How to repair May be an open relay

ByakuraRinne

esackbauer

It cannot test, as you have not whitelisted the IP address from mxtoolbox. I guess that is also what you were told…

ByakuraRinne

A person or a bot connected to my server to send emails to thousands of different email addresses, so I would like to fix this as soon as possible. Also, when I change ‘my network’ in my Postfix configuration, I no longer get the error, but I can no longer send emails

after change on main.cf

pkernstock

What exactly did you change? What was and is defined in “my network”?
Is mailcow “directly” in the network, or behind some NAT?

pkernstock

This question here remains open. It looks like mynetworks is set to 192.168.2.124/24 and 10.8.0.1/24 (beside this, defining the last octet doesn’t make any sense - 192.168.2.0/24 10.8.0.0/24 would be correct). This allows IPs 192.168.2.0-192.168.2.255 and 10.8.0.0-10.8.0.255 to send unlimited emails without any restrictions.

As this is rather a security concern and allow potentially any IPs/services in that range to uncontrollably send spam (what we see here), these values are NOT set by default. Use mailboxes with authentication to send emails.

Also this remained unanswered:

pkernstock Is mailcow “directly” in the network, or behind some NAT?

If mailcow has a wrong configured NAT and using a IP from this range, it can lead to a open relay.

ByakuraRinne

here the NON working config

DocFraggle

ByakuraRinne First guess is “mynetworks”.

Why exactly did you add all this to extra.cd?

ByakuraRinne

extra.cf is totally empty

DocFraggle

Ah sorry, overlooked which file you opened. But I still don’t have the “mynetworks” parameter set, why do you?

ByakuraRinne

i just reinstall mailcow and now its okay
thanks for your help