[prev in list] [next in list] [prev in thread] [next in thread]
List: postfix-users
Subject: smtpd_helo_restrictions and check_helo_access
From: Bob Tanner <tanner () real-time ! com>
Date: 2006-01-28 17:04:08
Message-ID: drg86d$v4d$1 () sea ! gmane ! org
[Download RAW message or body]
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I am trying to blacklist a virus zombie
CPE-65-29-46-102.mn.res.rr.com
65.29.46.102
I thought the best place to do this would be in the smtpd_helo_restrictions
smtpd_delay_reject = yes
smtpd_helo_required = yes
smtpd_helo_restrictions =
permit_mynetworks,
check_helo_access
hash:/etc/postfix/helo_access,
reject_non_fqdn_hostname,
reject_invalid_hostname,
permit
$ cat /etc/postfix/helo_access
CPE-65-29-46-102.mn.res.rr.com REJECT Virus zombie
65.29.46.102 REJECT virus zombie
$ postmap helo_access
But logs show the following:
Jan 28 04:28:28 mx1 postfix/smtpd[13837]: connect from
CPE-65-29-46-102.mn.res.rr.com[65.29.46.102]
Jan 28 04:28:28 mx1 postfix/smtpd[13837]: E503F877E7:
client=CPE-65-29-46-102.mn.res.rr.com[65.29.46.102]
Jan 28 04:28:30 mx1 postfix/smtpd[13837]: disconnect from
CPE-65-29-46-102.mn.res.rr.com[65.29.46.102]
Jan 28 04:28:33 mx1 amavis[13424]: (13424-03) ip_addr_to_name: returning:
CPE-65-29-46-102.mn.res.rr.com
Jan 28 04:28:34 mx1 amavis[13424]: (13424-03) ip_addr_to_name: returning:
CPE-65-29-46-102.mn.res.rr.com
Jan 28 04:28:35 mx1 amavis[13424]: (13424-03) INFECTED (Worm.Mytob.AS),
<?@CPE-65-29-46-102.mn.res.rr.com> -> <mike@aafedt.com>, quarantine
virus-20060128-042833-13424-03, Message-ID:
<20060128102828.E503F877E7@mx1.real-time.com>, Hits: -
- --
Bob Tanner <tanner@real-time.com> | Phone : (952)943-8700
http://www.real-time.com, Minnesota, Linux | Fax : (952)943-8500
Key fingerprint = AB15 0BDF BCDE 4369 5B42 1973 7CF1 A709 2CC1 B288
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
iD8DBQFD26QMfPGnCSzBsogRAq5AAJ95P/9jkG+pbEqQHadEaY3GOL64vwCggrLC
eFs7851p4THXqDS7KO2973g=
=RLat
-----END PGP SIGNATURE-----
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic