|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: AlxFrag (alxfrag
gmail.com)
Date: Fri Feb 08 2008 - 05:39:53 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi,
i have a couple of questions regarding sasl.
In main.cf i have:
--------------------------------------------------------------------------------------------------
smtpd_sasl_local_domain=
smtpd_sasl_path=smtpd
broken_sasl_auth_clients=yes
smtpd_recipient_restrictions=permit_mynetworks,permit_sasl_authenticated,reject_unauth_destination
smtpd_sender_restrictions=check_sender_access
hash:/etc/postfix/block_senders,hash:/etc/postfix/my_domains
smtpd_sender_login_maps=ldap:/etc/postfix/local_recipients.cf
smtpd_sender_restrictions=reject_authenticated_sender_login_mismatch
smtpd_restriction_classes=verify_login
verify_login=reject_sender_login_mismatch
-----------------------------------------------------------------------------------------------
in my_domains:
mydomain1 verify_login
mydomain2 verify_login
---------------------------------------------------------------------------------------------------
Using this configuration user1mydomain1 cannot pretend he is a
different user. For example, he cannot send an email saying he is
user2mydomain2.
Question1: How can i exclude a user from this rule based on his IP? in
main.cf i've added: mynetworks=127.0.0.1, his_ip_address but it does not
work.
Question2: The rule above works fine for all users when they use a
webmail client or any other client. The only problem is with users who
use squirrelmail. They still can send emails with a fake "from address"!
Postfix cannot stop them.
Any ideas?
Thanks in advance,
Alex
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]