'smtpd_helo_restrictions and check_helo_access'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       postfix-users
Subject:    smtpd_helo_restrictions and check_helo_access
From:       Bob Tanner <tanner () real-time ! com>
Date:       2006-01-28 17:04:08
Message-ID: drg86d$v4d$1 () sea ! gmane ! org
[Download RAW message or body]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I am trying to blacklist a virus zombie

        CPE-65-29-46-102.mn.res.rr.com
        65.29.46.102

I thought the best place to do this would be in the smtpd_helo_restrictions 

smtpd_delay_reject = yes
smtpd_helo_required = yes
smtpd_helo_restrictions =
        permit_mynetworks,
        check_helo_access
                hash:/etc/postfix/helo_access,
        reject_non_fqdn_hostname,
        reject_invalid_hostname,
        permit

$ cat /etc/postfix/helo_access
CPE-65-29-46-102.mn.res.rr.com  REJECT Virus zombie
65.29.46.102                    REJECT virus zombie

$ postmap helo_access 

But logs show the following:

Jan 28 04:28:28 mx1 postfix/smtpd[13837]: connect from
CPE-65-29-46-102.mn.res.rr.com[65.29.46.102]
Jan 28 04:28:28 mx1 postfix/smtpd[13837]: E503F877E7:
client=CPE-65-29-46-102.mn.res.rr.com[65.29.46.102]
Jan 28 04:28:30 mx1 postfix/smtpd[13837]: disconnect from
CPE-65-29-46-102.mn.res.rr.com[65.29.46.102]
Jan 28 04:28:33 mx1 amavis[13424]: (13424-03) ip_addr_to_name: returning:
CPE-65-29-46-102.mn.res.rr.com
Jan 28 04:28:34 mx1 amavis[13424]: (13424-03) ip_addr_to_name: returning:
CPE-65-29-46-102.mn.res.rr.com
Jan 28 04:28:35 mx1 amavis[13424]: (13424-03) INFECTED (Worm.Mytob.AS),
<?@CPE-65-29-46-102.mn.res.rr.com> -> <mike@aafedt.com>, quarantine
virus-20060128-042833-13424-03, Message-ID:
<20060128102828.E503F877E7@mx1.real-time.com>, Hits: -

- -- 
Bob Tanner <tanner@real-time.com>          | Phone : (952)943-8700
http://www.real-time.com, Minnesota, Linux | Fax   : (952)943-8500
Key fingerprint = AB15 0BDF BCDE 4369 5B42  1973 7CF1 A709 2CC1 B288
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)

iD8DBQFD26QMfPGnCSzBsogRAq5AAJ95P/9jkG+pbEqQHadEaY3GOL64vwCggrLC
eFs7851p4THXqDS7KO2973g=
=RLat
-----END PGP SIGNATURE-----

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic