On 18 Jul 2001 13:05:50 +0200, Luc Pardon <lucpskopos.be> wrote:
> I was playing with UCE restrictions, and have all rules in
> smtpd_recipient_restriontions.

Praise be.
 
> It seems that check_relay_domains must come last, but I'd like to
> understand why. When it's higher up, I get warnings like this (postfix
> reload in between):

Because it return OK or REJECT. No further restriction will be
evaluatet -- since at that point it's either YES or NO.

> I have now inserted reject_unauth_destinations, which I understand
> from the docs to be the same as check_relay_access minus the check on
> client name being in $mydestinations. There are no warnings, so either
> the remainder is silently being ignored, or it is the client name check
> part of check_relay_domains that causes the warnings.

No, it's not the same. It returns REJECT or DUNNO, in case of dunno
further restrictions are evaluated.

> allow_percent_hack = yes

Why?

> biff = yes

Why?

Try these.

smtpd_recipient_restrictions =
   permit_mynetworks,
   check_recipient_access hash:/etc/postfix/recipient_restrictions,
   check_client_access hash:/etc/postfix/client_restrictions,
   check_sender_access hash:/etc/postfix/sender_restrictions,
   reject_unauth_destination,
   reject_non_fqdn_sender,
   reject_non_fqdn_recipient,
   reject_unauth_pipelining,
   reject_unknown_sender_domain,
   reject_unknown_recipient_domain,
   reject_unknown_client,
   reject_maps_rbl

-- 
ralf.hildebrandtinnominate.com                            innominate AG
Technical Consultant                   Don't be afraid of what you see -
Diplom-Informatiker                     be afraid of what you don't see!
tel: +49.(0)7000.POSTFIX                        fax: +49.(0)30.308806-77
-
To unsubscribe, send mail to majordomopostfix.org with content
(not subject): unsubscribe postfix-users

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]