Contenu | Rechercher | Menus

Annonce

Si vous avez des soucis pour rester connecté, déconnectez-vous puis reconnectez-vous depuis ce lien en cochant la case
Me connecter automatiquement lors de mes prochaines visites.

À propos de l'équipe du forum.

#1 Le 03/04/2013, à 14:11

sebaurel

Serveur mail postfix

Bonjour,

Je ne suis pas un expert en sécurité. J'ai installé mon serveur postfix/dovecot en glanant des infos sur plusieurs tutaux.
Depuis quelque temps, je reçois des mail de spam, avec des adresse de mon nom de domaine. Certaines ne sont même plus actives.

Je n'arrive pas à interpreter mes logs. Est-ce que mon serveur sert de relais au spam ou pas ?

Par exemple, j'ai reçu ce mail de mon adresse "postmaster" depuis elle même.
Entete du message :

Return-Path: <menaced9@gmail.com>
Delivered-To: monmail@domaine.com
Received: from localhost (localhost.localdomain [127.0.0.1])
	by ksserveur.kimsufi.com (Postfix) with ESMTP id 1A6CBE044D
	for <monmail@domaine.com>; Sat, 30 Mar 2013 14:01:06 +0100 (CET)
Received: from ksserveur.kimsufi.com ([127.0.0.1])
	by localhost (ksserveur.kimsufi.com [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id aD9j1DPWgC2e for <monmail@domaine.com>;
	Sat, 30 Mar 2013 14:01:06 +0100 (CET)
Date: Sat, 30 Mar 2013 15:04:49 +0200
From: <postmaster@domaine.com>
To: <postmaster@domaine.com>
Subject: =?windows-1252?B?MTAgY29uc2VpbHMgcG91ciBmYWlyZSB0cmF2YWlsbGVyIGwnYXJnZW50IHF1ZSB2b3VzIOp0ZXMgcG91ciB2b3VzLg==?=
MIME-Version: 1.0
Content-Type: text/html;
	charset=unicode
Content-Transfer-Encoding: 7bit
Message-Id: <20130330130106.1A6CBE044D@ksserveur.kimsufi.com>

J'ai donc fait une recherche grep dans les logs :

grep -r 1A6CBE044D /var/log/

/var/log/mail.log.1:Mar 30 14:01:06 ksserveur postfix/smtpd[28721]: 1A6CBE044D: client=localhost.localdomain[127.0.0.1]
/var/log/mail.log.1:Mar 30 14:01:06 ksserveur postfix/cleanup[28717]: 1A6CBE044D: message-id=<20130330130106.1A6CBE044D@ksserveur.kimsufi.com>
/var/log/mail.log.1:Mar 30 14:01:06 ksserveur postfix/qmgr[27759]: 1A6CBE044D: from=<menaced9@gmail.com>, size=3018, nrcpt=1 (queue active)
/var/log/mail.log.1:Mar 30 14:01:06 ksserveur amavis[23490]: (23490-07) Passed CLEAN {RelayedOpenRelay}, [193.34.108.126]:31283 <menaced9@gmail.com> -> <monmail@domaine.com>, Queue-ID: E2340E044B, mail_id: aD9j1DPWgC2e, Hits: -, size: 2534, queued_as: 1A6CBE044D, 115 ms
/var/log/mail.log.1:Mar 30 14:01:06 ksserveur postfix/smtp[28719]: E2340E044B: to=<monmail@domaine.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.36, delays=0.24/0.01/0/0.12, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 1A6CBE044D)
/var/log/mail.log.1:Mar 30 14:01:06 ksserveur dovecot: lda(monmail@domaine.com): msgid=<20130330130106.1A6CBE044D@ksserveur.kimsufi.com>: saved mail to INBOX
/var/log/mail.log.1:Mar 30 14:01:06 ksserveur postfix/pipe[28722]: 1A6CBE044D: to=<monmail@domaine.com>, relay=dovecot, delay=0.18, delays=0.04/0/0/0.13, dsn=2.0.0, status=sent (delivered via dovecot service)
/var/log/mail.log.1:Mar 30 14:01:06 ksserveur postfix/qmgr[27759]: 1A6CBE044D: removed

Puis :
grep -r "Mar 30 14:0" /var/log/mail.log.1 :

