Results 1 to 5 of 5

Thread: Reject forged senders

  1. #1
    resteves is offline Junior Member
    Join Date
    May 2013
    Posts
    9
    Rep Power
    2

    Question Reject forged senders

    Hi,

    Can someone help me with configuration in order to reject forged senders?

    I've installed zimbra server on 192.168.14.0/24 network, and my clients network is 192.168.2.0/24, mynetworks config is only 127.0.0.0/8 192.168.14.0/24.

    I've also configure SPF checks and my SPF record is:

    nslookup -querytype=txt test.vi.pt
    Server: 192.168.2.254
    Address: 192.168.2.254#53

    test.vi.pt text = "v=spf1 -all"


    When i try to send email from my PC (192.168.2.69) withtout authenticating to SMTP, the server doesn't reject it:

    telnet mail.test.vi.pt 25
    Trying 192.168.14.134...
    Connected to mail.test.vi.pt.
    Escape character is '^]'.
    220 mail.test.vi.pt ESMTP Postfix
    HELO vi.pt
    250 mail.test.vi.pt
    MAIL FROM: xpto69@test.vi.pt
    250 2.1.0 Ok
    RCPT TO: admin@test.vi.pt
    250 2.1.5 Ok
    data
    354 End data with <CR><LF>.<CR><LF>
    test
    .
    250 2.0.0 Ok: queued as 8EB1324B81
    quit
    221 2.0.0 Bye

    So, i'm not on a trusted network, i'm not authenticated, and i have SPF checks, shouldn't zimbra reject this?

  2. #2
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,490
    Rep Power
    56

    Default

    Quote Originally Posted by resteves View Post
    So, i'm not on a trusted network, i'm not authenticated, and i have SPF checks, shouldn't zimbra reject this?
    No it shouldn't. If your domain is "test.vi.pt" then your mail server will accept anything for that domain without authentication, that's what mail servers are for.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  3. #3
    resteves is offline Junior Member
    Join Date
    May 2013
    Posts
    9
    Rep Power
    2

    Default

    I searched the foruns a little more and i found what i need on: [SOLVED] Zimbra 7 block email.

    But i guess that post was ok for previous versions of Zimbra, but on current one i get this error:

    Aug 1 18:27:39 dev-mail postfix/smtpd[12948]: error: open database /opt/zimbra/conf/spoofprotection.db: No such file or directory
    Aug 1 18:28:12 dev-mail postfix/smtpd[12948]: warning: hash:/opt/zimbra/conf/spoofprotection is unavailable. open database /opt/zimbra/conf/spoofprotection.db: No such file or directory
    Aug 1 18:28:12 dev-mail postfix/smtpd[12948]: warning: hash:/opt/zimbra/conf/spoofprotection: table lookup problem

    How can i create that DB and add the record to it?

  4. #4
    resteves is offline Junior Member
    Join Date
    May 2013
    Posts
    9
    Rep Power
    2

    Default

    Quote Originally Posted by resteves View Post
    I searched the foruns a little more and i found what i need on: [SOLVED] Zimbra 7 block email.

    But i guess that post was ok for previous versions of Zimbra, but on current one i get this error:

    Aug 1 18:27:39 dev-mail postfix/smtpd[12948]: error: open database /opt/zimbra/conf/spoofprotection.db: No such file or directory
    Aug 1 18:28:12 dev-mail postfix/smtpd[12948]: warning: hash:/opt/zimbra/conf/spoofprotection is unavailable. open database /opt/zimbra/conf/spoofprotection.db: No such file or directory
    Aug 1 18:28:12 dev-mail postfix/smtpd[12948]: warning: hash:/opt/zimbra/conf/spoofprotection: table lookup problem

    How can i create that DB and add the record to it?
    Ok, found it: postmap /opt/zimbra/conf/spoofprotection

  5. #5
    resteves is offline Junior Member
    Join Date
    May 2013
    Posts
    9
    Rep Power
    2

    Default

    Now, i have another problem, with the spoofprotection i can send emails from clients (thunderbird, etc..) but can't from webmail.

    How can i bypass the spoofprotection for the webmail?

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Milter-reject
    By Mo_Hong in forum Administrators
    Replies: 10
    Last Post: 02-04-2014, 11:35 PM
  2. Block Forged From Address
    By davidah in forum Administrators
    Replies: 0
    Last Post: 01-10-2012, 07:45 AM
  3. [SOLVED] May be forged
    By padraig in forum Administrators
    Replies: 3
    Last Post: 02-10-2009, 07:24 AM
  4. Replies: 4
    Last Post: 08-12-2008, 05:53 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •