|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: FAQ correction
From: Ralf Hildebrandt (Ralf.Hildebrandt
berliner-volksbank.de)Date: Wed Nov 01 2000 - 08:25:15 CST
- Next message: Ralf Hildebrandt: "Re: multiple domain question"
- Previous message: Patrick Vermeij: "Re: multiple domain question"
- In reply to: Ralf Hildebrandt: "Re: Restricting users to local delivery only"
- Next in thread: Wietse Venema: "Re: FAQ correction"
- Reply: Ralf Hildebrandt: "FAQ correction"
- Reply: Wietse Venema: "Re: FAQ correction"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Unless I made an awful logical mistake, I hereby attach a corrected
version of the section "Restricting what users can send mail to off-site
destinations" of the Postfix FAQ:
Changes:
========
* Changed error code to be 554
* smtpd_restriction_classes, not restriction_classes
* fixed an error with swappend sender/recipient restriction
-- ralf.hildebrandt
Restricting what users can send mail to off-site destinations
How can I configure Postfix in a way that some users can send mail to the internet and other users not. The users with no access should receive a generic bounce message. Please don't discuss whether such access restrictions are necessary, it was not my decision.
Postfix has support for per-user restrictions. The restrictions are implemented by the SMTP server. Thus, users that violate the policy have their mail rejected by the SMTP server. Like this:
554 <user
The implementation uses two lookup tables. One table defines what users are restricted in where they can send mail, and the other table defines what destinations are local. It is left as an exercise for the reader to change this into a scheme where only some users have permission to send send mail to off-site destinations, and where most users are restricted.
The example assumes DB/DBM files, but this could also be done with LDAP or SQL.
/etc/postfix/main.cf:
smtpd_recipient_restrictions =
check_sender_access hash:/etc/postfix/restricted_senders
...further restrictions...
smtpd_restriction_classes = local_only
local_only = check_recipient_access hash:/etc/postfix/local_domains, reject
/etc/postfix/restricted_senders:
foodomain local_only
bardomain local_only
/etc/postfix/local_domains:
this.domain OK
# matches this.domain and subdomains
that.domain OK
# matches that.domain and subdomains
Specify dbm instead of hash if your system uses dbm files instead of db files. To find out what map types Postfix supports, use the command postconf -m.
The smtpd_restriction_classes verbiage exists so that Postfix can open /etc/postfix/local_domains.db before entering a chroot jail, so it is only an artefact of implementation.
This scheme does not authenticate the user, therefore it can be bypassed in several ways:
- By sending mail as someone else who does have permission to
send mail to off-site destinations.
- By sending mail as yourself via a less restrictive mail relay host.
- Next message: Ralf Hildebrandt: "Re: multiple domain question"
- Previous message: Patrick Vermeij: "Re: multiple domain question"
- In reply to: Ralf Hildebrandt: "Re: Restricting users to local delivery only"
- Next in thread: Wietse Venema: "Re: FAQ correction"
- Reply: Ralf Hildebrandt: "FAQ correction"
- Reply: Wietse Venema: "Re: FAQ correction"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]