Koozali.org: home of the SME Server
  1. Koozali.org: home of the SME Server
  2. Legacy Forums
  3. Experienced User Forum
  4. Topic: Internal email abuse.
« previous next »
Pages: [1]   Go Down

Internal email abuse.

  • 3 Replies
  • 1054 Views

gmr2000

Internal email abuse.
« on: July 06, 2005, 01:15:36 PM »
I am running SME as SMTP gateway for >1000 users. Some of the internal clients infected by mailware and keep sending email with fake sender domain.
Is there any way to restrict the sender domain to specific domains only?

Regards,
Logged

Offline raem

  • *
  • 3,972
  • +4/-0
Re: Internal email abuse.
« Reply #1 on: July 07, 2005, 11:52:21 AM »
gmr2000

> Is there any way to restrict the sender domain to > specific domains only?

Install the dungog-mailblocking rpm and configure mail rule(s) to only accept mail from the domain(s) in question.

Description below from the server manager panel

Create a new mailrule
Rule Type:  Accept Reject
Note for the From/To entries below if you wish to enter a wildcard e-mail address
To represent everyone use [ *@* ] but not [ * ] alone.
 
Examples of valid wildcard entries are: *@domain.com, *@*.domain.com, *@*
 
From:  
To:  
The default message for Rejected mail is Sorry, that is an invalid e-mail address
You do not need to enter this, but you may wish to enter a different message eg if your blocking users from sending mail. Hint, include Sorry and the rejection will be highlighted in the preset log file panel request.
 
Log Message:
Logged
...

gmr2000

Internal email abuse.
« Reply #2 on: July 08, 2005, 01:21:18 PM »
I am already running mailblocking and filtering applied for the internal and external emails at the same time. So I can't restrict the internal user to send using specific domain because it will be applied for the external users also and block the incoming emails,

 I tried to modify /etc/tcprules/tcp.smtp and ceate new mailrule for the internal users as following


Code: [Select]

10.10.0.:allow,MAILRULES="/var/qmail/control/mailrules_int.default",RELAYCLIENT="",QMALQUEUE="/var/qmail/bin/qmail-queue",PATTERNS="/var/qmail/control/patterns.default"


Within mailrules_int.default I ceate new rules for internal users, but still the mailrule not working.It’s seems the mailfront accept the mailrule only from mailrules.default only

Is it possible to run mailfront with multiple mailrule for different subnets.
Logged

Offline raem

  • *
  • 3,972
  • +4/-0
Internal email abuse.
« Reply #3 on: July 09, 2005, 09:33:35 AM »
gmr2000
> Is there any way to restrict the sender domain to specific domains only?

> I am already running mailblocking and filtering
> applied for the internal and external emails at
> the same time. So I can't restrict the internal
> user to send using specific domain because it will > be applied for the external users also and block
> the incoming emails,

You need multiple rules to achieve your desired result, see this for some tips:
http://forums.contribs.org/index.php?topic=23486.0
Logged
...
Pages: [1]   Go Up
« previous next »
  1. Koozali.org: home of the SME Server
  2. Legacy Forums
  3. Experienced User Forum
  4. Topic: Internal email abuse.