Mar 30 14:00:16 ksserveur postfix/smtpd[28504]: connect from 121.Red-83-46-166.dynamicIP.rima-tde.net[83.46.166.121]
Mar 30 14:00:16 ksserveur postfix/smtpd[28504]: lost connection after CONNECT from 121.Red-83-46-166.dynamicIP.rima-tde.net[83.46.166.121]
Mar 30 14:00:16 ksserveur postfix/smtpd[28504]: disconnect from 121.Red-83-46-166.dynamicIP.rima-tde.net[83.46.166.121]
Mar 30 14:01:05 ksserveur postfix/smtpd[28504]: warning: hostname unknown.mccnet.ro does not resolve to address 193.34.108.126: Name or service not known
Mar 30 14:01:05 ksserveur postfix/smtpd[28504]: connect from unknown[193.34.108.126]
Mar 30 14:01:05 ksserveur postfix/smtpd[28504]: E2340E044B: client=unknown[193.34.108.126]
Mar 30 14:01:05 ksserveur postfix/cleanup[28717]: E2340E044B: message-id=<>
Mar 30 14:01:06 ksserveur postfix/qmgr[27759]: E2340E044B: from=<menaced9@gmail.com>, size=2537, nrcpt=1 (queue active)
Mar 30 14:01:06 ksserveur postfix/smtpd[28504]: disconnect from unknown[193.34.108.126]
Mar 30 14:01:06 ksserveur postfix/smtpd[28721]: connect from localhost.localdomain[127.0.0.1]
Mar 30 14:01:06 ksserveur postfix/smtpd[28721]: 1A6CBE044D: client=localhost.localdomain[127.0.0.1]
Mar 30 14:01:06 ksserveur postfix/cleanup[28717]: 1A6CBE044D: message-id=<20130330130106.1A6CBE044D@ksserveur.kimsufi.com>
Mar 30 14:01:06 ksserveur postfix/smtpd[28721]: disconnect from localhost.localdomain[127.0.0.1]
Mar 30 14:01:06 ksserveur postfix/qmgr[27759]: 1A6CBE044D: from=<menaced9@gmail.com>, size=3018, nrcpt=1 (queue active)
Mar 30 14:01:06 ksserveur amavis[23490]: (23490-07) Passed CLEAN {RelayedOpenRelay}, [193.34.108.126]:31283 <menaced9@gmail.com> -> <monmail@domaine.com>, Queue-ID: E2340E044B, mail_id: aD9j1DPWgC2e, Hits: -, size: 2534, queued_as: 1A6CBE044D, 115 ms
Mar 30 14:01:06 ksserveur postfix/smtp[28719]: E2340E044B: to=<monmail@domaine.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.36, delays=0.24/0.01/0/0.12, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 1A6CBE044D)
Mar 30 14:01:06 ksserveur postfix/qmgr[27759]: E2340E044B: removed
Mar 30 14:01:06 ksserveur dovecot: auth-worker(28724): mysql(localhost): Connected to database postfix
Mar 30 14:01:06 ksserveur dovecot: lda(monmail@domaine.com): msgid=<20130330130106.1A6CBE044D@ksserveur.kimsufi.com>: saved mail to INBOX
Mar 30 14:01:06 ksserveur postfix/pipe[28722]: 1A6CBE044D: to=<monmail@domaine.com>, relay=dovecot, delay=0.18, delays=0.04/0/0/0.13, dsn=2.0.0, status=sent (delivered via dovecot service)
Mar 30 14:01:06 ksserveur postfix/qmgr[27759]: 1A6CBE044D: removed
Mar 30 14:01:18 ksserveur postfix/smtpd[28504]: connect from revd102.mail.fdj.fr[195.154.153.102]
Mar 30 14:01:18 ksserveur postfix/smtpd[28504]: E1AB7E044B: client=revd102.mail.fdj.fr[195.154.153.102]
Mar 30 14:01:18 ksserveur postfix/cleanup[28717]: E1AB7E044B: message-id=<NM604F9DFF4006D8261fdj6@mail.fdj.fr>
Mar 30 14:01:18 ksserveur postfix/qmgr[27759]: E1AB7E044B: from=<fdj400-bounces@mail.fdj.fr>, size=19555, nrcpt=1 (queue active)
Mar 30 14:01:19 ksserveur postfix/smtpd[28721]: connect from localhost.localdomain[127.0.0.1]
Mar 30 14:01:19 ksserveur postfix/smtpd[28721]: 09389E044D: client=localhost.localdomain[127.0.0.1]
Mar 30 14:01:19 ksserveur postfix/cleanup[28717]: 09389E044D: message-id=<NM604F9DFF4006D8261fdj6@mail.fdj.fr>
