Page 2 of 2 FirstFirst 12
Results 11 to 15 of 15

Thread: SMTP authentication for zimbra postfix

  1. #11
    Vivek k c is offline Awaiting Activation
    Join Date
    Aug 2007
    Posts
    15
    Rep Power
    0

    Unhappy

    Quote Originally Posted by phoenix View Post
    Perhaps I'm being a bit dumb this morning but your post has confused me.

    If I understand this correctly you are saying that the only domain on your server is mydomain.com and spammers are generating mail for test1x@mydomain.com (and here's part of my confusion), this user doesn't exist but the mail gets delivered via a distribution list. Am I still missing the point?

    There are also several settings in the Admin Ui that can further restrict who can connect to your server, check the following settings:

    Code:
    Protocol checks:
    
    	Hostname in greeting violates RFC (reject_invalid_hostname)
    	Client must greet with a fully qualified hostname (reject_non_fqdn_hostname)
    	Sender address must be fully qualified (reject_non_fqdn_sender)
    
    DNS checks:
    
    	Client's IP address (reject_unknown_client)
    	Hostname in greeting (reject_unknown_hostname)
    	Sender's domain (reject_unknown_sender_domain)
    Have you actually made any changes on who can send to distribution lists as described in this article?

    RestrictPostfixRecipients - Zimbra :: Wiki

    Ooops..really I confused you. It's like this -

    The only domain on my server is mydomain.com.
    Only mydomain.com users allowed to send mails to a internal distributions group (say, managers@mydomain.com).
    Problem: spammers are generating mails from a invalid mail address in mydomain.com - say, test1x@mydomain.com. This user doesn't exist but the mail gets delivered to the distribution list called managers@mydomain.com.

    Requirement:-

    valid_user@mydomain.com - permit to send mails to -> managers@mydomain.com

    invalid_user_SPAMER@mydomain.com - BLOCK sending mails to -> managers@mydomain.com


    The fact that you have set /opt/zimbra/conf/zmmta.cf to 'yes' will reject any mail sent to your server for an email address that doesn't exist on the server. Isn't that what you're describing above?
    This works accordingly.

  2. #12
    Vivek k c is offline Awaiting Activation
    Join Date
    Aug 2007
    Posts
    15
    Rep Power
    0

    Unhappy

    Quote Originally Posted by phoenix View Post
    Perhaps I'm being a bit dumb this morning but your post has confused me.

    If I understand this correctly you are saying that the only domain on your server is mydomain.com and spammers are generating mail for test1x@mydomain.com (and here's part of my confusion), this user doesn't exist but the mail gets delivered via a distribution list. Am I still missing the point?

    There are also several settings in the Admin Ui that can further restrict who can connect to your server, check the following settings:

    Code:
    Protocol checks:
    
    	Hostname in greeting violates RFC (reject_invalid_hostname)
    	Client must greet with a fully qualified hostname (reject_non_fqdn_hostname)
    	Sender address must be fully qualified (reject_non_fqdn_sender)
    
    DNS checks:
    
    	Client's IP address (reject_unknown_client)
    	Hostname in greeting (reject_unknown_hostname)
    	Sender's domain (reject_unknown_sender_domain)
    Have you actually made any changes on who can send to distribution lists as described in this article?

    RestrictPostfixRecipients - Zimbra :: Wiki

    Ooops..really I confused you. It's like this -

    The only domain on my server is mydomain.com.
    Only mydomain.com users allowed to send mails to a internal distributions group (say, managers@mydomain.com).
    Problem: spammers are generating mails from a invalid mail address in mydomain.com - say, test1x@mydomain.com. This user doesn't exist but the mail gets delivered to the distribution list called managers@mydomain.com.

    Requirement:-

    valid_user@mydomain.com - permit to send mails to -> managers@mydomain.com

    invalid_user_SPAMER@mydomain.com - BLOCK sending mails to -> managers@mydomain.com


    The fact that you have set /opt/zimbra/conf/zmmta.cf to 'yes' will reject any mail sent to your server for an email address that doesn't exist on the server. Isn't that what you're describing above?
    This works, but my issue is differnt right?


    Thanks

    -ViveK
    Last edited by Vivek k c; 02-28-2008 at 03:29 AM.

  3. #13
    Vivek k c is offline Awaiting Activation
    Join Date
    Aug 2007
    Posts
    15
    Rep Power
    0

    Exclamation

    Is this discussion dead? :-((

    In short the needful is like this,

    (Any user in my domain.com) To send (relay) a mail (to anywhere/anybody), the user must be logged in or authenticated. He must use either a E-mail client(outlook, etc) or Zimbra web login (http://mydomain.com/zimbra/mail). Otherwise deny permission & reject the mail!

    Please give me some light...

    Regards,
    -ViveK
    Last edited by Vivek k c; 02-28-2008 at 09:14 AM.

  4. #14
    Bill Brock is offline Outstanding Member
    Join Date
    May 2007
    Location
    Oklahoma
    Posts
    703
    Rep Power
    9

    Default

    Are you simply trying to block all external e-mail from coming through?

    Also, have you checked the headers from the spam messages to see where they are really coming from?

  5. #15
    eliotte is offline Member
    Join Date
    Nov 2008
    Location
    Quebec
    Posts
    10
    Rep Power
    6

    Default

    Hi.. I wrote a C++ program who read audit.log and if a user login too much time in a short time, it disables the user and write the user's email in a text file. So each day, I open the file and verify any 'bad' email account to be sure all of theme was really bad one.

    Generally, a spammer is detected after around 10 relay on the server, so it's very quick. I'm doing other test for now. Maybe I will post it. I think this is what you need for you problem.

Page 2 of 2 FirstFirst 12

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. SMTP Authentication
    By ferra in forum Installation
    Replies: 13
    Last Post: 06-26-2008, 07:25 AM
  2. SMTP authentication problems continue
    By EdMartin in forum Installation
    Replies: 2
    Last Post: 01-11-2008, 03:23 AM
  3. need advice on configuring zimbra to work with fax server
    By pheonix1t in forum Administrators
    Replies: 0
    Last Post: 07-11-2007, 07:46 PM
  4. Is it started or not
    By kwelipatton in forum Installation
    Replies: 10
    Last Post: 03-28-2006, 11:11 PM
  5. SMTP SASL authentication failure
    By igeorg in forum Developers
    Replies: 5
    Last Post: 10-10-2005, 01:23 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •