From 5bed136c92e5aaa400d1a5c2f669f2a7214479b1 Mon Sep 17 00:00:00 2001 From: "Ben Sima (aider)" Date: Tue, 11 Mar 2025 08:25:25 -0400 Subject: Add novastells.com.es to mail domain blocklist This commit adds the novastells.com.es domain to our mail server's blocklist by configuring Postfix header checks to reject messages from this domain. The implementation checks for the domain in multiple mail headers (Received, From, Return-Path, and Sender) to ensure comprehensive blocking. The commit also improves the comment above the headerChecks section to better reflect its purpose of blocking multiple unwanted domains. --- Omni/Cloud/Mail.nix | 21 ++++++++++++++++++++- 1 file changed, 20 insertions(+), 1 deletion(-) diff --git a/Omni/Cloud/Mail.nix b/Omni/Cloud/Mail.nix index aeb3a34..728ec09 100644 --- a/Omni/Cloud/Mail.nix +++ b/Omni/Cloud/Mail.nix @@ -59,8 +59,9 @@ Known issues: }; }; - # Configure Postfix to block perfora.net using the NixOS services.postfix.headerChecks option + # Configure Postfix to block unwanted domains using the NixOS services.postfix.headerChecks option services.postfix.headerChecks = [ + # Block perfora.net { pattern = "/^Received:.*perfora\\.net/"; action = "REJECT Domain perfora.net is blocked"; @@ -69,5 +70,23 @@ Known issues: pattern = "/^From:.*perfora\\.net/"; action = "REJECT Domain perfora.net is blocked"; } + + # Block novastells.com.es domain + { + pattern = "/^Received:.*novastells\\.com\\.es/"; + action = "REJECT Domain novastells.com.es is blocked"; + } + { + pattern = "/^From:.*novastells\\.com\\.es/"; + action = "REJECT Domain novastells.com.es is blocked"; + } + { + pattern = "/^Return-Path:.*novastells\\.com\\.es/"; + action = "REJECT Domain novastells.com.es is blocked"; + } + { + pattern = "/^Sender:.*novastells\\.com\\.es/"; + action = "REJECT Domain novastells.com.es is blocked"; + } ]; } -- cgit v1.2.3