OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Martin Traxl (docclan-on.de)
Date: Tue Mar 06 2001 - 07:23:00 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    > On Mon, Mar 05, 2001 at 07:36:17PM +0100, Martin Traxl wrote:
    > > smtpd_client_restrictions = permit_sasl_authenticated
    >
    > This one is bogus. But you need:
    >
    > smtpd_recipient_restrictions =
    > permit_mynetworks,
    > permit_sasl_authenticated,
    > check_relay_domains
    >
    > or whatever your UCE restrictions should look like. I just added
    > permit_sasl_authenticated to the default list for this example.
    >
    >
    > Best regards,
    > Daniel
    >
    > --
    > ----------------------------------------------------------------------
    > entire systems GmbH | droesenentire-systems.com
    > Internet Services | Phone: +49 2624 9550-55
    > Ferbachstrasse 12 | Fax: +49 2624 9550-20
    > D-56203 Hoehr-Grenzhausen | http://www.entire-systems.com/
    > ----------------------------------------------------------------------
    >
    ok now I set smtpd_recipient_restrictions = permit_mynetworks,
    permit_sasl_authenticated, check_relay_domains
    but postfix still refuses to relay mail for sasl authenticated users.
    it seems that permit_sasl_authenticated is ignored. here is the output
    from postconf -n. did I make any other mistake?
    thanks,
    Martin

    alias_database = hash:/etc/aliases
    alias_maps = hash:/etc/aliases
    canonical_maps = hash:/etc/postfix/canonical
    command_directory = /usr/sbin
    daemon_directory = /usr/lib/postfix
    debug_peer_level = 2
    default_destination_concurrency_limit = 10
    default_privs = nobody
    hash_queue_names = active bounce defer flush
    local_destination_concurrency_limit = 2
    mail_owner = postfix
    mail_spool_directory = /var/mail
    mailbox_transport = cyrus
    masquerade_domains = $mydomain
    masquerade_exceptions = root
    mydestination = $myhostname, localhost.$mydomain, clan-on.de mail.clan-on.de
    www.clan-on.de onslaught.clan-on.de onslaught localhost
    mydomain = clan-on.de
    myhostname = mail.clan-on.de
    program_directory = /usr/lib/postfix
    queue_directory = /var/spool/postfix
    relocated_maps = hash:/etc/postfix/relocated
    smtpd_banner = $myhostname ESMTP $mail_name
    smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated,
    check_relay_domains
    smtpd_sasl_auth_enable = yes
    smtpd_sasl_local_domain = onslaught
    smtpd_sasl_security_options = noanonymous
    smtpd_sender_restrictions = hash:/etc/postfix/access
    transport_maps = hash:/etc/postfix/transport
    virtual_maps = hash:/etc/postfix/virtual