Simple rule to stomp on falsely self-addressed spam
kplug at davidb.org
Sun Dec 7 14:51:59 PST 2008
On Sun, Dec 07, 2008 at 01:32:23PM -0800, Andrew Lentvorski wrote:
>> [root at ista /usr/local/etc/postfix]# cat helo_access.cf
>> *.randomlogic.net REJECT You are not me!
>> 126.96.36.199 REJECT Spoofed IP!
>> 188.8.131.52/16 REJECT Spammer!
> Aha! I get it. That's just blocking things that lie in the HELO line.
> Got it.
> That's not *quite* what I want.
> What I want is for something that purports to be from domain mydomain.com
> in the "DATA FROM:" line to do a quick match against the IP that is
> currently connected and reject if not one of mine.
Would SPF help you?
One possibly way of doing it: <http://www.howtoforge.com/postfix_spf>
It also detects and rejects mail from any other participating domain
sent from an invalid host.
More information about the KPLUG-List