Annulleret

Postfix Domain Based Restrictions

This project is for Postfix experts only please!

PROBLEM :

We operate multiple L.A.M.P. servers on behalf of our clients and we are encountering numerous attacks on a specific server due to an outdated PHP application on one of our clients website. The attacker exploits the client's "Contact Us" form and forces the M.T.A (Postfix) to send SPAM e-mail to internet users.

SOLUTION :

Since this server is intended to send e-mail to the hosted domains only, we are comfortable restricting e-mail delivery to a specified list of domains, which in turn rejects any messages sent outside this domain list.

We require a solution that achieves exactly what is mentioned here, using built-in Postfix functions or mechanisms only. With the option of applying the same solution on other servers as well.

Please be aware that we don't require any per USER restrictions, we just need to permit Postfix to send e-mail to the specified domains only and deny any email going elsewhere.

EXAMPLE :

A file ALLOWED_DOMAINS contains [url removed, login to view] [url removed, login to view] [url removed, login to view] , etc.

1. Postfix receives a mail command (from PHP, Telnet, or anywhere)

2. Postfix checks the RECIPIENT e-mail address against ALLOWED_DOMAINS

3. If RECIPIENT matches any of the ALLOWED_DOMAINS => SEND MESSAGE

4. If RECIPIENT does NOT match any of the ALLOWED_DOMAINS => REJECT

Thats all...

Please make sure you understood the project requirements clearly before placing any bids to avoid wasting our time and yours too.

The solution must be WELL documented to allow our webmasters to deploy it accordingly. For security reasons, no access to our servers will be granted under any circumstances.

Thank you for your time and co-operation in advance.

MASH Group

Færdigheder: Linux, System Administrator, Web Sikkerhed

Se mere: with no restrictions, thank you messages, server domain, p&a group, match problem, matches list, list matches, internet security experts, group m, experts solution, command group, behalf, access experts, postfix domain based delivery, smtpd_recipient_restriction domain, postfix allowed_domains, what is internet security, turn based, send e mail address, postfix, domain email, Deploy, attacks website, linux spam messages, message clients

Om arbejdsgiveren:
( 0 bedømmelser ) Toronto, Canada

Projekt-ID: #286646

6 freelancere byder i gennemsnit $117 for dette job

om1999

I will provide you a script which makes postfix to understand selected [url removed, login to view] then not accept mail to anywhere and allowed only for listed one.I have ecperience of setting more then 100 live with more then 1000 use Mere

$200 USD in 4 dage
(0 bedømmelser)
0.0
gutanu

I have implemented this on several servers and i can help you.

$200 USD in 0 dage
(0 bedømmelser)
0.0
VicDev

can help you. tnx.

$120 USD på 1 dag
(0 bedømmelser)
0.0
sergkh

Hi ! You should do it by adding changes to your postfix [url removed, login to view] file. smtpd_recipient_restriction = hash:/etc/postfix/allowed_domains Beware: smtpd_recipient_restriction usually has permit_mynetworks directive Mere

$50 USD på 1 dag
(0 bedømmelser)
0.0
cainwong

This job can be done with some modification on the sender_access and main.cf. Please let me know at the PMB if the job is still available. Thanks.

$100 USD på 1 dag
(0 bedømmelser)
0.0
techniquer

The mydestination parameter lists all the domains your Postfix system should accept mail for and deliver to ALLOWED_DOMAINS users. By default Postfix accepts mail destined for $myhostname and localhost.$mydomain. If yo Mere

$30 USD på 1 dag
(0 bedømmelser)
0.0