OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Martin Traxl (docclan-on.de)
Date: Tue Mar 06 2001 - 08:18:19 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    sorry for that stupid question I mistook smtpd_client_restrictions and
    smtpd_recipient_restrictions. problem solved.
    Martin

    ----- Original Message -----
    From: "Martin Traxl" <docclan-on.de>
    To: "postfix users" <postfix-userspostfix.org>
    Sent: Tuesday, March 06, 2001 2:23 PM
    Subject: Re: relaying problem

    > > On Mon, Mar 05, 2001 at 07:36:17PM +0100, Martin Traxl wrote:
    > > > smtpd_client_restrictions = permit_sasl_authenticated
    > >
    > > This one is bogus. But you need:
    > >
    > > smtpd_recipient_restrictions =
    > > permit_mynetworks,
    > > permit_sasl_authenticated,
    > > check_relay_domains
    > >
    > > or whatever your UCE restrictions should look like. I just added
    > > permit_sasl_authenticated to the default list for this example.
    > >
    > >
    > > Best regards,
    > > Daniel
    > >
    > > --
    > > ----------------------------------------------------------------------
    > > entire systems GmbH | droesenentire-systems.com
    > > Internet Services | Phone: +49 2624 9550-55
    > > Ferbachstrasse 12 | Fax: +49 2624 9550-20
    > > D-56203 Hoehr-Grenzhausen | http://www.entire-systems.com/
    > > ----------------------------------------------------------------------
    > >
    > ok now I set smtpd_recipient_restrictions = permit_mynetworks,
    > permit_sasl_authenticated, check_relay_domains
    > but postfix still refuses to relay mail for sasl authenticated users.
    > it seems that permit_sasl_authenticated is ignored. here is the output
    > from postconf -n. did I make any other mistake?
    > thanks,
    > Martin
    >
    > alias_database = hash:/etc/aliases
    > alias_maps = hash:/etc/aliases
    > canonical_maps = hash:/etc/postfix/canonical
    > command_directory = /usr/sbin
    > daemon_directory = /usr/lib/postfix
    > debug_peer_level = 2
    > default_destination_concurrency_limit = 10
    > default_privs = nobody
    > hash_queue_names = active bounce defer flush
    > local_destination_concurrency_limit = 2
    > mail_owner = postfix
    > mail_spool_directory = /var/mail
    > mailbox_transport = cyrus
    > masquerade_domains = $mydomain
    > masquerade_exceptions = root
    > mydestination = $myhostname, localhost.$mydomain, clan-on.de
    mail.clan-on.de
    > www.clan-on.de onslaught.clan-on.de onslaught localhost
    > mydomain = clan-on.de
    > myhostname = mail.clan-on.de
    > program_directory = /usr/lib/postfix
    > queue_directory = /var/spool/postfix
    > relocated_maps = hash:/etc/postfix/relocated
    > smtpd_banner = $myhostname ESMTP $mail_name
    > smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated,
    > check_relay_domains
    > smtpd_sasl_auth_enable = yes
    > smtpd_sasl_local_domain = onslaught
    > smtpd_sasl_security_options = noanonymous
    > smtpd_sender_restrictions = hash:/etc/postfix/access
    > transport_maps = hash:/etc/postfix/transport
    > virtual_maps = hash:/etc/postfix/virtual
    >
    >
    >
    >