Mar 30 14:01:19 ksserveur postfix/smtpd[28721]: disconnect from localhost.localdomain[127.0.0.1]
Mar 30 14:01:19 ksserveur postfix/qmgr[27759]: 09389E044D: from=<fdj400-bounces@mail.fdj.fr>, size=19962, nrcpt=1 (queue active)
Mar 30 14:01:19 ksserveur amavis[23071]: (23071-09) Passed CLEAN {RelayedOpenRelay}, [195.154.153.102]:56468 <fdj400-bounces@mail.fdj.fr> -> <seb@domaine2.fr>, Queue-ID: E1AB7E044B, Message-ID: <NM604F9DFF4006D8261fdj6@mail.fdj.fr>, mail_id: RZ8ukW-oCBMd, Hits: -, size: 19555, queued_as: 09389E044D, 88 ms
Mar 30 14:01:19 ksserveur postfix/smtp[28719]: E1AB7E044B: to=<seb@domaine2.fr>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.27, delays=0.18/0/0/0.09, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 09389E044D)
Mar 30 14:01:19 ksserveur postfix/qmgr[27759]: E1AB7E044B: removed
Mar 30 14:01:19 ksserveur dovecot: lda(seb@domaine2.fr): sieve: msgid=<NM604F9DFF4006D8261fdj6@mail.fdj.fr>: stored mail into mailbox 'INBOX'
Mar 30 14:01:19 ksserveur postfix/pipe[28722]: 09389E044D: to=<seb@domaine2.fr>, relay=dovecot, delay=0.11, delays=0.02/0/0/0.09, dsn=2.0.0, status=sent (delivered via dovecot service)
Mar 30 14:01:19 ksserveur postfix/qmgr[27759]: 09389E044D: removed
Mar 30 14:01:24 ksserveur postfix/smtpd[28729]: warning: dict_nis_init: NIS domain name not set - NIS lookups disabled
Mar 30 14:01:24 ksserveur postfix/smtpd[28729]: connect from unknown[unknown]
Mar 30 14:01:24 ksserveur postfix/smtpd[28729]: lost connection after CONNECT from unknown[unknown]
Mar 30 14:01:24 ksserveur postfix/smtpd[28729]: disconnect from unknown[unknown]
Mar 30 14:01:24 ksserveur postfix/smtpd[28504]: disconnect from revd102.mail.fdj.fr[195.154.153.102]
Mar 30 14:03:00 ksserveur postfix/smtpd[28346]: timeout after END-OF-MESSAGE from 213.37.159.125.dyn.user.ono.com[213.37.159.125]
Mar 30 14:03:02 ksserveur dovecot: auth-worker(28914): mysql(localhost): Connected to database postfix
Mar 30 14:03:02 ksserveur dovecot: pop3-login: Login: user=<monmail@domaine.com>, method=PLAIN, rip=90.60.29.234, lip=mon.ip.xxx.xxx, mpid=28916, TLS, session=<jOT7ASTZswBaPB3q>
Mar 30 14:03:03 ksserveur dovecot: pop3(monmail@domaine.com): Disconnected: Logged out top=0/0, retr=1/3105, del=0/17, size=94628
Mar 30 14:03:03 ksserveur postfix/smtpd[28729]: connect from unknown[77.30.10.37]
Mar 30 14:03:04 ksserveur postfix/smtpd[28729]: NOQUEUE: reject: RCPT from unknown[77.30.10.37]: 550 5.1.1 <sierra_@domaine.com>: Recipient address rejected: User unknown in virtual mailbox table; from=<buckteethfc@gmail.com> to=<sierra_@domaine.com> proto=ESMTP helo=<device.lan>
Mar 30 14:03:04 ksserveur postfix/smtpd[28729]: disconnect from unknown[77.30.10.37]
Mar 30 14:03:19 ksserveur dovecot: imap(portable@domaine2.fr): Connection closed in=237 out=1026
Mar 30 14:03:29 ksserveur postfix/smtpd[28729]: connect from mta.cellonenation.net[208.88.100.233]
Mar 30 14:03:30 ksserveur postfix/smtpd[28729]: 284F7E044B: client=mta.cellonenation.net[208.88.100.233]
Mar 30 14:03:37 ksserveur postfix/anvil[28234]: statistics: max connection rate 2/60s for (smtp:83.46.166.121) at Mar 30 14:00:16
Mar 30 14:03:37 ksserveur postfix/anvil[28234]: statistics: max connection count 1 for (smtp:mon.ip.xxx.xxx) at Mar 30 13:53:37
