From: Andy B. (globihot.lu)
Date: Wed Jan 03 2007 - 05:13:42 CST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

I have a group of lawyers who want to validate every outgoing mail by some
kind of web interface. Needless to say that I have some concerns about data
security - they are the lawyers and they should know what they are doing.

Here is the postfix situation as it is now:

- I have one domain only: foobar.com

- the domain name is virtual

- all users of that domain can only send mail via SMTP-Auth (SASL)

What I need:

user1foobar.com is not allowed to send Emails without validation of an
admin.

User1 sends an email with confidential information to
presidentwhitehouse.gov, and this email will not go directly to its
destination but will wait in some sort of pending queue for validation of an
admin.

The admin sees the mail in a web interface and notices that this information
should never leave the office and clicks "DENY" and enters a reason for
denial. If the mail is legitimate, then the admin clicks "APPROVE" and the
mail arrives at its final destination.

Best would be to make a list of SMTP-Auth users who can mail directly and a
list of users who must ask for approval, like:

/etc/postfix/approval.db containing: user1,user2,user4,user5,user7

/etc/postfix/admin.db containing: user3,user6

I would be thankful for some suggestions on what needs to be done on postfix
level.

Thank you.

Andy

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]