Disable VRFY for Postfix

On scans the VRFY command is a finding, to disable it

Add this line below to the


disable_vrfy_command = yes

Now test if VRFY is disabled.

devil@hell> telnet localhost 25
Connected to localhost
Escape character is ‚^]‘.
220 hell.on-earth.local ESMTP Postfix
502 5.51.1 VRFY command is disabled

If the VRFY command does not come back as „VRFY command is disabled“ then this is a finding.