So hab jetzt nochmal geforscht,
unsere Problem ist folgendes.....komme nicht weiter.
Trotz NOQUEUE und Relay Access denied landen die Mails in der mailq. Diese läuft dann so schnell voll dass mal ganz locker in 24 Stunden über 150.000 Mails drinnen sind. Demnach lahmt dann extrem die Mailzustellung, local.
Hier noch die main.cf:
Code: Select all
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/lib/postfix
mail_owner = postfix
unknown_local_recipient_reject_code = 550
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/sbin/sendmail
newaliases_path = /usr/bin/newaliases
mailq_path = /usr/bin/mailq
setgid_group = maildrop
html_directory = /usr/share/doc/packages/postfix/html
manpage_directory = /usr/share/man
sample_directory = /usr/share/doc/packages/postfix/samples
readme_directory = /usr/share/doc/packages/postfix/README_FILES
inet_protocols = all
biff = no
mail_spool_directory = /var/mail
canonical_maps = hash:/etc/postfix/canonical
virtual_maps = hash:/etc/postfix/virtual, hash:/etc/postfix/confixx_virtualUsers, hash:/etc/postfix/confixx_localDomains
relocated_maps = hash:/etc/postfix/relocated
transport_maps = hash:/etc/postfix/transport
sender_canonical_maps = hash:/etc/postfix/sender_canonical
masquerade_exceptions = root
masquerade_classes = envelope_sender, header_sender, header_recipient
myhostname = GEÄNDERT
program_directory = /usr/lib/postfix
inet_interfaces = all
masquerade_domains =
mydestination = $myhostname, localhost.$mydomain
defer_transports =
disable_dns_lookups = no
relayhost =
mailbox_command = /usr/bin/procmail
mailbox_transport =
#smtpd_sender_restrictions = hash:/etc/postfix/access
smtpd_sender_restrictions = permit_mynetworks,permit_sasl_authenticated,reject_unauth_destination
smtpd_client_restrictions = permit_sasl_authenticated
smtpd_helo_required = yes
strict_rfc821_envelopes = no
smtpd_recipient_restrictions = permit_tls_clientcerts, permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, reject_unknown_client, reject_unknown_address
smtp_sasl_auth_enable = no
smtpd_sasl_auth_enable = yes
smtpd_use_tls = no
smtp_use_tls = no
alias_maps = hash:/etc/aliases
mailbox_size_limit = 0
message_size_limit = 0
maximal_queue_lifetime=1
Der Eintrag
smtpd_helo_restrictions = reject_non_fqdn_helo_hostname, reject_invalid_helo_hostname
brachte keinen Erfolg.
Da der helo - meist (aber nicht immer) eine IP Adresse unseres Server ist, ist die also gültig. Oben hatte ich diese nur verändert.
Nachdem ich jetzt sämtliche Seiten und Forenbeiträge gelesen und einiges probiert habe, komme ich einfach nicht weiter.
Warum lanmden so viele Mails in der mailq?
Noch Beispiele aus unserer aktuellen mail.logs:
Code: Select all
Mar 1 14:44:41 xxxxxx postfix/smtpd[21778]: NOQUEUE: reject: RCPT from 219-86-40-170.dynamic.tfn.net.tw[219.86.40.170]: 554 <amy.owns@msa.hinet.net>: Relay access denied; from=<qutfqlwybn@yahoo.com> to=<amy.owns@msa.hinet.net> proto=SMTP helo=<212.112.236.94>
oder
Code: Select all
Mar 1 14:44:40 xxxxxx postfix/qmgr[21593]: 5A5969BCBFA: from=<eblgppzwswd@ms54.hinet.net>, size=6403, nrcpt=3 (queue active)
Mar 1 14:44:40 xxxxxx postfix/qmgr[21593]: 922709BCBFD: from=<ayfnumurm@yahoo.com.hk>, size=1981, nrcpt=11 (queue active)
Mar 1 14:44:40 xxxxx postfix/qmgr[21593]: 922709BCBFD: to=<andy2@ms19.hinet.net>, relay=none, delay=8, status=deferred (delivery temporarily suspended: connect to ms19a.hinet.net[168.95.5.19]: Connection timed out)
Bitte um Eure Hilfe...kriege diese Attacken einfach nicht weg.