Results 1 to 5 of 5

Thread: Zimbra Spam problem

  1. #1
    Join Date
    Mar 2009
    Location
    El Paso, TX
    Posts
    23
    Rep Power
    6

    Default Zimbra Spam problem

    Hello,

    I've been having spam come in lately from just IP addresses (not reporting any hostname and no reverse lookup entries).

    The zimbra.log shows entries such as this:
    Code:
    Feb  2 18:05:57 mail postfix/smtpd[2716]: connect from unknown[109.94.16.70]
    Feb  2 18:06:00 mail amavis[7072]: (07072-18) Checking: NqysLox9Q3J2 [109.94.16.70] <email@domainname> -> <email@domainname>
    Feb  2 18:06:00 mail amavis[7072]: (07072-18) Passed BAD-HEADER, [109.94.16.70][109.94.16.70] <email@domainname> -> <email@domainname>, quarantine: badh-NqysLox9Q3J2, mail_id: NqysLox9Q3J2, Hits: -, size: 697, queued_as: 658EE685401A,
    628 ms
    I've replaced the email address with just email@domainname. I left the incoming IP as it is.

    Zimbra is configured so it requires a FQDN and reverse DNS lookup. It doesn't seem to be taking that into account as it allows the email attempt to go through.

    Any hints of what I would need to change to prevent these from going through?

    Thanks.

  2. #2
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,017
    Rep Power
    25

    Default

    Code:
    su - zimbra
    zmlocalconfig | grep -i restriction

  3. #3
    Join Date
    Mar 2009
    Location
    El Paso, TX
    Posts
    23
    Rep Power
    6

    Default

    Here are results from that

    Code:
    postfix_smtpd_client_restrictions = reject_unauth_pipelining
    postfix_smtpd_data_restrictions = reject_unauth_pipelining

  4. #4
    Join Date
    Nov 2006
    Location
    UK
    Posts
    8,017
    Rep Power
    25

    Default

    And the following please
    Code:
    su - zimbra
    zmprov gacf | grep -i mtarestriction

  5. #5
    Join Date
    Mar 2009
    Location
    El Paso, TX
    Posts
    23
    Rep Power
    6

    Default

    Code:
    zimbraMtaRestriction: reject_invalid_hostname
    zimbraMtaRestriction: reject_non_fqdn_hostname
    zimbraMtaRestriction: reject_non_fqdn_sender
    zimbraMtaRestriction: reject_rbl_client dnsbl.njabl.org
    zimbraMtaRestriction: reject_rbl_client cbl.abuseat.org
    zimbraMtaRestriction: reject_rbl_client zen.spamhaus.org
    zimbraMtaRestriction: reject_rbl_client bl.spamcop.net

Similar Threads

  1. [SOLVED] Moving Zimbra to a new server
    By krolen in forum Administrators
    Replies: 109
    Last Post: 02-05-2009, 11:38 AM
  2. [SOLVED] parts_decode_ext error
    By jsabater in forum Administrators
    Replies: 7
    Last Post: 10-13-2008, 08:24 AM
  3. Can't start Zimbra!
    By zibra in forum Administrators
    Replies: 5
    Last Post: 03-22-2007, 12:34 PM
  4. Fedora Core 3, Clean Install - Not working!
    By pcjackson in forum Installation
    Replies: 17
    Last Post: 03-05-2006, 07:38 PM
  5. Mail logs
    By Rick Baker in forum Installation
    Replies: 8
    Last Post: 01-17-2006, 04:33 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •