Добрый день. Прошу помочь решить проблему: на мой хост приходит спам, каким-то образом используя релей меил.ру, и в итоге мой хост попадает в блеклист cbl.abuseat.org. MTA Postfix. Лог спама:Aug 30 22:28:15 host postfix/smtpd[85522]: connect from mail.attlanti.com[111.67.205.110]
Aug 30 22:28:15 host postfix/smtpd[85522]: lost connection after CONNECT from mail.attlanti.com[111.67.205.110]
Aug 30 22:28:15 host postfix/smtpd[85522]: disconnect from mail.attlanti.com[111.67.205.110]
Aug 30 22:28:17 host postfix/smtpd[85522]: connect from mail.attlanti.com[111.67.205.110]
Aug 30 22:28:18 host postfix/cleanup[85542]: A23C92FCD17: message-id=<20100830192818.A23C92FCD17@mail.host.ua>
Aug 30 22:28:18 host postfix/qmgr[71158]: A23C92FCD17: from=<>, size=260, nrcpt=1 (queue active)
Aug 30 22:28:18 host postfix/smtp[85155]: A23C92FCD17: to=<utchetinall@mail.ru>, relay=mxs.mail.ru[94.100.176.20]:25, delay=0.31, delays=0.01/0/0.18/0.12, dsn=2.0.0, status=deliverable (250 OK)
Aug 30 22:28:19 host postfix/qmgr[71158]: A23C92FCD17: removed
Aug 30 22:28:21 host postfix/smtpd[85522]: A54552FCD3B: client=mail.attlanti.com[111.67.205.110]
Aug 30 22:28:24 host postfix/cleanup[85542]: A54552FCD3B: message-id=<089360123.20100717898562@mail.attlanti.com>
Aug 30 22:28:24 host postfix/qmgr[71158]: A54552FCD3B: from=<utchetinall@mail.ru>, size=7897, nrcpt=2 (queue active)
Aug 30 22:28:24 host postfix/smtpd[85522]: disconnect from mail.attlanti.com[111.67.205.110]
Aug 30 22:28:24 host postfix/smtpd[85583]: connect from localhost[127.0.0.1]
Aug 30 22:28:24 host postfix/smtpd[85583]: E1AE32FCD3C: client=localhost[127.0.0.1]
Aug 30 22:28:24 host amavis[65235]: (65235-03) Passed CLEAN, [111.67.205.110] [111.67.205.110] <utchetinall@mail.ru> -> <aivan@host.ua>,<aivan@host.ua>, Message-ID: <089360123.20100717898562@mail.attlanti.com>, mail_id: 1lZAjeVivDO3, Hits: 3.882, size: 7886, queued_as: E1AE32FCD3C, 429 ms
Aug 30 22:28:24 host postfix/cleanup[85542]: E1AE32FCD3C: message-id=<089360123.20100717898562@mail.attlanti.com>
Aug 30 22:28:24 host postfix/smtpd[85583]: disconnect from localhost[127.0.0.1]
Aug 30 22:28:24 host postfix/qmgr[71158]: E1AE32FCD3C: from=<utchetinall@mail.ru>, size=8515, nrcpt=2 (queue active)
Aug 30 22:28:24 host postfix/smtp[85581]: A54552FCD3B: to=<aivan@host.ua>, orig_to=<admin@host.ua>, relay=127.0.0.1[127.0.0.1]:10024, delay=6.7, delays=6.2/0.01/0/0.43, dsn=2.0.0, status=sent (250 2.0.0 from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as E1AE32FCD3C)
Aug 30 22:28:24 host postfix/smtp[85581]: A54552FCD3B: to=<aivan@host.ua>, relay=127.0.0.1[127.0.0.1]:10024, delay=6.7, delays=6.2/0.01/0/0.43, dsn=2.0.0, status=sent (250 2.0.0 from MTA([127.0.0.1]:10025): 250 2.0.0 Ok: queued as E1AE32FCD3C)
Aug 30 22:28:24 host postfix/qmgr[71158]: A54552FCD3B: removed
Aug 30 22:28:25 host postfix/pipe[85585]: E1AE32FCD3C: to=<aivan@host.ua>, relay=dovecot, delay=0.12, delays=0.01/0.01/0/0.11, dsn=2.0.0, status=sent (delivered via dovecot service)
