From: Rob Foehl (rwfloonybin.net)
Date: Mon Dec 01 2003 - 16:52:19 CST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 1 Dec 2003, Lisa Casey wrote:

> As an example, one of the dialup IP blocks is 64.24.0.0/16 So I put
> 64.24.0.0/16 in relay_domains in
> main.cf and I also put 64.24.0.0/16 in access (with the parameter OK) and
> created access.db using postmap.
> When one of my customers dials into that location, she gers this error
> message:
>
> Nov 30 15:35:42 localhost postfix/smtpd[22385]: reject: RCPT from
> 02-186.751.popsite.net[64.24.209.186]: 554 <vinny1rcn.com>: Relay access
> denied; from=<mssskgcampbellcountry.com> to=<vinny1rcn.com>

This is not what relay_domains is for. To answer your question, the
proper way to allow relaying from a certain block of space is to add it to
$mynetworks. However, you'd be allowing a VERY large block of space that
you do not control to relay through your smtp server, which will
undoubtedly cause you headaches down the road. (Only a matter of time
before someone found it and abused it.)

It'd be wise to put this idea on hold until you've looked into various
authentication methods; given your situation, you should look at the
various POP-before-SMTP implementations or SASL, as both will provide
authenticated SMTP service without the risk of running an open relay.

-Rob

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]