Mar 30 14:03:37 ksserveur postfix/anvil[28234]: statistics: max cache size 4 at Mar 30 14:01:24
Mar 30 14:03:40 ksserveur postfix/cleanup[28920]: 284F7E044B: message-id=<20130328162826.B2357C42075@wapaicmta01.cn.cellonenation.net>
Mar 30 14:03:40 ksserveur postfix/qmgr[27759]: 284F7E044B: from=<>, size=3023, nrcpt=1 (queue active)
Mar 30 14:03:40 ksserveur postfix/smtpd[28927]: connect from localhost.localdomain[127.0.0.1]
Mar 30 14:03:40 ksserveur postfix/smtpd[28927]: 7029BE044D: client=localhost.localdomain[127.0.0.1]
Mar 30 14:03:40 ksserveur postfix/smtpd[28729]: disconnect from mta.cellonenation.net[208.88.100.233]
Mar 30 14:03:40 ksserveur postfix/cleanup[28920]: 7029BE044D: message-id=<20130328162826.B2357C42075@wapaicmta01.cn.cellonenation.net>
Mar 30 14:03:40 ksserveur postfix/smtpd[28927]: disconnect from localhost.localdomain[127.0.0.1]
Mar 30 14:03:40 ksserveur postfix/qmgr[27759]: 7029BE044D: from=<>, size=3442, nrcpt=1 (queue active)
Mar 30 14:03:40 ksserveur amavis[23490]: (23490-08) Passed CLEAN {RelayedOpenRelay}, [208.88.100.233]:48082 <> -> <monmail@domaine.com>, Queue-ID: 284F7E044B, Message-ID: <20130328162826.B2357C42075@wapaicmta01.cn.cellonenation.net>, mail_id: wVRn545xVZzr, Hits: -, size: 3023, queued_as: 7029BE044D, 104 ms
Mar 30 14:03:40 ksserveur postfix/smtp[28925]: 284F7E044B: to=<monmail@domaine.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=11, delays=10/0.01/0/0.1, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 7029BE044D)
Mar 30 14:03:40 ksserveur postfix/qmgr[27759]: 284F7E044B: removed
Mar 30 14:03:40 ksserveur dovecot: lda(monmail@domaine.com): msgid=<20130328162826.B2357C42075@wapaicmta01.cn.cellonenation.net>: saved mail to INBOX
Mar 30 14:03:40 ksserveur postfix/pipe[28928]: 7029BE044D: to=<monmail@domaine.com>, relay=dovecot, delay=0.12, delays=0.03/0/0/0.09, dsn=2.0.0, status=sent (delivered via dovecot service)
Mar 30 14:03:40 ksserveur postfix/qmgr[27759]: 7029BE044D: removed
Mar 30 14:04:02 ksserveur postfix/smtpd[28729]: warning: hostname 190-174-230-166.speedy.com.ar does not resolve to address 190.174.230.166: Name or service not known
Mar 30 14:04:02 ksserveur postfix/smtpd[28729]: connect from unknown[190.174.230.166]
Mar 30 14:04:03 ksserveur postfix/smtpd[28729]: NOQUEUE: reject: RCPT from unknown[190.174.230.166]: 550 5.1.1 <erik83@domaine.com>: Recipient address rejected: User unknown in virtual mailbox table; from=<furtivea8@gmail.com> to=<erik83@domaine.com> proto=ESMTP helo=<190-174-230-166.speedy.com.ar>
Mar 30 14:04:04 ksserveur postfix/smtpd[28729]: disconnect from unknown[190.174.230.166]
Mar 30 14:04:07 ksserveur dovecot: imap(portable@domaine2.fr): Connection closed in=417 out=1466
Mar 30 14:04:28 ksserveur postfix/smtpd[28346]: disconnect from 213.37.159.125.dyn.user.ono.com[213.37.159.125]
Mar 30 14:06:22 ksserveur dovecot: auth-worker(29173): mysql(localhost): Connected to database postfix
Mar 30 14:06:22 ksserveur dovecot: imap-login: Login: user=<portable@domaine2.fr>, method=PLAIN, rip=80.215.40.138, lip=mon.ip.xxx.xxx, mpid=29175, TLS, session=<MMPrDSTZjwBQ1yiK>
Mar 30 14:07:12 ksserveur dovecot: imap(admin@domaine2.fr): Disconnected for inactivity in=44 out=472
