Tracking down the cause of a Postfix "Recipient address rejected: Access denied" error

postfix

Solution 1:

The sending mail server was sending mail on port 465 for some reason, which was invoking a different set of smtpd_recipient_restrictions, the much simpler:

smtps     inet  n       -       -       -       -       smtpd
  -o smtpd_tls_wrappermode=yes
  -o smtpd_sasl_auth_enable=yes
  -o broken_sasl_auth_clients=yes
  -o content_filter=
  -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject
  -o milter_macro_daemon_name=ORIGINATING

Naturally, their SMTP server was not authenticating, so the Recipient Address was rejected with Access Denied.

Should I be accepting unauthenticated local delivery over 465? I certainly didn't think so.

Related

Graphite stops collecting data randomly
IIS no longer trusts any CAs for client authentication
LOM vs. NIC for iDRAC with Dell PowerEdge R720xd
Write once, read many (WORM) using Linux file system
Adding CPUs puts MySQL 5.5 (Debian) performance down
Strongswan VPN Established but no Packets Routed
Nginx $http_x_forwarded_for not always being set
How to accept EULAs for Software updates deployed through SCCM using Powershell
Openvpn routing for lan to lan through tun
Is it possible to receive inbound emails using Mandrill?
Requests are never queued after pm.max_children with Nginx and PHP-FPM
How to enable certain SSL cipher while having disabled the group?