postfix-policyd-spf-perl(1) | General Commands Manual | postfix-policyd-spf-perl(1) |
NAME¶
postfix-policyd-spf-perl - pure-Perl Postfix policy server for SPF checkingVERSION¶
2.008USAGE¶
Usage:policyd-spf-perl [-v]
OTHER DOCUMENTATION¶
This documentation assumes you have read Postfix's README_FILES/ SMTPD_POLICY_README.SYNOPSIS¶
postfix-policyd-spf-perl is a Postfix SMTP policy server for SPF checking. It is implemented in pure Perl and uses the Mail::SPF CPAN module. Note that Mail::SPF is a complete re-implementation of SPF based on the final SPF RFC, RFC 4408. It shares no code with the older Mail::SPF::Query that was the original SPF development implementation.DESCRIPTION¶
Logging is sent to syslogd.TESTING THE POLICY DAEMON¶
Testing the policy daemon% /usr/sbin/postfix-policyd-spf-perl
request=smtpd_access_policy
protocol_state=RCPT
protocol_name=SMTP
helo_name=some.domain.tld
queue_id=
instance=71b0.45e2f5f1.d4da1.0
sender=foo@bar.tld
recipient=bar@foo.tld
client_address=1.2.3.4
client_name=another.domain.tld
[empty line]
action=550 Please see http://www.openspf.org/Why?id=foo@bar.tld&ip=1.2.3.4&
receiver=bar@foo.tld
[empty line]
sender=
... More attributes...
[empty line]
POSTFIX INTEGRATION¶
1. Add the following to /etc/postfix/master.cf:
spfcheck unix - n n - 0 spawn
user=policyd-spf argv=/usr/sbin/postfix-policyd-spf-perl
2. Configure the Postfix SPF policy service in /etc/postfix/main.cf:
smtpd_recipient_restrictions =
...
reject_unauth_destination
check_policy_service unix:private/spfcheck
...
spfcheck_time_limit = 3600
NOTE: Specify check_policy_service AFTER reject_unauth_destination or
else your system can become an open relay.
3. Set up machines which you expect to legitimately forward mail to this
server (see description in synopsis). This should typically include
the IP addresses which backup Mail eXchangers, and known non-SRS
forwarders will use to submit mail to this server (i.e. the source IPs
of the other servers).
4. Restart Postfix.
5. Verify correct backup MX operation (if applicable).
SEE ALSO¶
libmail-spf-perl, <http://www.openspf.org>AUTHORS¶
This version of policyd-spf-perl was written by Meng Weng Wong <mengwong+spf@pobox.com> and updated for libmail-spf-perl by Scott Kitterman <scott@kitterman.com> and Julian Mehnle <julian@mehnle.net>. This man-page was written by Scott Kitterman <scott@kitterman.com>.2012-01-19 |