Posted by: alex in Insights
This article was written to create an easy step to add more SPAM protection to ISPConfig when you are running postfix. This not only will cut down on SPAM but it will also cut down on load by not sending as much SPAM to spamassassin. Below are some SPAM protection additions that can be made to postfix’s main configuration file and will stop most SPAM from even reaching spamassassin. The reject_rbl_client command is used to add SPAM blacklists for postfix to check against. You can research other blacklists and add them if you like.
Add the below to /etc/postfix/main.cf.
main.cf
# SPAM Prevention Below
# Please make sure to keep blacklists up to date.
smtpd_helo_required = yes
non_fqdn_reject_code = 554
relay_domains_reject_code = 554
disable_vrfy_command = yes
strict_rfc821_envelopes = yes
invalid_hostname_reject_code = 554
multi_recipient_bounce_reject_code = 554
unknown_client_reject_code = 554
unknown_sender_reject_code = 554
unknown_address_reject_code = 554
unknown_hostname_reject_code = 554
unknown_virtual_alias_reject_code = 554
unknown_virtual_mailbox_reject_code = 554
unknown_local_recipient_reject_code = 554
unknown_relay_recipient_reject_code = 554
unverified_recipient_reject_code = 554
unverified_sender_reject_code = 554
smtpd_recipient_restrictions =
reject_invalid_hostname,
reject_unknown_recipient_domain,
reject_unauth_pipelining,
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
reject_rbl_client multi.uribl.com,
reject_rbl_client zen.spamhaus.org,
reject_rbl_client dnsbl.njabl.org,
reject_rbl_client whois.rfc-ignorant.org,
reject_rbl_client combined.rbl.msrbl.net,
permit
Restart postfix by: /etc/init.d/postfix restart
You now have extra SPAM protection for postfix and your ISPConfig installation.
Tags:
blacklist,
ISPConfig,
postfix,
smtpd,
SPAM,
spam blacklist,
spamassassin
No Comments »
Posted by: alex in Errors
I noticed this error during an ISPConfig on CentOS 5.2 install and realized I had installed postfix without MySQL support. After looking around for a bit I was unable to locate a yum repository that included a postfix package with MySQL support built in so I decided to download the source RPM and install by modifying the SPEC file. Below are step by step instructions of what to do.
1. Remove postfix: rpm -e –nodeps postfix
2. Download the src RPM here. Located in the following directory: /centos/5.2/os/SRPMS/
cd /usr/local/src
Example: wget http://mirror.mojohost.com/centos/5.2/os/SRPMS/postfix-2.3.3-2.src.rpm
3. Install source RPM: rpm -i postfix-2.3.3-2.src.rpm # Install the Source RPM
4. Edit File: cd /usr/src/redhat/SPECS
Edit postfix.spec: %define MYSQL 0 to %define MYSQL 1
5. Install Packages: yum install pcre-devel mysql-devel
6. Build The RPM: rpmbuild -ba postfix.spec (You will see lots of warnings, enjoy.)
7. Install new RPM: cd /usr/src/redhat/RPMS; rpm -i postfix-2.3.3-2.i386.rpm
That should do the trick. If you are like me and happened to be in the middle of installing ISPConfig then you will have a bunch of configuration changes to add back in for postfix.
Tags:
CentOS,
ISPConfig,
mysql,
postfix,
RPM,
source,
yum
No Comments »
Posted by: alex in Errors
When receiving this error you are either having a STARTTLS problem or there is a chance that it is a bug in sendmail and you just need to supply a patch to sendmail. First to resolve the issue follow the below steps.
1. Stop sendmail: /etc/init.d/sendmail stop
2. Make sure the PID’s all stopped: ps -ef | grep sendmail
3. If not kill the stuck process ID’s: kill -9
4. Also check the PID’s from the maillog where you originally saw the error and make sure those are not running.
5. Start sendmail: /etc/init.d/sendmail start
Read the rest of this entry »
Tags:
PID,
postfix,
process,
qmail,
sendmail,
STARTTLS
No Comments »
Entries (RSS)