Jaroslaw Grzabel wrote, at 06/19/2009 10:44 AM: > Not in the times when IPS's are obligated to run smart hosts for their > customers and relay mails also for all hosting customers in the times > when mobile operators gives you a possibility to connect from any place > on the world using each time when you're connected different IP address.
For relaying, SMTP AUTH on port 587 solves this problem entirely. > How do you imagine to create 45k users with 10-15k domains ? It's faster > to create access lists/maps and filter everything. Creating something > like openrelay server but with stricts ACL. If your server is an MX for a domain, it MUST NOT accept mail for invalid recipients. Doing so creates backscatter and potentially creates problems for all other domains on the Internet. > To defend I'm asking simply > just only for a one rule which will exclude pipe from the address. To be fair, your original question reveals that you are somewhat unfamiliar with basic concepts of email administration, and that is why noone is eager to help you shoot yourself in the foot, especially if it means the bullet may ricochet off the floor and hit us. That said, you must escape the pipe: /^\|/ REJECT And you must also apply this rule to the envelope sender, not the From: header. See the Postfix docs for more information. But it's a moot point. You are fixing the wrong problem. > Anyway you have no other choice in such a solution as smart host is. You are mistaken. Please do more research and fix your configuration according to best practices.
