Le server de messagerie permet d'envoyer un spam à son propre domaine

J'ai du mal à configurer mon server de messagerie (Dovecot et Postfix). Le problème est que quelqu'un peut envoyer des courriers indésirables à mon adresse à partir de mon propre server de messagerie. Le server n'est pas relais, mais il semble être à moitié ouvert.

Exemple:

alice@example.de
bob@example.de

Bad Guy envoie un spam à partir de:
alice@example.de a alice@example.de

OU de
bob@example.de a alice@example.de

sans avoir besoin de mot de passe.

L'envoi de spams à d'autres personnes n'est pas possible. J'ai essayé d'envoyer un courrier à mon propre domaine à partir de mon propre domaine via Telnet et c'était possible sans mot de passe. Comment puis-je empêcher cela?

1) Activer la connection par courrier électronique /etc/rsyslog.conf

mail.*;mail.debug -/var/log/maillog 

service rsyslog recommencer

2) Essayez de savoir comment ces messages sont pris par postfix

3) append des règles correctes à main.cf

quelque chose comme ça:

 smtpd_relay_ressortingctions = permit_sasl_authenticated, check_recipient_access hash:/etc/postfix/accept_my_domains, check_recipient_access hash:/etc/postfix/access, check_recipient_access hash:/etc/postfix/block_recipient, check_helo_access hash:/etc/postfix/check_hello, reject_unknown_recipient_domain, reject_unauth_destination, reject_invalid_hostname, reject_unauth_pipelining, reject_non_fqdn_recipient, reject_unverified_recipient, permit_auth_destination, reject smtpd_relay_ressortingctions = allow_sasl_authenticated, smtpd_relay_ressortingctions = permit_sasl_authenticated, check_recipient_access hash:/etc/postfix/accept_my_domains, check_recipient_access hash:/etc/postfix/access, check_recipient_access hash:/etc/postfix/block_recipient, check_helo_access hash:/etc/postfix/check_hello, reject_unknown_recipient_domain, reject_unauth_destination, reject_invalid_hostname, reject_unauth_pipelining, reject_non_fqdn_recipient, reject_unverified_recipient, permit_auth_destination, reject check_recipient_access hash: / etc / postfix / accept_my_domains, smtpd_relay_ressortingctions = permit_sasl_authenticated, check_recipient_access hash:/etc/postfix/accept_my_domains, check_recipient_access hash:/etc/postfix/access, check_recipient_access hash:/etc/postfix/block_recipient, check_helo_access hash:/etc/postfix/check_hello, reject_unknown_recipient_domain, reject_unauth_destination, reject_invalid_hostname, reject_unauth_pipelining, reject_non_fqdn_recipient, reject_unverified_recipient, permit_auth_destination, reject check_recipient_access hash: / etc / postfix / block_recipient, smtpd_relay_ressortingctions = permit_sasl_authenticated, check_recipient_access hash:/etc/postfix/accept_my_domains, check_recipient_access hash:/etc/postfix/access, check_recipient_access hash:/etc/postfix/block_recipient, check_helo_access hash:/etc/postfix/check_hello, reject_unknown_recipient_domain, reject_unauth_destination, reject_invalid_hostname, reject_unauth_pipelining, reject_non_fqdn_recipient, reject_unverified_recipient, permit_auth_destination, reject check_helo_access hash: / etc / postfix / check_hello, smtpd_relay_ressortingctions = permit_sasl_authenticated, check_recipient_access hash:/etc/postfix/accept_my_domains, check_recipient_access hash:/etc/postfix/access, check_recipient_access hash:/etc/postfix/block_recipient, check_helo_access hash:/etc/postfix/check_hello, reject_unknown_recipient_domain, reject_unauth_destination, reject_invalid_hostname, reject_unauth_pipelining, reject_non_fqdn_recipient, reject_unverified_recipient, permit_auth_destination, reject