I'm trying to avoid that somebody can connect to the email server and then send any email to my users without having to authenticate first.
Right now, when i connect to it and try to send an email to the outside it ask me for password (which is fine), but if i try to send an email to anybody inside the domain (e.g: f...@mydomain.com) it send the email without any kind of authentication, so anybody could send fake emails and/or spam... I've read that maybe with this configuration i could achieve this: mynetworks 127.0.0.1/8 smtpd_recipient_restrictions = permit_sasl_authenticated, reject_unauth_destination So, everytime that somebody wants to send an email no matter what the destination domain is, he/she will have to authenticate otherwise the email will be rejected. But i also heard from somebody that none MTA can distinguish if it's a client that is connecting using his MUA to send an email or it's a server trying to deliver an email to port 25. So i'm a little confused here. El mar, 16-02-2010 a las 09:00 -0500, Brian Evans - Postfix List escribió: > > This is called submission and should only be enforced on a dedicated > machine or port that the internet, as a whole, will not use. E.g. Port > 587 > If you enforce this globally, then
signature.asc
Description: Esta parte del mensaje está firmada digitalmente
