On Tue, 18 Jun 2024 at 08:31, Jeff Peng via Postfix-users < postfix-users@postfix.org> wrote:
> Hello, > > I have this section in master.cf: > > smtps inet n - y - - smtpd > -o syslog_name=postfix/smtps > -o smtpd_tls_wrappermode=yes > -o smtpd_sasl_auth_enable=yes > -o > > smtpd_sender_restrictions=permit_sasl_authenticated,reject_sender_login_mismatch,reject > -o smtpd_relay_restrictions=permit_sasl_authenticated,reject I think all you need is: -o smtpd_sender_restrictions=reject_sender_login_mismatch Right now you're letting sasl-auth clients in without that check since postfix evaluates left to right. (By chance I was just looking at this when I saw your mail: https://doc.dovecot.org/configuration_manual/howto/postfix_and_dovecot_sasl/ )
_______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
