Returned Mail by the 1000s

Gary Thornock gthornock at yahoo.com
Tue Jan 30 08:21:40 MST 2007


You might check the mynetworks and relay_domains settings in
Postfix, but I suspect they're fine.  This looks more like
there's an application running on your box that's sending mail.
That's a more difficult problem to solve, unfortunately, unless
it's an application that's supposed to be there and it's just
being misused.

If all of the mails being sent have the same destination domain,
you can at least temporarily stop the flow by adding a couple of
lines to /usr/local/etc/postfix/transport:

  korea.com   error:mail for korea.com is not deliverable
  .korea.com  error:mail for korea.com is not deliverable

and then running the usual "postmap transport && postfix reload".
Check first to make sure Postfix is using the transport map.
There should be a line like this in main.cf:

  transport_maps = hash:/usr/local/etc/postfix/transport

Ultimately, though, if there is an unwanted application on your
system sending email, you've got some work ahead of you getting
things cleaned up.  The only way to really be sure that other
parts of your system aren't also compromised is to reinstall.




More information about the PLUG mailing list