diordonez
asked on
Securing sending postfix e-mail
I have a redhat 9 server with postfix and dns for "www.mydomain.com". I have been receiving weird e-mails such as "any_user@mydomain.com", also e-mails with several domains that i suspect are being originated from my own server.
How can i restrict my mail server to accept only outgoing e-mails originated from my lan 192.168.0.0/255.255.255.22 4 and also for the webmail interface in www.mydomain.com/mail
Thanks a lot !
How can i restrict my mail server to accept only outgoing e-mails originated from my lan 192.168.0.0/255.255.255.22
Thanks a lot !
If you want to watch this traffic in real time, I suggest getting ethereal (or tethereal -- the text based version for the command line) and use the following filter: "tcp port 25", which will catch all SMTP mail traffic. Watch this traffic for spoofed mail ... in doing so you may be able to determine also if mail is being relayed from your box or if the offending mail servers are enumerating mail accounts using the VRFY command (it's basically like saying "Is Joe a user on this mail server?").
Make sure the following line is in your postfix config file:
disable_vrfy_command = yes
-tcmv
www.mvix.net
Make sure the following line is in your postfix config file:
disable_vrfy_command = yes
-tcmv
www.mvix.net
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
To see where the message really came from you need to look at the envelope headers and how that's done depends on what mail client you use. For example with Evolution you select "View->Message Display->Show Full Headers". With that visible the first "Received:" from the bottom is the system that originated the message.