jmarcus
Apprentice
Joined: 12 Jun 2004
Posts: 197
|
 Posted: Sun Nov 27, 2005 3:07 pm Post subject: Postfix relay? I thought I set it up correctly.... |
 |
|
Its my first time setting up Postfix. I have one machine on the same subnet which should be able to relay off this machine. So I added the IP (as shown below), then telneted from a different machine and made sure I couldn't use the machine as an open relay. Then I ran Nessus on it, at one point my testing Nessus said this is an open relay. I fixed my configuration and ran Nessus again and it didn't complain. So I felt that the server was not an open relay. Then I got a call from my ISP two days later saying my bandwidth had spiked and SPAMCOP had sent them a message complaining. Here is my config:
| Quote: | harper postfix # postconf -n
alias_database = hash:/etc/mail/aliases
alias_maps = hash:/etc/mail/aliases
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/lib/postfix
debug_peer_level = 2
default_destination_concurrency_limit = 2
home_mailbox = .maildir/
html_directory = no
inet_interfaces = all
local_destination_concurrency_limit = 2
mail_owner = postfix
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain
mydomain = domain.com
myhostname = harper.domain.com
mynetworks = 66.116.103.139/8, 127.0.0.0/8
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/postfix-2.1.5-r2/readme
sample_directory = /etc/postfix
sendmail_path = /usr/sbin/sendmail
setgid_group = postdrop
smtpd_tls_CAfile = /etc/postfix/cacert.pem
smtpd_tls_auth_only = yes
smtpd_tls_cert_file = /etc/postfix/newcert.pem
smtpd_tls_key_file = /etc/postfix/newreq.pem
smtpd_tls_loglevel = 3
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = yes
tls_random_source = dev:/dev/urandom
unknown_local_recipient_reject_code = 550
harper postfix #
|
|
|
Networking & Security
