postfix-users October 2010 archive
Main Archive Page > Month Archives  > postfix-users archives
postfix-users: Fighting Backscatter

Fighting Backscatter

From: Steve Jenkins <steve_at_nospam>
Date: Fri Oct 15 2010 - 15:20:23 GMT
To: <postfix-users@postfix.org>

I've read through the readme at:

http://www.postfix.org/BACKSCATTER_README.html

and thought I was doing everything right. but my personal mail server is
still getting listed at Backscatterer.org. :(

I'm running 2.6.5 and here's my postconf -n:

alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
data_directory = /var/lib/postfix
debug_peer_level = 2
home_mailbox = Maildir/
html_directory = no
mailq_path = /usr/bin/mailq.postfix
manpage_directory = /usr/share/man
milter_default_action = accept
milter_protocol = 2
mydestination = $myhostname, localhost.$mydomain, localhost, $mydomain,
mail.$mydomain, www.$mydomain
mynetworks = 127.0.0.0/8
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases.postfix
non_smtpd_milters = inet:localhost:20209
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtp_tls_note_starttls_offer = yes
smtp_use_tls = yes
smtpd_data_restrictions =
        reject_unauth_pipelining,
        permit
smtpd_milters = inet:localhost:20209
smtpd_recipient_restrictions =
        permit_sasl_authenticated,
        reject_unauth_destination,
        reject_unknown_recipient_domain,
        reject_unknown_sender_domain,
        reject_non_fqdn_recipient,
        reject_non_fqdn_sender,
        reject_invalid_hostname,
        permit_mynetworks
        permit
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = yes
smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
smtpd_sender_restrictions =
        permit_sasl_authenticated,
        permit_mynetworks,
        reject_unknown_sender_domain
smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.crt
smtpd_tls_key_file = /etc/postfix/ssl/smtpd.key
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = yes
tls_random_source = dev:/dev/urandom
unknown_local_recipient_reject_code = 550
virtual_alias_domains = virtualdomain.com
virtual_alias_maps = hash:/etc/postfix/virtual

I suspect that I might have something wonky in the smtpd recipient and/or
sender restriction areas. Anyone see anything glaring that might be me
blacklisted? I've checked the maillogs around the time that backscatter.org
reports, and can't see anything obvious.

Thanks in advance,

SJ