From 4b4bffc27225d08035b4f772697b68e2c20e97ab Mon Sep 17 00:00:00 2001 From: Nicolas Dandrimont Date: Tue, 26 Aug 2008 22:26:55 +0200 Subject: [PATCH] =?UTF-8?q?Ajout=20d'une=20limite=20de=20messages=20par=20?= =?UTF-8?q?minute=20=C3=A0=20postfix?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit darcs-hash:20080826202655-ffbb2-d24778614661289911322952f98975719c107f70.gz --- Python/etc/postfix/main.cf | 18 ++++++++++++++++-- 1 file changed, 16 insertions(+), 2 deletions(-) diff --git a/Python/etc/postfix/main.cf b/Python/etc/postfix/main.cf index 0d828a4..07536a2 100644 --- a/Python/etc/postfix/main.cf +++ b/Python/etc/postfix/main.cf @@ -35,6 +35,11 @@ def add(*values): import commands exports = [s.split(' ', 2)[0] for s in commands.getoutput("/usr/sbin/postconf -d").split("\n")] +# Les différents réseaux +local_networks = ["127.0.0.0/8"] +adm_networks = ["10.231.136.0/24"] +client_networks = ["138.231.136.0/21", "138.231.144.0/21", "138.231.148.0/22"] + @# +------------------+ @# | Variables utiles | @# +------------------+ @@ -47,9 +52,9 @@ mydomain = "crans.org" myorigin = "crans.org" @# Reseaux locaux -mynetworks = ["127.0.0.0/8"] +mynetworks = local_networks if mx: - add(["138.231.136.0/21", "138.231.144.0/21", "138.231.148.0/22", "10.231.136.0/24"]) + add(client_networks + adm_networks) if not mx: @# Ecoute en local uniquement @@ -188,6 +193,15 @@ if main: @# Filtrage sur les sources de connexions smtpd_client_restrictions = "reject_rbl_client rbl-plus.mail-abuse.org" +@## Limitation des messages envoyés par minute +@# On n'ignore que les messages venant d'adresses "protégées" +smtpd_client_event_limit_exceptions = local_networks +if mx: + add(adm_networks) + +@# On limite à 10 messages par minute +smtpd_client_message_rate_limit = 10 + @## Filtrage au MAIL FROM @# Rejet si le domaine de l'envoyeur n'est pas dans un DNS smtpd_sender_restrictions = "reject_unknown_sender_domain"