Am 30.11.2012 11:52, schrieb Tomas Macek: > If the Postfix's behaviour on port 587 is the same as with 25, it seems > to me to be better to let the MUAs to send their mail to 25. In the > postscreen the mynetworks are automatically whitelisted and on 25 they > have better chance to send their mails, because 25 should not be > overloaded because of postscreen used. > > Using firewall on 587 is useless, because our clients travel with their > computers even around Europe and want to send their mails.
please reread the doku why and how using submission as its used with auth only, no spammer will ever deliver mail unless he has a valid auth via submission, most attacks running against submission are brute force attacks ,try finding user and auth accouts combination to hack in for brute force fail2ban or simular is good enough, process limits or mail send limits are managed by other stuff i.e postfix parameters and/or policy servers Best Regards MfG Robert Schetterer -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstraße 15, 81669 München Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263 Vorstand: Patrick Ben Koetter, Axel von der Ohe, Marc Schiffbauer Aufsichtsratsvorsitzender: Joerg Heidrich