I've enabled Recipient address verification on my external mail servers (MX) as well as internals. Sometimes mails for non-existent accounts do pass and I'm trying to figure out why this happens and how to stop it. This does not happens every time. Most mails for unverified recipients get a 450, but sometimes some of them do slip in.
In case you are unaware, the restrictions function conceptually like firewall rules. Starting with the first and working top down. Or left to right depending on config formatting. The first conditional match happens. It stops processing and doesn't continue checking the rest of the conditions. So for example, you have permit_mynetworks before reject_unknown_recipient_domain. Anything coming from an IP in your trusted networks will stop at the permit_mynetworks and thus reject_unknown_recipient_domain never gets checked. The email has already been accepted due to the permit_mynetworks. I'm not saying either one of those conditions has anything to do with what you are experiencing. But now knowing that, you can see why sometimes it works and sometimes it doesn't. I'm guessing there is something that sometimes matches and causes accepting of the mail before the conditions are you expecting to reject the mail. _______________________________________________ Postfix-users mailing list -- [email protected] To unsubscribe send an email to [email protected]
