Am 28.06.2016 um 14:52 schrieb Jari Fredriksson:
I just refuse the believe that the technology has to trust to the From:.*xxx in the smtp payload and not reject this at once. Does the customer use some dmarc-implementation in their mail chain at all?
well, when none of your users are supposed to use maling lists like this you can reject with http://www.postfix.org/header_checks.5.html and a simple regex-rule
that depends on a sane setup where your MX server is *never* used to handle internal email by have a dedicated inbound and a dedicated submission server
signature.asc
Description: OpenPGP digital signature