Tony Holmes wrote:
I am looking to allow/check policy/reject. This is where I am tripping
up - essentially want the same power as the smtpd restrictions, but for
the command line. Ideally without having to deploy another box :)
configure your wrapper to use smtp to a specific port where you can use
smtpd restrictions. you can use mini_sendmail or other.
That was where I am heading and it doesn't appear to be a major issue
to implement. I can secure php to not be allowed to talk to the box and
thus the perl script will be free to do so (relaxing the firewall).
you don't need to block php if you implement "strict" checks in the
smtpd that gets the connection. avoid reusing the port 25 smtpd. setup a
specific smtpd on a specific port instead. This way, you can play with
whatever rules you need without disturbing other smtp traffic. and you
can stop/start it whenever you want... etc.