Mar 30 14:07:13 ksserveur dovecot: imap(seb@domaine2.fr): Disconnected for inactivity in=44 out=438
Mar 30 14:07:48 ksserveur postfix/anvil[28234]: statistics: max connection rate 1/60s for (smtp:190.174.230.166) at Mar 30 14:04:02
Mar 30 14:07:48 ksserveur postfix/anvil[28234]: statistics: max connection count 1 for (smtp:190.174.230.166) at Mar 30 14:04:02
Mar 30 14:07:48 ksserveur postfix/anvil[28234]: statistics: max cache size 3 at Mar 30 14:04:02
Mar 30 14:08:02 ksserveur dovecot: auth-worker(29279): mysql(localhost): Connected to database postfix
Mar 30 14:08:02 ksserveur dovecot: pop3-login: Login: user=<monmail@domaine.com>, method=PLAIN, rip=90.60.29.234, lip=mon.ip.xxx.xxx, mpid=29281, TLS, session=<nCbeEyTZHQBaPB3q>
Mar 30 14:08:02 ksserveur dovecot: pop3(monmail@domaine.com): Disconnected: Logged out top=0/0, retr=1/3527, del=0/18, size=98138
Mar 30 14:09:44 ksserveur postfix/smtpd[29350]: warning: dict_nis_init: NIS domain name not set - NIS lookups disabled
Mar 30 14:09:44 ksserveur postfix/smtpd[29350]: connect from ksserveur.kimsufi.com[mon.ip.xxx.xxx]
Mar 30 14:09:44 ksserveur dovecot: auth-worker(29355): mysql(localhost): Connected to database postfix
Mar 30 14:09:44 ksserveur postfix/smtpd[29350]: 78BAEE044B: client=ksserveur.kimsufi.com[mon.ip.xxx.xxx], sasl_method=LOGIN, sasl_username=webmaster@domaine.com
Mar 30 14:09:44 ksserveur postfix/cleanup[29360]: 78BAEE044B: message-id=<bfcfe274af41e577c4d9f32b74789fa1@www.domaine.com>
Mar 30 14:09:44 ksserveur postfix/qmgr[27759]: 78BAEE044B: from=<monmail@domaine.com>, size=1792, nrcpt=1 (queue active)
Mar 30 14:09:44 ksserveur postfix/smtpd[29350]: disconnect from ksserveur.kimsufi.com[mon.ip.xxx.xxx]
Mar 30 14:09:44 ksserveur postfix/smtpd[29364]: connect from localhost.localdomain[127.0.0.1]
Mar 30 14:09:44 ksserveur postfix/smtpd[29364]: 9E791E044D: client=localhost.localdomain[127.0.0.1]
Mar 30 14:09:44 ksserveur postfix/cleanup[29360]: 9E791E044D: message-id=<bfcfe274af41e577c4d9f32b74789fa1@www.domaine.com>
Mar 30 14:09:44 ksserveur postfix/smtpd[29364]: disconnect from localhost.localdomain[127.0.0.1]
Mar 30 14:09:44 ksserveur postfix/qmgr[27759]: 9E791E044D: from=<monmail@domaine.com>, size=2209, nrcpt=1 (queue active)
Mar 30 14:09:44 ksserveur amavis[23071]: (23071-10) Passed CLEAN {RelayedOpenRelay}, [mon.ip.xxx.xxx]:60649 <monmail@domaine.com> -> <ludomiller@hotmail.fr>, Queue-ID: 78BAEE044B, Message-ID: <bfcfe274af41e577c4d9f32b74789fa1@www.domaine.com>, mail_id: Q0_Tz3FlXijo, Hits: -, size: 1792, queued_as: 9E791E044D, 112 ms
Mar 30 14:09:44 ksserveur postfix/smtp[29362]: 78BAEE044B: to=<ludomiller@hotmail.fr>, relay=127.0.0.1[127.0.0.1]:10024, delay=0.34, delays=0.21/0.01/0/0.11, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 9E791E044D)
Mar 30 14:09:44 ksserveur postfix/qmgr[27759]: 78BAEE044B: removed
Mar 30 14:09:45 ksserveur postfix/smtp[29365]: 9E791E044D: to=<ludomiller@hotmail.fr>, relay=mx3.hotmail.com[65.55.92.184]:25, delay=1, delays=0.04/0/0.38/0.59, dsn=2.0.0, status=sent (250  <bfcfe274af41e577c4d9f32b74789fa1@www.domaine.com> Queued mail for delivery)
Mar 30 14:09:45 ksserveur postfix/qmgr[27759]: 9E791E044D: removed
Mar 30 14:19:37 ksserveur postfix/anvil[29352]: statistics: max connection count 1 for (smtp:mon.ip.xxx.xxx) at Mar 30 14:09:44

