Block ip-based helo at MTA (#8139).

Numeric helo is a very strong indicator of spam. When this is blocked, a very significant amount of spam stops. Change-Id: Ieb340190faf37638950d1aa60b52268659e0b7f6
author: Micah <micah@leap.se> 2016-07-12 11:20:58 -0400
committer: Micah <micah@leap.se> 2016-07-19 10:44:11 -0400
commit: bbdc193f05cb2f1624d6c7bbffd27f8060de35c8 (patch)
tree: 5afe409027ccc69fd7d3c1895e39bb1800c9d2d0 /puppet/modules/site_postfix/manifests/mx/smtpd_checks.pp
parent: 68544ba2ffdfa988c060b3b4c5bd075f7304a022 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/puppet/modules/site_postfix/manifests/mx/smtpd_checks.pp b/puppet/modules/site_postfix/manifests/mx/smtpd_checks.pp
index 291d7ee4..162e6d86 100644
--- a/puppet/modules/site_postfix/manifests/mx/smtpd_checks.pp
+++ b/puppet/modules/site_postfix/manifests/mx/smtpd_checks.pp
@@ -28,7 +28,7 @@ class site_postfix::mx::smtpd_checks {
     'smtps_relay_restrictions':
       value => 'permit_mynetworks, permit_tls_clientcerts, defer_unauth_destination';
     'smtps_helo_restrictions':
-      value => 'permit_mynetworks, check_helo_access hash:$checks_dir/helo_checks, permit';
+      value => 'permit_mynetworks, check_helo_access hash:$checks_dir/helo_checks, check_helo_access pcre:$checks_dir/helo_checks.pcre, permit';
     'smtpd_sender_restrictions':
       value => 'permit_mynetworks, reject_non_fqdn_sender, reject_unknown_sender_domain, permit';
     }
author	Micah <micah@leap.se>	2016-07-12 11:20:58 -0400
committer	Micah <micah@leap.se>	2016-07-19 10:44:11 -0400
commit	bbdc193f05cb2f1624d6c7bbffd27f8060de35c8 (patch)
tree	5afe409027ccc69fd7d3c1895e39bb1800c9d2d0 /puppet/modules/site_postfix/manifests/mx/smtpd_checks.pp
parent	68544ba2ffdfa988c060b3b4c5bd075f7304a022 (diff)