• The APS Catalog has been deprecated and removed from all Plesk Obsidian versions.
    Applications already installed from the APS Catalog will continue working. However, Plesk will no longer provide support for APS applications.
  • Please be aware: with the Plesk Obsidian 18.0.78 release, the support for the ngx_pagespeed.so module will be deprecated and removed from the sw-nginx package.

Plesk Postfix configuration allows authenticated users to use any sender address

P

philippL

New Pleskian
I was trying to block incoming emails that use our own domains as the FROM address. I found this link: http://serverfault.com/questions/688758/reject-incoming-emails-that-use-your-own-domain-as-sender. Then I noticed this part in the default Plesk postfix configuration:
Code: 
smtpd_sender_restrictions = check_sender_access hash:/var/spool/postfix/plesk/blacklists, permit_sasl_authenticated
There is no entry "reject_sender_login_mismatch" like the one in the article. This means I can use any FROM address I'd like - even from foreign domains! According to the postfix documentation I need to set "$smtpd_sender_login_maps" - but I have no clue how to configure that correctly in Plesk. Does anyone know how?

And does changing this break PHP scripts using the "mail" function (or local sendmail)?
 
You must log in or register to reply here.

Similar threads

Azurel
Issue Blocking spoofed mail from my own domain on Plesk? (PHP mail() compatibility)
Replies
5
Views
2K
Azurel
Azurel
K
Issue Bug with postfix hash->lmdb
Replies
4
Views
2K
knaleffect
K
S
Resolved Sender address rejected: Access denied; Error code is 554 5.7.1
Replies
2
Views
1K
Shareef Ahmmed
S
E
Question DMARC p=reject not rejecting spoofed inbound mail (MAILER-DAEMON sender)
Replies
3
Views
2K
enduser
E
M
Question How to allow a website to be accessed via IPv4 or IPv6 address but emails via mailer / Postfix / SMTP only via IPv4?
Replies
5
Views
2K
ChristophRo
ChristophRo
Back
Top