|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: 'map chains' - recursive address validation
From: Wietse Venema (wietse
porcupine.org)
Date: Tue Jul 18 2006 - 10:44:55 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Chris McKeever:
> I was pointed to 'map chains' as a possible solution for a
> *need/desire* of recursive addresses validation - or more correctly a
> rewrite and then validate (first.lastname> flastname => check LDAP)
The Postfix SMTP server currently does not validate addresses except
to check existence non-recursively. Address validation had to
be added years after the architecture was designed and implemented.
It cant' be done 100% accurately without major restructuring.
While it's cool and could solve some problems, I am not convinced
that 'map chains' would solve the address validation problem.
It would have to implement not only the input address rewriting
that is currently done in cleanup and trivial-rewrite, but also
the output address rewriting that happens in, for example, the
local delivery agent (to maintain consistency between virtual(5)
and local(8) aliases).
Wietse
> I only seem to find reference to 'map chains' as a request for
> considersation and some higher level discussion. Had this ever moved
> past the drawing board??
>
> Along those same lines, I understand (now) that address validation
> during the SMTP conversation is not recursive. Seeing how many of the
> rewrite threads always clearly point out 'do not use wildcards' - and
> I completely understand why - is there a higher level reason as to why
> wildcard matches during address validation don't recursively get
> verified (similiar to sending) - or any rewrite for that matter?
>
> therefore, address gets a rewrote, that then gets validated/rewrote
> again -- granted there are the scenarios of a circular rewrite, but
> that is the case on sending/rewrite as well - and Postfix catches and
> logs those appropriately.
>
> Just a thought - seeing how 'wildcards' are always warned against.
>
> Thanks
>
>
>
> --
> ----------------------------------
> please respond to the list .. if you need to contact me direct
> cgmckeever is the account
> prupref.com is the domain
>
> <A href="http://www.prupref.com">Simply Chicago Real Estate</A>
>
>
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]