postfix-policyyd-spf-python - amddiffyniad spoof - mae spf yn gwirio METHU ond ni chymerwyd unrhyw gamau - pam?
Rydw i wedi gosod postfix-policyyd-spf-python ac wedi ffurfweddu'r ôl-ddodiad integreiddio yn ôl y docs.
Dyma fy ffeil ffurfweddu policyyd-spf.conf :
debugLevel = 1
TestOnly = 0
HELO_reject = SPF_Not_Pass
Mail_From_reject = Fail
PermError_reject = False
TempError_Defer = False
skip_addresses = 127.0.0.0/8,::ffff:127.0.0.0/104,::1
Mae e-byst sy'n dod i mewn gan weinyddion post tramor yn cael eu gwirio a'u nodi'n gywir. Ond pan fyddaf yn gwirio am amddiffyniad ffug, rywsut mae'r e-byst yn mynd drwodd:
$ telnet mail.example.com 25
Connected to mail.example.com.
Escape character is '^]'.
220 mail.example.com ESMTP Postfix
helo asd.somedomain.com
250 mail.example.com
mail from: me@example.com
250 2.1.0 Ok
rcpt to: test@example.com
250 2.1.5 Ok
data
354 End data with <CR><LF>.<CR><LF>
from: "ME" <me@example.com>
to: "test" <test@example.com>
subject: test
asdasd klajsdlaksjd
thanks!
.
250 2.0.0 Ok: queued as 8C9EC1260E1
Yn fy marn i, NI ddylid cyflwyno'r e-bost hwn.
Dyma'r allbwn difa chwilod o postfix-policyyd-spf-python :
policyd-spf[34414]: Found the end of entry
policyd-spf[34414]: Config: {'debugLevel': 5, 'HELO_reject': 'SPF_Not_Pass', 'Mail_From_reject': 'Fail', 'PermError_reject': 'False', 'TempError_Defer': 'False', 'skip_addresses': '127.0.0.0/8,::ffff:127.0.0.0/104,::1', 'TestOnly': 0, 'SPF_Enhanced_Status_Codes': 'Yes', 'Header_Type': 'SPF', 'Hide_Receiver': 'Yes', 'Authserv_Id': 'mail.example.com', 'Lookup_Time': 20, 'Whitelist_Lookup_Time': 10, 'Void_Limit': 2, 'Reason_Message': 'Message {rejectdefer} due to: {spf}. Please see {url}', 'No_Mail': False, 'Mock': False}
policyd-spf[34414]: Cached data for this instance: []
policyd-spf[34414]: skip_addresses enabled.
policyd-spf[34414]: _get_resultcodes: scope: helo, Reject_Not_Pass_Domains: None, helo_policy: SPF_Not_Pass, mfrom_policy: Fail
policyd-spf[34414]: Scope helo unused results: ['Pass', 'None', 'Temperror', 'Permerror']
policyd-spf[34414]: helo policy true results: actions: {'defer': [], 'reject': ['Fail', 'Softfail', 'Neutral'], 'prepend': ['Pass', 'None', 'Temperror', 'Permerror']} local {'local_helo': False, 'local_mfrom': False}
policyd-spf[34414]: spfcheck: pyspf result: "['None', '', 'helo']"
policyd-spf[34414]: None; identity=no SPF record; client-ip=xx.xx.xx.xx; helo=asd.somedomain.com; envelope-from=me@example.com; receiver=<UNKNOWN>
policyd-spf[34414]: _get_resultcodes: scope: mfrom, Reject_Not_Pass_Domains: None, helo_policy: SPF_Not_Pass, mfrom_policy: Fail
policyd-spf[34414]: Scope mfrom unused results: ['Pass', 'None', 'Neutral', 'Softfail', 'Temperror', 'Permerror']
policyd-spf[34414]: mfrom policy true results: actions: {'defer': [], 'reject': ['Fail'], 'prepend': ['Pass', 'None', 'Neutral', 'Softfail', 'Temperror', 'Permerror']} local {'local_helo': False, 'local_mfrom': False}
policyd-spf[34414]: spfcheck: pyspf result: "['Fail', 'SPF fail - not authorized', 'mailfrom']"
policyd-spf[34414]: Fail; identity=mailfrom; client-ip=xx.xx.xx.xx; helo=asd.somedomain.com; envelope-from=me@example.com; receiver=<UNKNOWN>
policyd-spf[34414]: Action: None: Text: None Reject action: 550 5.7.23
Fel y gwelwn o'r ffeiliau log, mae'r gwiriad SPF yn dychwelyd:
spfcheck: canlyniad pyspf: "[ 'Methu', 'SPF yn methu - heb ei awdurdodi', 'mailfrom'] "
fodd bynnag, mae'r llinell olaf yn darllen:
Gweithred: Dim: Testun: Dim Gwrthod gweithredu: 550 5.7.23
Pam mae hynny ? Pam mae'r Gweithred: Dim ? Yn fy marn i, dylai'r e-bost gael ei wrthod a pheidio â'i dderbyn gan y gweinydd. Beth ydw i'n ei wneud yn anghywir?
TestOnly = 1 настройка не останавливает почту, которая не прошла проверку SPF, т.к. она предназначена для тестирования. Для рабочего почтового сервера отключите эту опцию.
Ваша проблема, вероятно, связана с тем, что вы подключаетесь по telnet и проверяете с того же хоста, который разрешен из-за следующей опции: skip_addresses = 127.0.0.0/8,::ffff:127.0.0.0/104,::1