[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Serveur Courier-smtp utilisé comme serveur de spamerait

Bonjour,
Voilà mon fichier master.cf :

smtp      inet  n       -       n       -       -       smtpd
#submission inet n      -       -       -       -       smtpd
#	-o smtpd_etrn_restrictions=reject
#628      inet  n       -       -       -       -       qmqpd
pickup    fifo  n       -       -       60      1       pickup
cleanup   unix  n       -       n       -       0       cleanup
qmgr      fifo  n       -       -       300     1       qmgr
#qmgr     fifo  n       -       -       300     1       oqmgr
rewrite   unix  -       -       n       -       -       trivial-rewrite
bounce    unix  -       -       -       -       0       bounce
defer     unix  -       -       -       -       0       bounce
trace     unix  -       -       -       -       0       bounce
verify    unix  -       -       -       -       1       verify
flush     unix  n       -       -       1000?   0       flush
proxymap  unix  -       -       n       -       -       proxymap
smtp      unix  -       -       -       -       -       smtp
relay     unix  -       -       -       -       -       smtp
#       -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq     unix  n       -       -       -       -       showq
error     unix  -       -       -       -       -       error
local     unix  -       n       n       -       -       local
virtual   unix  -       n       n       -       -       virtual
lmtp      unix  -       -       n       -       -       lmtp
anvil     unix  -       -       n       -       1       anvil
smtp-amavis	unix	-	-	n	-	2	smtp -o smtp_data_done_timeout=1200
127.0.0.1:10025	inet	n	-	n	-	-	smtpd -o content_filter=

maildrop  unix  -       n       n       -       -       pipe
  flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
uucp      unix  -       n       n       -       -       pipe
  flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
ifmail    unix  -       n       n       -       -       pipe
  flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp     unix  -       n       n       -       -       pipe
  flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -d -t$nexthop
-f$sender $recipient
scalemail-backend unix	-	n	n	-	2	pipe
  flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store
${nexthop} ${user} ${extension}

Et pour les logs, des centaines de lignes comme celles-là :

Apr 18 07:18:31 Serveur postfix/qmgr[1310]: 9D458AE315:
from=<allcoke@[mondomaine].net>, size=1052, nrcpt=2 (queue active)
Apr 18 07:18:32 Serveur postfix/smtp[6549]: 16E4EAE253:
to=<[utilisateur]@aol.com>, relay=mailin-02.mx.aol.com[64.12.138.185],
delay=373186, status=deferred (host
mailin-02.mx.aol.com[64.12.138.185] refused to talk to me: 554-
(RTR:BB)  http://postmaster.info.aol.com/errors/554rtrbb.html 554- AOL
does not accept e-mail transactions from dynamic or residential 554-
IP addresses. 554  Connecting IP: [mon.ip])

Le paramêtre from de tous les mails envoyé semble être
allcoke@[mondomaine].net bien qu'elle n'existe pas.
Reply to: