Hi, in our two mail servers i see last weeks this:
non-SMTP command from 250.84.221.62.dyn.idknet.com[62.221.84.250]: From: ? VIAGRA ? Official Site How can i block these accesses? our system is : Centos 5.3 - postfix-2.3.3-2.1.el5_2 - amavisd-maia-2.2.1-2_1.0.2.centos5 - clamd-0.95.2-4.el5.rf - spamassassin-3.2.5-1.el5.rf. this is our configuration: alias_database = hash:/etc/aliases alias_maps = hash:/etc/aliases, hash:/etc/mailman/aliases broken_sasl_auth_clients = yes canonical_maps = hash:/etc/postfix/canonical command_directory = /usr/sbin config_directory = /etc/postfix content_filter = smtp-amavis:[127.0.0.1]:10024 daemon_directory = /usr/libexec/postfix debug_peer_level = 2 default_process_limit = 200 default_transport = smtp disable_vrfy_command = yes html_directory = no inet_interfaces = all local_recipient_maps = hash:/etc/mailman/aliases, ldap:/etc/postfix/ldap-aliases.cf mail_owner = postfix mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp mailq_path = /usr/bin/mailq.postfix manpage_directory = /usr/share/man max_use = 10 message_size_limit = 16777216 mydestination = $myhostname, localhost.$mydomain, localhost, localhost.localdomain mydomain = $myhostname myhostname = myhost.domain.tld mynetworks = 127.0.0.0/8 myorigin = $myhostname newaliases_path = /usr/bin/newaliases.postfix queue_directory = /var/spool/postfix readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES recipient_delimiter = + relay_domains = $myhostname, localhost, hash:/etc/postfix/relay_domains relocated_maps = hash:/etc/postfix/relocated sample_directory = /usr/share/doc/postfix-2.3.3/samples sendmail_path = /usr/sbin/sendmail.postfix setgid_group = postdrop smtpd_banner = $myhostname ESMTP $mail_name ($mail_version) smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, check_client_access hash:/etc/postfix/access, reject_unauth_pipelining, reject_rbl_client zen.spamhaus.org, reject_rbl_client bl.spamcop.net, reject_rbl_client combined.njabl.org, permit smtpd_data_restrictions = reject_unauth_pipelining smtpd_helo_required = yes smtpd_helo_restrictions = permit_mynetworks, permit_sasl_authenticated, check_helo_access hash:/etc/postfix/access_helo, reject_invalid_hostname, reject_unauth_pipelining, permit smtpd_recipient_restrictions = reject_non_fqdn_recipient, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, check_recipient_access hash:/etc/postfix/access_recipient, reject_unknown_recipient_domain, reject_unauth_pipelining, permit smtpd_sasl_auth_enable = yes smtpd_sasl_security_options = noanonymous smtpd_sender_login_maps = ldap:/etc/postfix/ldap-aliases.cf smtpd_sender_restrictions = reject_non_fqdn_sender, permit_mynetworks, permit_sasl_authenticated, check_sender_access hash:/etc/postfix/access_sender, check_client_access cidr:/etc/postfix/access_client, reject_sender_login_mismatch, reject_unknown_sender_domain, reject_unauth_pipelining, permit smtpd_tls_CAfile = /etc/pki/tls/certs/gd_intermediate_bundle.crt smtpd_tls_cert_file = /etc/pki/tls/certs/postfix.pem smtpd_tls_key_file = $smtpd_tls_cert_file smtpd_use_tls = yes tls_random_source = dev:/dev/urandom transport_maps = hash:/etc/postfix/transport, hash:/etc/postfix/transport_domains unknown_local_recipient_reject_code = 550 virtual_alias_domains = hash:/etc/postfix/destination_domains virtual_alias_maps = hash:/etc/postfix/virtual, ldap:/etc/postfix/ldap-aliases.cf Thanks in advanced!
