I've set up our mail server (with some help from this list, for which much thanks) to scan sasl-auth senders for spam and viruses with Amavis.
I'd now like to make sure that rogue processes can't bypass those checks, particularly web servers (I already have PHP using msmtp to enforce well-behaved scripts to do that at least). My first thought was to start by firewalling off mail ports on the local machine to only allow processes owned by root or postfix. Then make any non-root sending processes use smtp-auth to send out. But is there a better way? Jonathan
_______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
