Brian Evans - Postfix List wrote: > Ignacio Garcia wrote: > >> Hi there. >> >> We have a couple of servers handling thousands of messages a day. We >> noticed that some of our users will use their autheticated account to >> send messages from other valid accounts not sitting in our servers. By >> using smtpd_reject_unlisted_sender = yes we solve the problem partially >> by not letting users to use an incorrect local email account to send >> messages. However, is there a way to prevent local authenticated users >> sending email with valid hotmail or gmail accounts through our smtp >> servers? We cannot use reject_authenticated_sender_login_mismatch since >> some of our business customers have their own intranet email servers >> doing smtp authenticated relays. >> >> > > You can separate them by using a check_sender_access. > Expand or modify to fit your needs > > Example using pcre table: > smtpd_sender_restrictions= > ... > check_sender_access pcre:/etc/postfix/auth_senders_check > ... > > /etc/postfix/auth_senders_check: > > /^...@bizcustomer1.example.com$/ DUNNO > /^...@bizcustomer2.example.com$/ DUNNO > /^/ reject_authenticated_sender_login_mismatch > should be:
/^...@bizcustomer1\.example\.com$/ DUNNO /^...@bizcustomer2\.example\.com$/ DUNNO /^/ reject_authenticated_sender_login_mismatch bad escaping.
