My primary domain has some mail accounts such as : person@domain.com
And these send/receive mail fine.
Now a spammer comes and sends mail to : badperson@domain.com
Right now all those messages are being sent to an account on the system, that is NOT a part of domain.com. /home/someotheruser/Maildir/new/...
I think there is some old configuration from previous operating systems lingering around that cause this. I see the message being delivered by procmail :
Apr 4 13:00:19 w00t postfix/local[26195]: 6FF1D1403BE: to=someotheruser@server.hostingcomp.com, orig_to=badperson@domain.com, relay=local, delay=10, delays=0.76/8.7/0/0.74, dsn=2.0.0, status=sent (delivered to command: /usr/bin/procmail-wrapper -o -a $DOMAIN -d $LOGNAME)
So finally the question : Where is the command that is telling all unmatched mail to domain.com to go to someotheruser ? I've dug through postfix and mail aliases and not found it. any clues?
thanks, -m
Found it :
/etc/postfix/virtual : @domain.com default-domain.com
/etc/aliases : default-domain.com \someotheruser
Changed aliases and reran postalias and all is good again
-m