martin f krafft:
> also sprach Sahil Tandon <sa...@tandon.net> [2009.05.23.0037 +0200]:
> > > Why are *_checks and *_milters not end-of-data restrictions, or
> > > better yet, policy services?
> >
> > One example: 1.2.3.4 is rejected in an access(5) table referenced
> > in smtpd_client_restrictions. Why wait for END-OF-DATA when you
> > know, in advance, that you will not accept mail from 1.2.3.4?
>
> I don't see the relation. If milters and content checks were
> end-of-data restrictions of policy services, there is nothing
> stopping postfix from rejecting a mail at RCPT-time if an earlier
> restriction class return failure.
Before making architectural recommendations, it would help to step
back into the reality of how policy servers and milters work. For
one thing, policy servers don't handle message content, and for
another, Milters must be able to see every SMTP protocol step.
Wietse
