> See relay_domains and transport_maps.
Hmm, neither of those are set. Never mind, here's my full
main.cf (with some obfuscation):
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no
append_dot_mydomain = no
readme_directory = no
smtpd_tls_cert_file=/etc/ssl/certs/mail.XXXXX.no.crt
smtpd_tls_key_file=/etc/ssl/private/mail.XXXXX.no.key
smtpd_use_tls = yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
myhostname =
ZZZZZ.XXXXX.no
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = XXXXX.no,
ZZZZZ.XXXXX.no,
mail.XXXXX.no,
localhost.XXXXX.no, localhost
relayhost =
mynetworks =
127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_command = procmail -a "$EXTENSION"
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
virtual_alias_domains =
WWWWW.no,
VVVVV.no
virtual_maps = hash:/etc/postfix/virtual
virtual_transport = dovecot
dovecot_destination_recipient_limit = 1
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
smtpd_sasl_auth_enable = yes
smtpd_recipient_restrictions = permit_mynetworks,permit_sasl_authenticated,reject_unauth_destination
smtpd_tls_auth_only = yes
content_filter = smtp-amavis:[127.0.0.1]:10024
receive_override_options = no_address_mappings
smtpd_client_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_pipelining,
reject_rbl_client
zen.spamhaus.org,
message_size_limit = 50000000
smtp_generic_maps = hash:/etc/postfix/generic
smtpd_relay_restrictions = permit_mynetworks,permit_sasl_authenticated,reject_unauth_destination
sender_canonical_maps = tcp:
127.0.0.1:10001
recipient_canonical_maps = tcp:
127.0.0.1:10002
sender_canonical_classes = envelope_sender
recipient_canonical_classes = envelope_recipient
Is there anything more I should do to prevent those obviously dubious email being passed through my server? (Btw, sender/recipient_canonical_maps points to postsrsd so that forwarding works properly.)
Cheers,
Henrik