From owner-freebsd-questions@freebsd.org Mon Jan 21 14:45:48 2019 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 2532314ABB22 for ; Mon, 21 Jan 2019 14:45:48 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from kicp.uchicago.edu (kicp.uchicago.edu [128.135.20.70]) by mx1.freebsd.org (Postfix) with ESMTP id E438F8C6A6 for ; Mon, 21 Jan 2019 14:45:46 +0000 (UTC) (envelope-from galtsev@kicp.uchicago.edu) Received: from [10.0.0.5] (adsl-108-68-162-1.dsl.chcgil.sbcglobal.net [108.68.162.1]) by kicp.uchicago.edu (Postfix) with ESMTP id 224AF71803F for ; Mon, 21 Jan 2019 08:45:45 -0600 (CST) Subject: Re: Trying to understand some email issues To: freebsd-questions@freebsd.org References: From: Valeri Galtsev Message-ID: <46ff038f-959b-838f-8101-7231e4451836@kicp.uchicago.edu> Date: Mon, 21 Jan 2019 08:45:44 -0600 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.3.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: E438F8C6A6 X-Spamd-Bar: + Authentication-Results: mx1.freebsd.org; dmarc=fail reason="" header.from=uchicago.edu (policy=none) X-Spamd-Result: default: False [1.01 / 15.00]; ARC_NA(0.00)[]; DMARC_POLICY_SOFTFAIL(0.10)[uchicago.edu : No valid SPF, No valid DKIM,none]; FROM_HAS_DN(0.00)[]; TO_MATCH_ENVRCPT_ALL(0.00)[]; NEURAL_HAM_LONG(-0.52)[-0.521,0]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; NEURAL_SPAM_MEDIUM(0.53)[0.534,0]; RCPT_COUNT_ONE(0.00)[1]; IP_SCORE(-0.02)[country: US(-0.08)]; NEURAL_SPAM_SHORT(0.93)[0.927,0]; MX_GOOD(-0.01)[cached: kicp.uchicago.edu]; RCVD_IN_DNSWL_NONE(0.00)[70.20.135.128.list.dnswl.org : 127.0.10.0]; R_SPF_NA(0.00)[]; RCVD_NO_TLS_LAST(0.10)[]; FROM_EQ_ENVFROM(0.00)[]; R_DKIM_NA(0.00)[]; MIME_TRACE(0.00)[0:+]; ASN(0.00)[asn:160, ipnet:128.135.0.0/16, country:US]; MID_RHS_MATCH_FROM(0.00)[]; RCVD_COUNT_TWO(0.00)[2] X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 Jan 2019 14:45:48 -0000 On 1/21/19 6:06 AM, Carmel NY wrote: > On Sun, 20 Jan 2019 22:33:02 -0800, Patrick Mahan stated: > >> All, >> >> FreeBSD 11.2 >> >> Running postfix 3.3.2_1,1 >> >> I'm getting hammered with thousands of emails from yahoo.com - >> >> Here is an example - >> >> Jan 20 22:09:01 ns postfix/smtp[1308]: 2DA97A2E2EF: >> to=, >> relay=mx-aol.mail.gm0.yahoodns.net[98.137.157.43]:25, delay=13730, >> delays=13728/0.31/1.1/0.06, dsn=4.7.0, status=deferred (host >> mx-aol.mail.gm0.yahoodns.net[98.137.157.43] said: 421 4.7.0 [TSS04] >> Messages from 23.24.207.145 temporarily deferred due to user >> complaints - 4.16.55.1; see >> https://help.yahoo.com/kb/postmaster/SLN3434.html (in reply to MAIL >>FROM command)) >> >> I'm trying to determine if I am somehow relaying emails to yahoo.com, >> or is this someone attacking me. >> >> I am pretty sure I have postfix to avoid acting like a relay for >> unauthenticated connections. But this maybe something I have messed >> up. This has been happening only since I upgraded to 11.2 (I was at >> 9.x). I also just recently switch from sendmail to postfix as well. >> >> I can provide my postfix config on request if needed. >> >> Pointers to other mail-lists are welcomed. I decided to start here >> before jumping on the postfix mailing list. >> >> Thanks in advance, >> >> Patrick > > Patrick, you wouldn't see a podiatrist if you were suffering from > cancer, you would see an oncologist. The same rational is true here. > Your problem deals with "postfix", so your questions should be directed > there. There are an extremely knowledgeable group. The author, Wietse > Venema, quite often chimes in with answers to user's questions. To join > the list, check this out: http://www.postfix.com/lists.html > > In any case, see these URL's for further info: > http://www.postfix.com/DEBUG_README.html > http://www.postfix.com/DEBUG_README.html#mail > Better, provide output from the postfinger tool. This can be found at > http://ftp.wl0.org/SOURCES/postfinger. > Although I agree with what you said, it is yet to be determined that there is problem with postfix. So general start that was suggested here can be a good start. And I'm sure on postfix mail list the same starting investigation routes will be suggested. Good luck. Valeri -- ++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++