[Postfixbuch-users] Massenweise mails an unbekannten Empfänger
Erhard Gruber
E.Gruber at pi-linz.ac.at
Mo Aug 6 11:14:18 CEST 2007
Hallo,
hätte mal wieder eine Frage. Wir haben seit einiger Zeit massenhaft Zustellversuche von mails an
einen bei uns nicht existierenden Empfänger (hyram.daker at pi-linz.ac.at). Manchmal sogar einige
zigtausend Versuche/Tag. Die mails kommen von verschiedensten IPs und mit verschiedenen helos herein
(siehe unten). Postfix hat die mails bis jetzt mit 450 zurückgewiesen, was ja bedeutet, dass die
Zustellung (möglicherweise) nochmal versucht wird. Einige User bei uns haben sich jetzt schon
beklagt, dass das Senden von mails manchmal sehr lange dauert. Weiß zwar noch nicht, ob da ein
Zusammenhang besteht, habe jetzt aber mal die o.a. Adresse per check_recipient_access rejected. Ist
das sinnvoll oder könnte man noch was besseres machen?
Bei uns läuft postfix 2.1.1, amavisd-new mit spamassassin, greylisting und policyd-weight (siehe
postconf -n).
viele Grüße
Erhard Gruber
; ------------------------
; Auszug aus maillog (noch bevor der check_recipient_access-Eintrag gemacht wurde):
Aug 5 04:16:11 mail postfix/smtpd[14494]: NOQUEUE: reject: RCPT from smtp.aic.fr[195.13.32.109]:
450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected: User unknown in local recipient table;
from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP helo=<fallback-out.aic.fr>
Aug 5 04:16:25 mail postfix/smtpd[14495]: NOQUEUE: reject: RCPT from
mail.netvista.net[208.96.29.235]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected: User
unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP
helo=<mail.netvista.net>
Aug 5 04:17:34 mail postfix/smtpd[14133]: NOQUEUE: reject: RCPT from
vimgw2.varianinc.com[4.22.69.6]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected: User
unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP
helo=<vimgw2.varianinc.com>
Aug 5 04:17:51 mail postfix/smtpd[14494]: NOQUEUE: reject: RCPT from
listserv.surfnet.nl[192.87.5.177]: 450 <hyram.daker at PI-LINZ.AC.AT>: Recipient address rejected: User
unknown in local recipient table; from=<> to=<hyram.daker at PI-LINZ.AC.AT> proto=ESMTP
helo=<nic.surfnet.nl>
Aug 5 04:17:51 mail postfix/smtpd[14494]: NOQUEUE: reject: RCPT from
listserv.surfnet.nl[192.87.5.177]: 450 <hyram.daker at PI-LINZ.AC.AT>: Recipient address rejected: User
unknown in local recipient table; from=<> to=<hyram.daker at PI-LINZ.AC.AT> proto=ESMTP
helo=<nic.surfnet.nl>
Aug 5 04:17:51 mail postfix/smtpd[14494]: NOQUEUE: reject: RCPT from
listserv.surfnet.nl[192.87.5.177]: 450 <hyram.daker at PI-LINZ.AC.AT>: Recipient address rejected: User
unknown in local recipient table; from=<> to=<hyram.daker at PI-LINZ.AC.AT> proto=ESMTP
helo=<nic.surfnet.nl>
Aug 5 04:17:51 mail postfix/smtpd[14494]: NOQUEUE: reject: RCPT from
listserv.surfnet.nl[192.87.5.177]: 450 <hyram.daker at PI-LINZ.AC.AT>: Recipient address rejected: User
unknown in local recipient table; from=<> to=<hyram.daker at PI-LINZ.AC.AT> proto=ESMTP
helo=<nic.surfnet.nl>
Aug 5 04:18:39 mail postfix/smtpd[12827]: NOQUEUE: reject: RCPT from
seusmx04.electrolux.se[193.183.93.4]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected:
User unknown in local recipient table; from=<OutOfOffice.Manager at electrolux.com>
to=<hyram.daker at pi-linz.ac.at> proto=ESMTP helo=<seusmx03.electrolux.se>
Aug 5 04:18:46 mail postfix/smtpd[14470]: NOQUEUE: reject: RCPT from unknown[217.13.81.25]: 450
<hyram.daker at pi-linz.ac.at>: Recipient address rejected: User unknown in local recipient table;
from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP helo=<flash100.flash10.net>
Aug 5 04:19:03 mail postfix/smtpd[13378]: NOQUEUE: reject: RCPT from
p4-7162.uk2net.com[213.232.93.107]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected:
User unknown in local recipient table; from=<aw at p4-7162.uk2net.com> to=<hyram.daker at pi-linz.ac.at>
proto=ESMTP helo=<p4-7162.uk2net.com>
Aug 5 04:19:18 mail postfix/smtpd[14133]: NOQUEUE: reject: RCPT from unknown[72.32.198.34]: 450
<hyram.daker at pi-linz.ac.at>: Recipient address rejected: User unknown in local recipient table;
from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP helo=<110631-app1.www.jscgroup.com>
Aug 5 04:20:15 mail postfix/smtpd[12827]: NOQUEUE: reject: RCPT from
ns2.atih.sante.fr[84.14.55.141]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected: User
unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP
helo=<mx3.atih.sante.fr>
Aug 5 04:20:29 mail postfix/smtpd[13378]: NOQUEUE: reject: RCPT from smtp.gldn.net[194.67.1.209]:
450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected: User unknown in local recipient table;
from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP helo=<smtp.gldn.net>
Aug 5 04:20:42 mail postfix/smtpd[14494]: NOQUEUE: reject: RCPT from
