2014年2月26日

Postfix退信:Sender address rejected: not logged in

最近遇到退信,退信內容為Sender address rejected: not logged in,長的像下面這樣子
-----------------------------------------------------------------
A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed:
    SMTP error from remote mail server after RCPT TO:<jock@tainet.com>:
    host mail.tainet.com [201.175.38.27]: 553 5.7.1 <jock@tainet.com>:
    Sender address rejected: not logged in
 ------ This is a copy of the message, including all the headers. ------
 Return-path: <jock@tainet.com>
Received: from [201.175.38.27] (port=54382 helo=tainet.com)
        by seed.net.tw with smtp (Seednet 4.67:1)
        id 1WISvi-000FED-7a
        for jock@tainet.com; Wed, 23 Feb 2014 07:15:03 +1200
-----------------------------------------------------------------
檢查後發現為其它非該網域的郵件主機,未經過postfix驗證,而寄信到相同網域,造成類似仿冒垃圾信,而被postfix給阻攔退件,但退件的Return-Path又是同一個sender address,就會有上面的訊息出現,假設某些原因,需讓其它郵件主機發信到真的是該網域的負責的郵件主機收信的話,可利用白名單的方式跳過Spam檢查
Step 1:
#vi /etc/postfix/rbl_whitelist
18.122.33.34 OK
192.168.1.100 OK
passmail.domain.com OK
test.domain.com OK
Step 2:
存檔後執行#postmap /etc/postfix/rbl_whitelist
Step 3
#vi /etc/postfix/main.cf
找到smtpd_sender_restrictions,然後在reject_sender_login_mismatch前面加入白名單設定check_client_access hash:/etc/postfix/rbl_whitelist, 後存檔

Step 4:
重啟服務# /etc/init.d/postfix restart
白名單便可生效,跳過Sender address rejected: not logged in造成的退信問題
PS:造成阻攔的原因是postfix有使用reject_sender_login_mismatch這個參數的原因

0 回應:

Copyright © 2009 New Life in Taipei All rights reserved. Theme by Laptop Geek. | Bloggerized by FalconHive.