Aug 30 22:28:25 host postfix/pipe[85584]: E1AE32FCD3C: to=<aivan@host.ua>, relay=dovecot, delay=0.24, delays=0.01/0.01/0/0.23, dsn=2.0.0, status=sent (delivered via dovecot service)
Aug 30 22:28:25 host postfix/qmgr[71158]: E1AE32FCD3C: removed
main.cf:
queue_directory = /var/spool/postfix
command_directory = /usr/local/sbin
base = /usr/local/etc/postfix
daemon_directory = /usr/local/libexec/postfix
mail_owner = postfix
default_privs = nobody
mydomain = host.ua
myhostname = mail.host.ua
myorigin = $mydomain
inet_interfaces = all
mydestination = $myhostname, localhost.$mydomain, localhost
local_recipient_maps = unix:passwd.byname $alias_maps
mynetworks = 127.0.0.0/8 10.0.0.0/8
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
smtpd_banner = $myhostname ESMTP
debug_peer_level = 2
smtpd_client_restrictions = permit_mynetworks,
check_client_access hash:$base/client_access,
check_client_access regexp:$base/dul_checks
smtpd_helo_restrictions = check_helo_access hash:$base/hello_access,
permit_mynetworks,
reject_invalid_helo_hostname,
reject_non_fqdn_helo_hostname,
reject_unknown_helo_hostname
smtpd_sender_restrictions = permit_mynetworks,
check_sender_access hash:$base/sender_access,
reject_authenticated_sender_login_mismatch,
reject_unknown_sender_domain,
reject_unlisted_sender,
reject_unverified_sender
smtpd_recipient_restrictions = permit_mynetworks,
check_recipient_access hash:$base/recipient_access,
reject_unlisted_recipient,
reject_unknown_recipient_domain,
reject_non_fqdn_recipient,
reject_unverified_recipient,
reject_unauth_destination
smtpd_etrn_restrictions = reject
smtpd_delay_reject = yes
smtpd_reject_unlisted_sender = yes
disable_vrfy_command = yes
strict_rfc821_envelopes = yes
show_user_unknown_table_name = no
address_verify_sender = <>
unverified_sender_reject_code = 550
smtpd_helo_required = yes
smtp_always_send_ehlo = yes
smtpd_hard_error_limit = 8
smtpd_sasl_auth_enable = yes
smtpd_sasl_application_name = smtpd
broken_sasl_auth_clients = yes
smtpd_sasl_security_options = noanonymous
smtpd_sender_login_maps = mysql:$base/mysqlLookupMaps/sender.conf
virtual_alias_maps = mysql:$base/mysqlLookupMaps/alias.conf
virtual_mailbox_domains = mysql:$base/mysqlLookupMaps/domain.conf
virtual_mailbox_maps = mysql:$base/mysqlLookupMaps/mailbox.conf
virtual_mailbox_base = /var/mail
virtual_mailbox_limit_maps = mysql:$base/mysqlLookupMaps/quota.conf
virtual_maildir_extended=yes
virtual_mailbox_limit_override=yes
virtual_create_maildirsize = yes
virtual_overquota_bounce = yes
virtual_maildir_limit_message="User is over quota"
message_size_limit = 10485760
virtual_gid_maps = static:1981
virtual_uid_maps = static:1981
virtual_minimum_uid = 1000
local_transport = virtual
virtual_transport = dovecot
mailbox_transport = dovecot
dovecot_destination_recipient_limit = 1
smtpd_sasl_type = dovecot
smtpd_sasl_path = /var/spool/postfix/private/dovecot-smtp-auth
mailbox_command = /usr/local/libexec/dovecot/deliver
content_filter=smtp-amavis:[127.0.0.1]:10024
Буду благодарен за любую помощь!
Версия для распечатки
Хитрый спам и Postfix, 
Aivanzipper, 31-Авг-10, 10:31 [смотреть все]
