postfix & dovecot konfigürasyon yardım

bm_ys · 1 25-08-2011, 22:24:34

Merhaba arkadaşlar bir konuda ücretli yada ücretsiz yardımınıza ihtiyacım var,

Bir mail sunucumuzda aşağıdaki konfigürasyonları yaptık ancak sunucu ilk açıldığından beri sürekli logları şişiren bir saldırı alıyoruz dynamic.hinet.net adresinden

Postfix ve dovecot mysql kullanacak şekilde ayarlandı
Mailler maildirde saklanıyor

Aşağıdaki ayarlara ihtiyacımız var
Mail gönderme:
Sadece bizde kayıtlı olan adresler mail gönderebilecek
Mail alma :
Spam kontrolü ayarları
Imap login :
Sadece bizde kayıtlı olan kullanıcılar login olabilecek dışarıdan outlook vb. programlarla yada sunucu içerisinden serverside programlarla...

Bunların dışındaki tüm talepler göz ardı edilecek.

Konu hakkında bilgili arkadaşlar yazarlarsa sevinirim.

Aşağıda loglardan bir bölüm gönderiyorum :

Kod:

Aug 24 07:08:22 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:22 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:23 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:23 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:23 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:24 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:24 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:24 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:25 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:25 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:27 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:28 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:29 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:31 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:32 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:33 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:35 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:36 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:37 smtp postfix/smtpd[14660]: NOQUEUE: reject: RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]: 554 5.7.1 <ccyya12@yahoo.com.tw>: Relay access denied; from=<ikangdeeacg@ms62.hinet.net> to=<ccyya12@yahoo.com.tw> proto=SMTP helo=<*.*.*.*>
Aug 24 07:08:39 smtp postfix/smtpd[14660]: too many errors after RCPT from 114-36-4-158.dynamic.hinet.net[114.36.4.158]

hinet.net adresinden birçok sunucudan saldırı alıyoruz...

Aşağıda login denemeleri :

Kod:

Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<account>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<webmaster>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<administrator>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<postmaster>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<web1>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<test>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<www2>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<admin>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<hostmaster>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<root>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<ftproot>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<info>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<web2>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<data>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<admin1>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<web>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:31 smtp dovecot: pop3-login: Aborted login: user=<sales>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<www>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<info>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<root>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<postmaster>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<web1>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<www2>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<user>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<web>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<administrator>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<webmaster>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<web2>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<sales>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<admin1>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<admin2>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<account>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<server>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<apache>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<ftproot>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<data>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<admin>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<test>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<hostmaster>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:33 smtp dovecot: pop3-login: Aborted login: user=<support>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*
Aug 24 01:29:35 smtp dovecot: pop3-login: Aborted login: user=<web2>, method=PLAIN, rip=::ffff:93.63.46.16, lip=::ffff:*.*.*.*

Seçenekler
Yazdırılabilir şekli göster Sayfayı E-Mail olarak gönder