vicemene, z me strany je to na tyden s dokumentaci a mozna bez uspechu :]

    Dekuji
    9.11.2008 18:14 pupu | skóre: 30
    Rozbalit Rozbalit vše Re: postfix - spam ?
    Tohle se resi jinak. SMTP AUTH, neboli autorizace k odesilani. Clovek se musi nejdriv prihlasit jmenem a heslem a teprve potom muze odesilat. Co se Postfixu tyce, mohu jen doporucit http://postfix.state-of-mind.de/patrick.koetter/smtpauth/ . Ja osobne pouzivam dale Amavisd-new coby antivirovy/antispamovy parser, Spamassassin coby antispamovy analyzator, Clamav coby antivir a Pflogsumm a Logwatch coby analyzatory logu. Pokud by to nestacilo, mam v zaloze par dalsich zbrani; pocitam, ze nebudou potreba - SPF, DCC, par netypickych nastaveni Spamassassinu (automaticke aktualizace pravidel apod) a Postfixu (overovani odesilatele...).

    Zaver - doporucuji nahodit par zakladnich nastroju a sledovat, co to udela. Pokud to nebude stacit, utahnul bych srouby. Urcite bych nasadil analyzatory logu a dival se, co z toho leze.
    8.11.2008 11:00 Dušan Hokův | skóre: 43 | blog: Fedora a další...
    Rozbalit Rozbalit vše Re: postfix - spam ?
    Existuje par webu, ktere mohou zkontrolovat, zda nejste jen dalsi open relay.
    Frt avatar 8.11.2008 14:41 Frt | skóre: 13 | blog: Frtoviny | Ostrava
    Rozbalit Rozbalit vše Re: postfix - spam ?
    To by zajímalo i mne. Měl byste nějaké odkazy ?
    8.11.2008 15:21 Jaris | skóre: 19 | blog: Jaris
    Rozbalit Rozbalit vše Re: postfix - spam ?
    9.11.2008 20:03 Dušan Hokův | skóre: 43 | blog: Fedora a další...
    Rozbalit Rozbalit vše Re: postfix - spam ?
    On ma google vypadek?

    http://www.antispam-ufrj.pads.ufrj.br/test-relay.html
    8.11.2008 17:25 kratas | skóre: 1
    Rozbalit Rozbalit vše Re: postfix - spam ?
    test myslim dopadl OK
    Mail relay testing
    Connecting to 213.195.228.58 for relay test... 
    <<< 220 Kratas mail server on ESMTP Postfix (mail.akrat.cz) 
    >>> HELO antispam-ufrj.pads.ufrj.br 
    <<< 250 mail.akrat.cz 
    Relay test 1
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@antispam-ufrj.pads.ufrj.br
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest@antispam-ufrj.pads.ufrj.br
    <<< 554 5.7.1 : Relay access denied 
    Relay test 2
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@antispam-ufrj.pads.ufrj.br
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest@antispam-ufrj.pads.ufrj.br 
    <<< 554 5.7.1 : Relay access denied 
    Relay test 3
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest@antispam-ufrj.pads.ufrj.br
    <<< 554 5.7.1 : Relay access denied 
    Relay test 4
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: 
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest@antispam-ufrj.pads.ufrj.br
    <<< 554 5.7.1 : Relay access denied 
    Relay test 5
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest@antispam-ufrj.pads.ufrj.br
    <<< 554 5.7.1 : Relay access denied 
    Relay test 6
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@ip-228.58.brezinova.net
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest@antispam-ufrj.pads.ufrj.br
    <<< 554 5.7.1 : Relay access denied 
    Relay test 7
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest%antispam-ufrj.pads.ufrj.br@[213.195.228.58]
    <<< 554 5.7.1 : Relay access denied 
    Relay test 8
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest%antispam-ufrj.pads.ufrj.br@ip-228.58.brezinova.net
    <<< 554 5.7.1 : Relay access denied 
    Relay test 9
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: "relaytest@antispam-ufrj.pads.ufrj.br"
    <<< 554 5.7.1 : Relay access denied 
    Relay test 10
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: "relaytest%antispam-ufrj.pads.ufrj.br"
    <<< 554 5.7.1 : Relay access denied 
    Relay test 11
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest@antispam-ufrj.pads.ufrj.br@[213.195.228.58]
    <<< 554 5.7.1 : Relay access denied 
    Relay test 12
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58] 
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: "relaytest@antispam-ufrj.pads.ufrj.br"@[213.195.228.58]
    <<< 554 5.7.1 : Relay access denied 
    Relay test 13
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest@antispam-ufrj.pads.ufrj.br@ip-228.58.brezinova.net
    <<< 554 5.7.1 : Relay access denied 
    Relay test 14
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: @[213.195.228.58]:relaytest@antispam-ufrj.pads.ufrj.br
    <<< 554 5.7.1 : Relay access denied 
    Relay test 15
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: @ip-228.58.brezinova.net:relaytest@antispam-ufrj.pads.ufrj.br
    <<< 554 5.7.1 : Relay access denied 
    Relay test 16
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: antispam-ufrj.pads.ufrj.br!relaytest
    <<< 554 5.7.1 : Relay access denied 
    Relay test 17
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: antispam-ufrj.pads.ufrj.br!relaytest@[213.195.228.58]
    <<< 554 5.7.1 : Relay access denied 
    Relay test 18
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: antispam-ufrj.pads.ufrj.br!relaytest@ip-228.58.brezinova.net
    <<< 554 5.7.1 : Relay access denied 
    Relay test 19
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest%antispam-ufrj.pads.ufrj.br@
    <<< 554 5.7.1 : Relay access denied 
    Relay test 20
    >>> RSET 
    <<< 250 2.0.0 Ok 
    >>> MAIL FROM: spamtest@[213.195.228.58]
    <<< 250 2.1.0 Ok 
    >>> RCPT TO: relaytest@antispam-ufrj.pads.ufrj.br@
    <<< 554 5.7.1 : Relay access denied 
    
