The postconf(5) manage says: 'a result of "OK" is not allowed for safety reasons.' Is there a way to bypass this? I wish to make check_recipient_mx_access into a whitelist instead of a blacklist.
Alternatively is there a way of REJECT-ing all mail that does not match the desired entries (currently set to DUNNO) short of explicitly enumerating all TLD's and appending REJECT to each of them, which is kind of kludgy and would need to be updated if and when new TLD's are added...
