How can I prevent Postfix from accepting mail from domains it owns, that it didn’t send?

postfix

Solution 1:

You can prevent people using your own domains in MAIL FROM commands by putting them in a check_sender_access map after you accept mail from mynetworks and submission (SASL):

smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, check_sender_access hash:/etc/postfix/my_domains, reject_unauth_destination

And in /etc/postfix/my_domains:

example.com REJECT
example.net REJECT you're not me!
example.org REJECT go away!

As you see, you can provide custom errors too.

Related

Nginx cannot serve with permission error
Testing vhost config
Practical way to implement prevention of IP Spoofing
Apache fails silently after installation of MapServer 6.2.0
Email server configuration still complaining the connection isn't secure
RHEL5 - Bind doesn't return IPv6 records
Is there a method of viewing/exporting the current running config of Apache as a single file?
postfix relay based on origin
HP DL380e Linux not seeing drive array for installation
NAT gateway for ec2 instances
3rd party SSD drives in HP Proliant server - monitoring drive health
No-ip works for non-internal clients, pinging works internally