On Mon, November 25, 2013 11:09 pm, Noel Jones wrote: > That sounds like an abused web form, submitting mail through the > sendmail(1) command. > > As a temporary measure, you can add the web user to main.cf > authorized_submit_users > http://www.postfix.org/postconf.5.html#authorized_submit_users > # main.cf > authorized_submit_users = !www, static:all where www is the abused user > name.
thanks, I was looking for something like this when I recently suffered a 'hacked web site' spewing spam from randomna...@dom.tld, how would I specify allus...@dom.tld ? authorized_submit_users = !@dom.tld, static:all ? can I test it from shell, I tried in main.cf like: authorized_submit_users = !voy...@emu.sbt.net.au, static:all then, $ sendmail myn...@gmail.com but mail was delivered, was that a valid test, or did I do it wrong? (just testing in case need it)