On Mon, 2005-03-21 at 15:16 +0100, Walter H. van Holst wrote:
> On Mon, 2005-03-21 at 15:07 +0200, Christopher Chaduka wrote:
>
> > > Is there a way to reroute mail with an empty sender-address to
> > > non-existing local users to /dev/null? I am getting flooded with spam
> > > posing as bounces to non-existing local addresses.
> >
> > Why are you accepting those e-mails in the first place? Just refuse them and
> > the sending MTA will take responsibility.
>
> Ok, first of all, as far as I am aware you are violating standards if
> you refuse bounces (which tend to have an empty sender address).
> Secondly, if that is not the case, how do I refuse those?
You are not expected to accept bounces to non-existent recipients. The
converse of this is that any address used as a sender address should
accept bounce messages.
The acl fragment I have that does this (which I think is probably taken
directly from the default config) is this (in the RCPT ACL, fairly near
the top):-
# Do verification of local/relay addresses for null sender
# Accept if the address is in a local domain, but only if the recipient can
# be verified. Otherwise deny. The "endpass" line is the border between
# passing on to the next ACL statement (if tests above it fail) or denying
# access (if tests below it fail).
accept domains = +local_domains
senders = :
endpass
message = unknown user
verify = recipient
Nigel.
--
[ Nigel Metheringham Nigel.Metheringham@??? ]
[ - Comments in this message are my own and not ITO opinion/policy - ]
