How to stop postfix sending auto replys (generating backscatter)

We use postfix, on out internet mail gateway, and have been used to send backscatter spam die to the fact that we have had most of our reject codes set to 550, e.g. unknown_address_reject_code = 550

What code should I use to just drop the message with no warning/auto reply?

In the mean time I have set the server to 450, but this will (eventually) cause a bounce from the originating server.

I read somewhere that i could use REJECT, but can't find any mention of that in the postfix documentation.

Any pointers would be hugely appreciated.
Thanks for reading.
Wibble_Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

 
bevhostCommented:
REJECT will send a 550 or (some other 5XX) code anyway.
The only way to prevent a bounce is to accept the message and then trash it.

Using 4XX (eg 450) messages is advisable if the error condition could resolve itself over time (eg dns lookup error), but if you know it's a permanent fatal error then a 5xx error is the way to go otherwise the sending server will just keep trying to resend until it times out.

0
 
Wibble_Author Commented:
OK, so I should be using something like a 571 (Delivery not authorized, message refused) and then dropping the auto reply into /dev/null?

If that is the case, how do I get postfix to re-route the automatic responses?

0
 
bevhostCommented:
As soon as you issue an error the sending MTA will generate an Non Delivery Report.
Since it is the sending MTA that generates the NDR, not the receiving MTA (yours), you cannot block it.

If you don't want a bounce you must accept the entire message and then trash it.

Some servers will receive the entire message and then create new message (which is an NDR) but this is a bad way of doing things, because the backscatter is sent to the (possible forged) proported sender.

At least a 450 or 550 keeps the message from leaving the sending MTA. (ie the one with the spamming client)

ie. The backscatter is not coming from you.

0

Experts Exchange Solution brought to you by ConnectWise

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
 
Wibble_Author Commented:
Although not ideal, i suppose 450's are the way to go :-/
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.