On Sat, Jun 30, 2007, Fredrik Staxeng wrote:
> I get the dreaded 'Relaying denied. Proper authentication needed.'
You don't need AUTH, STARTTLS is sufficient. See cf/README:
Relaying
--------
SMTP STARTTLS can allow relaying for remote SMTP clients which have
successfully authenticated themselves. If the verification of the cert
failed (${verify} != OK), relaying is subject to the usual rules.
Otherwise the DN of the issuer is looked up in the access map using the
tag CERTISSUER. If the resulting value is RELAY, relaying is allowed.
If it is SUBJECT, the DN of the cert subject is looked up next in the
access map using the tag CERTSUBJECT. If the value is RELAY, relaying
is allowed.
