269603Re: rejecting clients greeting me with my own name
- Oct 4, 2010also sprach Jeroen Geilman <jeroen@...> [2010.10.04.1822 +0200]:
> Where, exactly ?The HELO greeting.
> The real client IP ? That can't be trivially spoofed, and so wouldI have seen clients who apparently connect to my MX with the IP and
> actually BE your server.
then send the IP after HELO.
> Personally, I reject all EHLO it it's not FQDN, not a valid hostname,% swaks -h '126.96.36.199' -t jeroen@...
> or corresponds with my own identity.
=== Trying xs.adaptr.nl:25...
=== Connected to xs.adaptr.nl.
<- 220-Are you naughty or nice ?
<- 220 mail.adaptr.nl ESMTP Ready.
-> EHLO 188.8.131.52
(same with [184.108.40.206])
> That pretty much accomplishes what you're talking about, without theSo you keep a file in /etc/postfix containing your own identity?
> need for additional options.
That's redundant, isn't it? I can trivially do this with puppet, but
I figure it would be something postfix could do too.
martin | http://madduck.net/ | http://two.sentenc.es/
to err is human - to moo, bovine
- << Previous post in topic Next post in topic >>