Merci.

Dernière modification par sebaurel (Le 03/06/2015, à 09:27)

Hors ligne

#2 Le 12/04/2013, à 16:09

Pseudo supprimé

Re : Serveur mail postfix

tu gères 2 domaines d'après les authentifications ?
seb-aurel.fr, horneteam.com
sauf qu'amavis n'a pas l'air de le savoir .

Fais un test en les ajoutant à local_domains_maps dans le configuration d' amavis

#3 Le 03/06/2015, à 08:57

sebaurel

Re : Serveur mail postfix

Bonjour à tous.

Je pensais avoir résolut mon problème, mais hier, j'ai reçu à nouveau des mails sur mes boites !

Voici le mail reçu :

Return-Path: <MAILER-DAEMON>
Delivered-To: monmail@domaine.com
Received: from localhost (localhost.localdomain [127.0.0.1])
	by ksserveur.kimsufi.com (Postfix) with ESMTP id 77458E1BA7
	for <monmail@domaine.com>; Tue,  2 Jun 2015 20:06:51 +0200 (CEST)
X-Amavis-Alert: BAD HEADER SECTION, Missing required header field: "Date"
Received: from ksserveur.kimsufi.com ([127.0.0.1])
	by localhost (ksserveur.kimsufi.com [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id yeNpRryxt2Ky for <monmail@domaine.com>;
	Tue,  2 Jun 2015 20:06:51 +0200 (CEST)
From: "http://www.buybest.biz/"@ksserveur.kimsufi.com
To: postmaster@domaine.com
Subject: New secure dumps shop
Message-Id: <20150602180651.77458E1BA7@ksserveur.kimsufi.com>
Date: Tue,  2 Jun 2015 20:06:51 +0200 (CEST)

BuyBest - is the best and secure way to make your Business. Our fully 
automated SHOP can offer you an instant delivery of your FRESH bins today. 
We have friendly and easy to use interface. Our support team do their best 
to leave you pleased and satisfied!
Only for serious Customers!

- Price starts from 12$
- Fast automatic Payment methods
- Frequent UPDATES
- Instant stuff delivery!
- NO money back!!!
- Replace lost/stolen/hold/card error
- NO replace DECLINE 05/51
- Fully secure. No logging. No IP tracking
- Ticket support contacting
- ICQ/Jabber supporting
- Individual approach to each Customer

http://www.buybest.biz/

et le log :

