Tema: Re: postfix
Autorius: alex sysmonk
Data: 2008-05-14 14:20:11
Nerijus wrote:
> Mantas wrote:
>> ka darot su tokiais hostais?
>>
>> May 14 00:05:55 mail postfix/smtpd[91002]: NOQUEUE: reject: RCPT from
>> unknown[217.117.17.117]: 450 4.7.1 Client host rejected: cannot find
>> your hostname, , [217.117.17.117]; from=<zzz@kaspersky.lt>
>> to=<zzz@zzzz.lt> proto=ESMTP helo=<mail.kaspersky.lt>
>>
>> cia matau 217.117.17.117 neturi reverso.
>>
>>
>> kitas pvz:
>> May 14 00:11:12 mail postfix/smtpd[49122]: NOQUEUE: reject: RCPT from
>> unknown[62.212.222.104]: 450 4.7.1 Client host rejected: cannot find
>> your hostname, [62.212.222.104]; from=<zzz@prokuraturos.lt>
>> to=<zzz@zzz.lt> proto=ESMTP helo=<is.prokuraturos.lt>
>>
>> cia jungiasi is 62.212.222.104,
>> o nslookup is.prokuraturos.lt = 62.212.222.101
>>
>>
>> mano aprobojimai postfixe:
>> smtpd_client_restrictions =
>>     permit_mynetworks,
>>     permit_sasl_authenticated,
>>     reject_unknown_client_hostname,
>>     reject_rbl_client sbl.spamhaus.org,
>>     reject_rbl_client xbl.spamhaus.org,
>>     reject_rbl_client bl.spamcop.net,
>>     reject_rbl_client list.dsbl.org
>>
>> smtpd_helo_restrictions =
>>     permit_mynetworks,
>>     check_helo_access hash:$base/access_helo,
>>     permit_sasl_authenticated,
>>     reject_invalid_helo_hostname,
>>     reject_non_fqdn_helo_hostname
>>
>>
>> suprantu kad galima idet i access lista tuos hostus,
>> bet kai serveriu 15... tai negi deliosi pastoviai tokius hostus.
>> ???
> 
>     Ishmesk reject_unknown_client_hostname.
>     
>     Aishku adminai tu serveriu irgi debilai, kad nesugeba ant meilo
> servo normalaus reverso pakurt. Vat susitartu visas internetas ir visi
> juos uzhblokuotu, tai gal tada susitvarkytu savo darzus.
> 
>     Ash dar kartais, kai laiko turiu, tokiem (nu ten su domenu vrm.lt ir
> pan.) parashau laishka, tipo jusu laishkai blokuojami musu serve kol
> nesusitvarkysit reverso. Paprastai - 0 emociju.
> 
>     N. M.
> 
>     P. S. gali naudot zen.spamhaus.org vietoje tu dvieju kitu.
> 
>     


Jei liatuviska kontora, tai geriausiai informuoti admina emailu, o
negavus atsakymo - paskambinti ir paaiskinti telefonu. Taip, bus tokiu
kontoru kurios vistiek nesusitarkys, bet kol Ju neprades blokuoti
daugiau zmoniu ( ir JUS prie to prisidesite :P ) tai jie to ir
nesusitvarkys.

IMHO, neturejimas reverso ant pasto serverio prilygsta serverio
administravimo/administratoriaus trukumu, o jeigu serveris nera
administruojamas - reiskia is jo priimineti laisku nera prasmes...

Del zen'o - tai zen'as isskirus xbl'o ir sbl'o includina dar pbl'a.
Pbl'a naudoti ne visi noretu, taigi sakyti kad 'naudot zen vietoj tu
dvieju' yra blogai ( klientai turintis serveri 'namie' su geru reversu
ir gerai administruojami vistiek bus blokuojami :< )

Jei nieko pries pbl'a neturi adminas, tai tikrai geriau naudoti zen'a
nei xbl+sbl+pbl kombinacija, nes sumazeja uzklausu kiekis. O spamhaus'as
blokuoja jeigu yra virsijama 35k uzklausu kiekis / day.
+prisijungimas i VPN serva is po NAToPiktas vanusas!2008-06-05 11:40
OFF: 64QAM total bit rateAleksandr2008-06-05 10:39
+Nesikeicianti sistema Vmwaredepo2008-06-04 21:46
+DirectAdminMartynas2008-06-04 15:23
+diebian apt-get klausimasAur2008-06-04 12:46
+"kodėl nekenčiu linux" iš nnm.TZ2008-06-04 11:00
Pasto peradresavimasMakauskas Vidas2008-06-04 08:04
+OFF: firefoxlingus2008-06-03 14:40
+aliasia vidiniam naudojimuiRobertas2008-06-03 11:45
+check; ping hostRolkiz2008-06-03 11:44
+nagioslingus2008-06-02 22:32
KDE4Justas.p2008-06-02 14:23
+Win vs LinuxArtūras Šlajus2008-06-02 11:37
+spekit kokia OS 2Nerijus T2008-05-31 23:09
+spekit kokia OSNerijus T2008-05-31 22:40
+ubuntu servo mysql problemavist2008-05-29 13:11
+snmp -> MIB -> OID ->Timeout: No Response from localhost.PiLou2008-05-28 22:53
+Kaip nustatyti diskus?Andrius2008-05-28 16:10
+ttyS1 idomumaiTomas D.2008-05-27 22:04
+argumentų perdavimas bashlingus2008-05-27 22:02
+rrdtoollingus2008-05-27 20:05
ant gnome Terminal neveikia shift+f1..12 :( reikia pagalbosaa2008-05-27 19:30
+Neaiskumai del diskoAladdin2008-05-24 10:14
jordan shoes 30$, handbag 30$,free shipping ,help you to dropship,open the website to have a look at ,give me some commentLucy<gzq333@yahoo.com>2008-05-24 08:38
+Tobulas SS :)Vidas Makauskas2008-05-23 21:25
Micro-Cogeneration UnitVidas Makauskas2008-05-23 19:37
+rekomenduokit skaitiniussh2008-05-22 11:24
+Q: bind'ui rejectinti uzklausasDex2008-05-22 10:42
+eilinis pasto uzdavinysVJ2008-05-22 00:59
+KDE4 black screen of death!Vytautas2008-05-21 21:10
+panlingus2008-05-20 22:55
+E-pašto turinio skaneriskrx2008-05-20 00:19
+spamkikas2008-05-19 13:38
+Virtualhost bėdalingus2008-05-18 17:52
+Kaip kovoti?ssh2008-05-16 08:15
+MTA pasirinkimasAlgis2008-05-15 15:14
+Naudota irangaEdvardas Butrimas2008-05-15 14:30
+postfix: host rejectedMantas2008-05-14 11:27
-postfixMantas2008-05-14 11:26
Re: postfixNerijus2008-05-14 13:19
Re: postfixalex sysmonk2008-05-14 14:20
Re: postfixNerijus2008-05-14 15:28
Re: postfixalex sysmonk2008-05-14 15:49
+dovecotdd2008-05-14 10:09
+ar ant linux yra sistemos klaidu logai kaip ant win?aa2008-05-13 20:22
+ant Windows Server 2008 su vitualiu FreeBSD saugumasbudulinekas2008-05-12 14:17
+sveikinimai seimuidd2008-05-08 09:12
+Spamassassinauksiniz2008-05-06 09:30