saturn.mediatronix.de[62.75.160.22]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected:
User unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP
helo=<saturn.mediatronix.de>
Aug 5 04:21:11 mail postfix/smtpd[12827]: NOQUEUE: reject: RCPT from
vimgw2.varianinc.com[4.22.69.6]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected: User
unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP
helo=<vimgw2.varianinc.com>
Aug 5 04:21:27 mail postfix/smtpd[13378]: NOQUEUE: reject: RCPT from
www281.sakura.ne.jp[202.181.97.91]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected:
User unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP
helo=<www281.sakura.ne.jp>
Aug 5 04:22:19 mail postfix/smtpd[14494]: NOQUEUE: reject: RCPT from
mail.netvista.net[208.96.29.235]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected: User
unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP
helo=<mail.netvista.net>
Aug 5 04:22:59 mail postfix/smtpd[13378]: NOQUEUE: reject: RCPT from
server1.trompler.at[83.151.27.103]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected:
User unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP
helo=<server1.trompler.at>
Aug 5 04:23:03 mail postfix/smtpd[12827]: NOQUEUE: reject: RCPT from
rental153.next-web.ad.jp[211.10.8.153]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected:
User unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=SMTP
helo=<ns.ymge.com>
Aug 5 04:23:53 mail postfix/smtpd[12827]: NOQUEUE: reject: RCPT from
ldvolver.bcm.tmc.edu[128.249.38.12]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected:
User unknown in local recipient table; from=<nobody at cuda.corp.bcm.tmc.edu>
to=<hyram.daker at pi-linz.ac.at> proto=ESMTP helo=<cuda.corp.bcm.tmc.edu>
Aug 5 04:24:58 mail postfix/smtpd[13378]: NOQUEUE: reject: RCPT from
mail-gw.jenkon.com[207.170.195.145]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected:
User unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP
helo=<mail-gw.jenkon.com>
Aug 5 04:24:59 mail postfix/smtpd[13378]: NOQUEUE: reject: RCPT from
out-mta12.ai270.net[83.244.130.52]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected:
User unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP
helo=<out-mta10.ai270.net>
Aug 5 04:26:35 mail postfix/smtpd[13378]: NOQUEUE: reject: RCPT from nebula.443.ch[217.11.47.149]:
450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected: User unknown in local recipient table;
from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP helo=<nebula.443.ch>
Aug 5 04:26:40 mail postfix/smtpd[14494]: NOQUEUE: reject: RCPT from
vimgw2.varianinc.com[4.22.69.6]: 450 <hyram.daker at pi-linz.ac.at>: Recipient address rejected: User
unknown in local recipient table; from=<> to=<hyram.daker at pi-linz.ac.at> proto=ESMTP
helo=<vimgw2.varianinc.com>
; ----------------------
postconf -n :
alias_maps = hash:/etc/aliases
canonical_maps = hash:/etc/postfix/canonical
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/lib/postfix
debug_peer_level = 2
defer_transports =
disable_dns_lookups = no
disable_vrfy_command = yes
header_checks = pcre:/etc/postfix/header_checks
html_directory = /usr/share/doc/packages/postfix/html
inet_interfaces = all
mail_owner = postfix
mail_spool_directory = /var/mail
mailbox_command =
mailbox_size_limit = 0
mailbox_transport =
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
message_size_limit = 10240000
mydestination = $myhostname, localhost.$mydomain, $mydomain
mydomain = pi-linz.ac.at
myhostname = mail.pi-linz.ac.at
mynetworks = 127.0.0.0/8 10.18.190.0/24 80.122.37.54/32 10.191.32.5/32
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/packages/postfix/README_FILES
relayhost = [mgate.asn-linz.ac.at]
relocated_maps = hash:/etc/postfix/relocated
sample_directory = /usr/share/doc/packages/postfix/samples
sender_canonical_maps = hash:/etc/postfix/sender_canonical
sendmail_path = /usr/sbin/sendmail
setgid_group = maildrop
smtp_sasl_auth_enable = no
smtp_use_tls = no
smtpd_client_restrictions =
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks, reject_invalid_hostname
smtpd_recipient_restrictions = reject_unauth_pipelining, reject_non_fqdn_sender,
reject_unknown_sender_domain, reject_unknown_recipient_domain, permit_mynetworks,
reject_unauth_destination, reject_invalid_hostname, check_helo_access
hash:/etc/postfix/helo_access, check_sender_access hash:/etc/postfix/sender_access,
check_recipient_access hash:/etc/postfix/recipient_access, check_policy_service
inet:127.0.0.1:12525, check_policy_service inet:127.0.0.1:60000, permit
smtpd_sasl_auth_enable = no
smtpd_sender_restrictions = hash:/etc/postfix/access
smtpd_use_tls = no
strict_rfc821_envelopes = no
transport_maps = hash:/etc/postfix/transport
unknown_local_recipient_reject_code = 450
Mehr Informationen über die Mailingliste Postfixbuch-users