NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2005-06

Re: How to match SASL logged user and MAIL FROM address.

From: Truong Tan Son (sonttfcv.fujitsu.com)
Date: Wed Jun 01 2005 - 22:19:06 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Dear Mr. Sir,

It means that MAIL FROM address must be same user of SASL, if different, server rejects.

SASL user = userXXtest.com, MAIL FROM = userXXtest.com , Accept
SASL user = userYYtest.com, MAIL FROM = userYYtest.com , Accept

SASL user = userXXtest.com, MAIL FROM = userYYtest.com, Server rejects

How can I do to fix this problem ( I do not use MySql, LDAP ) ?

With best regards,

----- Original Message -----
From: "Jianbin Xiao" <xiaojbgmail.com>
To: "Truong Tan Son" <sonttfcv.fujitsu.com>
Sent: Thursday, June 02, 2005 9:52 AM
Subject: Re: How to match SASL logged user and MAIL FROM address.

smtpd_sender_restrictions = reject_unlisted_sender
       reject_sender_login_mismatch
       permit_sasl_authenticated
       reject_unauthenticated_sender_login_mismatch
       reject

permit_sasl_authenticated permit user2test.com's email.

On 6/2/05, Truong Tan Son <sonttfcv.fujitsu.com> wrote:
> Dear Sir,
>
> I install postfix 2.3, SASL 2.1 on RedHat Linux 7.3, the SMTP authentication seems good.
>
> I use Microsoft Outllok Express 6.0 connect to this server to test.
>
> This server did not check the match between user of SASL logged in and MAIL FROM address.
>
> **SASL user:
> user1test.com & password
>
> **MAIL FROM address owner:
> user1test.com
> user2test.com
> user3test.com
>
> With user1test.com & password, I can send mail with MAIL FROM: user2test.com, or
> user3test.com,
> NOT only for user1test.com
>
> There is some options for SASL authen:
>
> smtpd_sasl_auth_enable = yes
> smtp_sasl_auth_enable = no
> smtpd_sasl_authenticated_header = yes
> smtpd_sender_login_maps = hash:/etc/postfix/login_maps
> smtpd_sender_restrictions = reject_unlisted_sender
> permit_sasl_authenticated
> reject_sender_login_mismatch
> reject_unauthenticated_sender_login_mismatch
> reject
>
> Does it lack something on this config ?
>
> Please help me to solve this problem.
>
>
>
> Thanks you and best regards,
> ----
> Truong Tan Son
>
>
>

--
===========================
DQPI Polaris BBS
Jianbin Xiao
===========================

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]