Jun  2 20:06:49 ksserveur postfix/smtpd[27221]: warning: 199.99.242.83.dnsbl.njabl.org: RBL lookup error: Host or domain name not found. Name service error for name=199.99.242.83.dnsbl.njabl.org type=A: Host not found, try again
Jun  2 20:06:49 ksserveur postfix/smtpd[27221]: NOQUEUE: reject_warning: RCPT from unknown[83.242.99.199]: 504 5.5.2 <83.242.99.199>: Helo command rejected: need fully-qualified hostname; from=<> to=<postmaster@domaine.com> proto=SMTP helo=<83.242.99.199>
Jun  2 20:06:49 ksserveur postfix/smtpd[27221]: 7F0EDE042A: client=unknown[83.242.99.199]
Jun  2 20:06:51 ksserveur postfix/cleanup[27241]: 7F0EDE042A: message-id=<>
Jun  2 20:06:51 ksserveur postfix/qmgr[11883]: 7F0EDE042A: from=<>, size=749, nrcpt=1 (queue active)
Jun  2 20:06:51 ksserveur postfix/smtpd[27245]: connect from localhost.localdomain[127.0.0.1]
Jun  2 20:06:51 ksserveur postfix/smtpd[27245]: 77458E1BA7: client=localhost.localdomain[127.0.0.1]
Jun  2 20:06:51 ksserveur postfix/cleanup[27241]: 77458E1BA7: message-id=<20150602180651.77458E1BA7@ksserveur.kimsufi.com>
Jun  2 20:06:51 ksserveur postfix/smtpd[27245]: disconnect from localhost.localdomain[127.0.0.1]
Jun  2 20:06:51 ksserveur postfix/qmgr[11883]: 77458E1BA7: from=<>, size=1376, nrcpt=1 (queue active)
Jun  2 20:06:51 ksserveur amavis[13446]: (13446-18) Passed CLEAN {RelayedOpenRelay,Quarantined}, [83.242.99.199]:55943 <> -> <monmail@domaine.com>, quarantine: y/badh-yeNpRryxt2Ky, Queue-ID: 7F0EDE042A, mail_id: yeNpRryxt2Ky, Hits: -, size: 749, pt: 0, queued_as: 77458E1BA7, 104 ms
Jun  2 20:06:51 ksserveur postfix/smtp[27243]: 7F0EDE042A: to=<monmail@domaine.com>, relay=127.0.0.1[127.0.0.1]:10024, delay=22, delays=22/0.01/0/0.1, dsn=2.0.0, status=sent (250 2.0.0 from MTA(smtp:[127.0.0.1]:10025): 250 2.0.0 Ok: queued as 77458E1BA7)
Jun  2 20:06:51 ksserveur postfix/qmgr[11883]: 7F0EDE042A: removed
Jun  2 20:06:51 ksserveur dovecot: lda(monmail@domaine.com): msgid=<20150602180651.77458E1BA7@ksserveur.kimsufi.com>: saved mail to INBOX
Jun  2 20:06:51 ksserveur postfix/pipe[27246]: 77458E1BA7: to=<monmail@domaine.com>, relay=dovecot, delay=0.14, delays=0.03/0/0/0.11, dsn=2.0.0, status=sent (delivered via dovecot service)
Jun  2 20:06:51 ksserveur postfix/qmgr[11883]: 77458E1BA7: removed
Jun  2 20:06:51 ksserveur postfix/smtpd[27221]: disconnect from unknown[83.242.99.199]

Si quelqu'un pouvait m'aider, ce serait sympa. Merci.

Dernière modification par sebaurel (Le 03/06/2015, à 09:33)

Hors ligne

#4 Le 07/06/2015, à 15:53

LeoMajor

Re : Serveur mail postfix

tu nous ressors des vieux topics. C'est vrai que permit_destination valide toujours et certains spammeurs vont essayer des récipients connus (la session smtp valide). Attaque à la pièce jointe fait planter aussi le serveur aussi ...
1/ check ... access
par exemple,

smtpd_recipient_restrictions = ....check_sender_access hash:/etc/postfix/sender_discard ...

/etc/postfix/sender_discard

spam@spam.spam DISCARD

check_sender_access APRÈS reject_unauth_destination

2/ou passer par les classes de restrictions.

====== Reformulation Doc Postfix ======
  * Exemple http://postfix.traduc.org/index.php/RES … EADME.html
  * Objectif; Un email, comme expéditeur root, est seulement émis si l'IP est 127.0.0.1
<code>
smtpd_restriction_classes = no_backscatter_admin
no_backscatter_admin = check_client_access cidr:/etc/postfix/ip_only, reject
smtpd_sender_restrictions ou smtpd_recipient_restrictions = ... check_sender_access hash:/etc/postfix/sender_reject ...
</code>

/etc/postfix/sender_reject
<code>
contact@e-cigarettes-web.com REJECT
test@live.com DISCARD
root@domain.tld    no_backscatter_admin
</code>

/etc/postfix/ip_only
<code>
127.0.0.1 OK
192.168.1.22 OK
</code>
pas de postmap en cas de cidr:
====== Test ======

  * Résultat quand l'IP ne correspond pas à 127.0.0.1, 192.168.1.22
<code>
mail from: root@domain.tld
250 2.1.0 Ok
rcpt to: root@domain.tld
554 5.7.1 <root@domain.tld>: Sender address rejected: Access denied
</code>
  * Résultat quand l'IP correspond à 127.0.0.1, 192.168.1.22
<code>
mail from: root@domain.tld
250 2.1.0 Ok
rcpt to: root@domain.tld
250 2.1.5 Ok
</code>

Hors ligne