On Wed, Nov 12, 2008 at 05:03:55PM +0100, Stefan Palme wrote:
> Wietse: the main point is, that I don't want a certain CLIENT (=IP
> address) to be allowed to send to invalid domains, but a certain USER
> (identified by SASL-auth).
> For all "normal" users the domain check should be enabled, only one
> special user will be allowed to try to send to "invalid domains"...
Postfix has no access tables for SASL users (but policy services can be
used for this if necessary). If the SASL user in question has a fixed
sender address, you can use reject_sender_login_mismatch to prevent
forgery of that address, and then you can use the sender address with
sender restrictions.
Otherwise you need a policy service.
--
Viktor.
Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.
To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:
<mailto:[EMAIL PROTECTED]>
If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.
