On 2/3/09, Arief Yudhawarman <arief.mi...@jember.net> wrote:
> On Mon, Feb 02, 2009 at 08:42:35AM +0700, Hans Wiriya Tsai wrote:
>> postfix saya skrg suka mengirim email yg berasal dari user itu
>> sendiri, misalnya saya kirim ke saya padahal kita ga kirim. Ini
>> terjadi hampir ke semua user, Isinya pun junk mail. Settingan mana ya
>> yg hrs di perbaiki di Postfix? thx atas bantuannya...
>
> Untuk ini postfix harus diconfigure dg SASL. Ini akan memaksa user untuk
> autentikasi dahulu (smtp auth) saat kirim email via postfix.
> Dan ditambah lagi dg fitur smtpd_sender_restrictions. Ini akan memaksa
> postfix untk memeriksa apakah benar email yg dikirim dr user dr domain
> sendiri itu benar dia atau bukan, jd jika ada intruder dr internet yg konek
> ke postfix anda dan forge alamat email seakan2 dr domain anda dg alamat
> email yg valid otomatis akan di-reject.
>
> /etc/postfix/main.cf:
>
> smtpd_recipient_restrictions =
> permit_mynetworks,
> permit_sasl_authenticated,
reject_unauth_destination
> ....
> permit
> smtpd_sender_restrictions = reject_sender_login_mismatch,
> reject_unknown_sender_domain
reject_sender_login_mismatch
Reject the request when $smtpd_sender_login_maps specifies an owner
for the MAIL FROM address, but the client is not (SASL) logged in as
that MAIL FROM address owner; or when the client is (SASL) logged in,
but the client login name doesn't own the MAIL FROM address according
to $smtpd_sender_login_maps.
reject_unauthenticated_sender_login_mismatch
Enforces the reject_sender_login_mismatch restriction for
unauthenticated clients only. This feature is available in Postfix
version 2.1 and later.
gw demen nih belajarnya, modal gw cuma ceban di warnet
