Whitelist... Sadly, again

T

tanjix

Member
May 12, 2021
15
3
8
41
Hi folks,

I'm running PMG (Linux 5.15.85-1-pve #1 SMP PVE 5.15.85-1 (2023-02-01T00:00Z)) and added a domain (whitelisteddomain.com in this example) name into the whitelist on both areas:

Mail-Filter --> Who Objects --> Whitelist

and

Configuration --> Mail Proxy --> Whitelist

Sadly, these entries don't seem to have an effect, as incoming mails are still being rejected as per the logs:

Mar 21 17:33:40 pmg postfix/postscreen[214711]: NOQUEUE: reject: RCPT from [40.107.105.52]:42209: 550 5.7.1 Service unavailable; client [40.107.105.52] blocked using bl.score.senderscore.com; from=<sender@whitelisteddomain.com>, to=<recipient@email.com>, proto=ESMTP, helo=<EUR03-AM7-obe.outbound.protection.outlook.com>

Why are email still rejected although the sender domain name is on both whitelists?

Thanks for any advise, this is starting to get annoying :/
 
tanjix said:
Mar 21 17:33:40 pmg postfix/postscreen[214711]: NOQUEUE: reject: RCPT from [40.107.105.52]:42209: 550 5.7.1 Service unavailable; client [40.107.105.52]
Click to expand...
this mail was blocked because the sending IP is listed on bl.score.senderscore.com (which you configured as dnsbl_site in the Mail Proxy Option)
if you want to whitelist it ... you need to whitelist the IP

I hope this helps!
 
Hi Stoiko,

thanks for your swift reply.
Isn’t there an option that skips all other checks if I add a recipient to the whitelist? If I decide to accept mails from them it shouldn’t matter from where they send and all other checks should either be bypassed or skipped, even if they would return a positive result - like in this case.

Any chance for that?
 
tanjix said:
thanks for your swift reply.
Isn’t there an option that skips all other checks if I add a recipient to the whitelist? If I decide to accept mails from them it shouldn’t matter from where they send and all other checks should either be bypassed or skipped, even if they would return a positive result - like in this case.
Click to expand...
no not really - and it also does not make sense - in this example - if a spammer uses that from address they could just send you everything they wanted - and it would be accepted - no matter where it's from
 
Agree, but the risk, a potential spammer would do so (which beforehand means, he must have knowledge on that specific email address), is relatively low.

Is there a whitelist addon etc., that whitelists all outlook.com ip ranges without adding all of them one by one?
 
You must log in or register to reply here.
Top Bottom