|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: mouss (mlist.only
free.fr)
Date: Mon Oct 01 2007 - 06:56:53 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
James Wilson wrote:
> On 1 Oct 2007, at 05:51, mouss wrote:
>
>> use 2 maps. nothing requires that you check senders and recipients using
>> a single map.
>
> Hi Mouss,
>
> Could you please elaborate? Even with multiple maps, won't all internal
> domains be trusted?
>
you need is not completely specified (I don't know who can do what
exactly), but hee is the idea.
smtpd_restriction_classes =
...
only_domain2_senders
smtpd_recipient_restrictions =
...
check_recipient hash:/path/recipient_access
only_domain2_senders =
check_sender_access hash:/etc/path/domain2_allowed_senders
reject
== recipient_access:
domain2.example only_domain2_senders
== domain2_allowed_senders:
domain2.example OK
With this, only senders in domain2.example can send to addresses in
domain2.example.
of course, users can forge their sender address to get around this. if
this is a concern, you'll need authentication and
reject_sender_login_mismatch.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]