    >>> QUIT 
    <<< 421 4.7.0 mail.akrat.cz Error: too many errors 
    Relay test result
    All tests performed, no relays accepted by remote host.
    
    10.11.2008 11:42 Kroko | skóre: 22
    Rozbalit Rozbalit vše Re: postfix - spam ?
    mel jsem stejny problem, blbec jsem zapomel nastavit postfix hodnotu my_network_style na host, mel jsem class a pak to delalo bordel, po prenastaveni na host a reload postfixe mam klid ... dale je vhodne taky nastavit kontrolu hostname a kontrolu existence domeny atd. taky to omezi hodne spamu
    http://kroko.evesnight.net
    10.11.2008 15:06 Martin H.
    Rozbalit Rozbalit vše Re: postfix - spam ?
    ... dale je vhodne taky nastavit kontrolu hostname a kontrolu existence domeny atd. taky to omezi hodne spamu
    A taky smtp restrikce - kontrolu třeba na sbl-xbl.spamhaus.org - to fakt omezí podstatnou část spamů ... prostě to odmítá spojení s protistranou, která je na BlackListu Spamhausu ... a i když jsem kdesi nedávno četl vášně na téma blokovat/neblokovat, popravdě tohle hodně pomohlo a zatím si nikdo z klientů nestěžoval, že by od nekoho něco nechodilo, myšleno neprávem ... a profláknuté sítě jsou problém jejich provozovatelů a ne můj.

    Jinak na autorizaci používám integrovanou autorizaci k POP3/IMAP účtu uživatele v Dovecotu - velmi snadné nasazení a žádný problém.
    10.11.2008 22:59 kratas | skóre: 1
    Rozbalit Rozbalit vše Re: postfix - spam ?
    A este bych mel asi jeden takovy maly dotaz... bylo by mozne, napr pres smtpd_recipient_restrictions nastavit, aby pouzity smtp server akceptoval pro odeslani posty, jen z dane domeny ? Stale si totiz nejsem jist, zda-li je to to, co prave hledam. Napr. smtp mail.akrat.cz aby akceptoval a vyridil postu jen z odeslane schranky na nastavene domene, v mem pripade akrat.cz Takze, pres muj smtp server se bude moci odeslat jen posta ze schranky neco@akrat.cz, pri pokusu odeslani posty napr ze @seznam.cz pres tento smtp, zkratka to zahodi. Bylo by to mozne ? Pokud ano, mohl by nekdo jen tak cvicne uvest nejaky sample ?

    Predem dekuji, K.
    11.11.2008 07:30 Filip Jirsák | skóre: 66 | blog: Fa & Bi
    Rozbalit Rozbalit vše Re: postfix - spam ?
    K tomu potřebujete nějakou autorizaci (jménem a heslem) - podívejte se na Postfix SASL Howto. Do adresy odesílatele si každý může vyplnit, co chce, takže taková kontrola by byla k ničemu.
    11.11.2008 08:29 hates | skóre: 30 | blog: Jak_jsem_se_dostal_k_linuxu
    Rozbalit Rozbalit vše Re: postfix - spam ?
    Mozne to je ale bude vam to z 90% k nicemu. spamboti jsou schopni tuhle adresu podvrhovat a za zavinac si taktez mohou dat vasi domenu a potom by vam ji postfix vesele odesilal. Me se osvedcil nasadit na postfix greylisting. Pouzivam SQLGrey a jsem vice nez spokojeny. samozrejme potom je jeste na rade SpamAssassin a dalsi kontroly. Ale samostatny Greylist mi odfiltroval 90% spameru.

    Založit nové vláknoNahoru

    Tiskni Sdílej: Linkuj Jaggni to Vybrali.sme.sk Google Del.icio.us Facebook

    ISSN 1214-1267   www.czech-server.cz
    © 1999-2015 Nitemedia s. r. o. Všechna práva vyhrazena.