[Postfixbuch-users] spam e-mail umgeht amavis

andreas hildebrandt postfix-user at arcor.de
Mo Jun 9 15:51:19 CEST 2008 

El lun, 09-06-2008 a las 14:50 +0200, Peer Heinlein escribió:
> Am Montag, 9. Juni 2008 11:49 schrieb andreas hildebrandt:
> 
> > Hat jemand dafür eine Erklärung?
> 
> Config Posten,
> ausführliche (!) vollständige (!) Logzeilen posten.
> 
die Logzeilen waren vollständig, ich hatte nur den Namen der e-mail
Adresse von meinem Kollegen geändert, der Rest ist original und
unverändert

Ansonsten funktioniert ja auch alles prima, es sind vielleicht 1-2
e-mails im Monat die anscheinend an amavis vorbei gehen


Jun  8 21:21:13 mail1 postfix/smtpd[1616]: connect from
mail.ran.ro[86.104.244.8]
Jun  8 21:21:13 mail1 postfix/smtpd[1702]: connect from
213-116-207-82.ip.ukrtel.net[82.207.116.213]
Jun  8 21:21:15 mail1 postfix/policyd-weight[5233]: weighted check:
NOT_IN_SBL_XBL_SPAMHAUS=-1.5 NOT
_IN_SPAMCOP=-1.5 NOT_IN_BL_NJABL=-1.5 IN_IX_MANITU=4.35
CL_IP_EQ_FROM_MX=-3.1; <client=86.104.244.8> 
<helo=mail.ran.ro> <from=scarrittnyoi at ran.ro>
<to=xxx.xxx at cairoconsult.de>; rate: -3.25
Jun  8 21:21:15 mail1 postfix/policyd-weight[5233]: decided
action=PREPEND X-policyd-weight:  NOT_IN_
SBL_XBL_SPAMHAUS=-1.5 NOT_IN_SPAMCOP=-1.5 NOT_IN_BL_NJABL=-1.5
IN_IX_MANITU=4.35 CL_IP_EQ_FROM_MX=-3.
1; rate: -3.25; <client=86.104.244.8> <helo=mail.ran.ro>
<from=scarrittnyoi at ran.ro> <to=xxx.xxx at cairoconsult.de>; delay: 2s
Jun  8 21:21:15 mail1 postfix/smtpd[1616]: 374807EC64:
client=mail.ran.ro[86.104.244.8]
Jun  8 21:21:15 mail1 postfix/cleanup[1736]: 374807EC64:
message-id=<1027EC0A.9AE2282F at Ran.Ro>
Jun  8 21:21:15 mail1 postfix/oqmgr[636]: 374807EC64:
from=<scarrittnyoi at Ran.Ro>, size=1821, nrcpt=1 
(queue active)
Jun  8 21:21:15 mail1 postfix/smtpd[1616]: disconnect from
mail.ran.ro[86.104.244.8]
Jun  8 21:21:15 mail1 postfix/smtp[1737]: 374807EC64:
to=<xxx.xxx at cairoconsult.de>, relay=62.
206.225.67[62.206.225.67]:25, delay=1.7, delays=1.6/0.05/0.06/0.04,
dsn=2.0.0, status=sent (250 62.20
6.225.67: Message accepted for delivery)



postconf -n

alias_maps = hash:/etc/mail/aliases
bounce_queue_lifetime = 2d
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/lib/postfix
debug_peer_level = 2
disable_vrfy_command = yes
home_mailbox = Mail/
html_directory = /usr/share/doc/postfix-2.2.10/html
inet_interfaces = all
mail_owner = postfix
mailbox_size_limit = 314572800
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
maximal_queue_lifetime = 3d
message_size_limit = 314572800
myhostname = mail1.cairo.ag
mynetworks = 127.0.0.0/8, 62.206.226.73, 62.206.225.67, 62.206.225.137
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/postfix-2.2.10/readme
receive_override_options = no_address_mappings
relay_domains = hash:/etc/postfix/relay_domains
relay_recipient_maps = hash:/etc/postfix/relay_recipients
ldap:/etc/postfix/ldap_relay_recipient_maps
relayhost = [62.206.225.67]
sample_directory = /etc/postfix
sendmail_path = /usr/sbin/sendmail
setgid_group = postdrop
show_user_unknown_table_name = no
smtp_helo_name = mail1.cairo.ag
smtpd_banner = mail1.cairo.ag ESMTP
smtpd_client_restrictions = 
smtpd_data_restrictions = reject_multi_recipient_bounce
smtpd_helo_restrictions = 
smtpd_recipient_restrictions = reject_non_fqdn_sender
reject_non_fqdn_recipient       reject_unknown_sender_domain
reject_unknown_recipient_domain permit_mynetworks
reject_unauth_destination       reject_unauth_pipelining
check_recipient_access hash:/etc
/postfix/recipient-access       check_helo_access
pcre:/etc/postfix/helo_checks check_sender_access
hash:/etc/postfix/amavis_senderbypass
reject_non_fqdn_helo_hostname   reject_invalid_helo_hostname
check_sender_mx_access cidr:/etc/postfix/bogus_mx       check_po
licy_service inet:127.0.0.1:12525       warn_if_reject
reject_unknown_helo_hostname     permit
smtpd_restriction_classes = recipient-access-cairo,
recipient-access-cairoconsult,  recipient-access-piekenbrock,
recipien
t-access-sumaro
smtpd_sender_restrictions = 
strict_rfc821_envelopes = yes
transport_maps = hash:/etc/postfix/transport
unknown_local_recipient_reject_code = 550
virtual_alias_maps = hash:/etc/postfix/virtual_alias




> Mit freundlichen Grüßen
> 
> Peer Heinlein
> 
> 
> -- 
> Heinlein Professional Linux Support GmbH
> Linux: Akademie - Support - Hosting
> 
> http://www.heinlein-support.de
> Tel: 030 / 40 50 51 - 0  ***  Fax: - 19
> 
> Zwangsangaben lt. §35a GmbHG:
> HRB 93818 B / Amtsgericht Berlin-Charlottenburg, 
> Geschäftsführer: Peer Heinlein  --  Sitz: Berlin

Mehr Informationen über die Mailingliste Postfixbuch-users