Currently running Zimbra 6.0.4 FOSS server.
We're in a situation where inbound email goes through an antispam server before reaching zimbra. However we have port 465 open and directly forwarded to zimbra so that external users can send out email when out of the office. TLS auth is turned on so they would have to authenticate to send.
Confirmed from "zmprov getServer server.domain.com | grep Auth"
My problem is that we are now having spammers send mail through this port and they are logging in through TLS as an Anonymous user and getting access to send.
Maillog shows entries like this:
May 11 20:39:01 webmail postfix/smtpd: connect from unknown[126.96.36.199]
May 11 20:39:01 webmail postfix/smtpd: setting up TLS connection from unknown[188.8.131.52]
May 11 20:39:02 webmail postfix/smtpd: Anonymous TLS connection established from unknown[184.108.40.206]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)
I've tried turning off anonymous access in LDAP and that hasn't helped.
Here's some more info from postfix main.cf:
"grep sasl main.cf"
broken_sasl_auth_clients = yes
smtpd_recipient_restrictions = reject_non_fqdn_recipient, permit_sasl_authenticated, permit_mynetworks, reject_unauth_destination, reject_unlisted_recipient, reject_invalid_hostname, reject_non_fqdn_sender, reject_unknown_client, reject_unknown_sender_domain, permit
smtpd_sasl_authenticated_header = no
local_header_rewrite_clients = permit_mynetworks,permit_sasl_authenticated
smtpd_sasl_auth_enable = yes
Any ideas how to turn off this Anonymous TLS?
Thanks in advanced