Hi There,
First post to postfix mailing list, be nice... ;)
Postfix 2.6.6.2z
We have a hosted mail platform with 100's of companies, some companies require our MTA to talk to a smarthost for their domain with authentication.
As per SASL_README
The above can be achieved with something like this :
The above method doesn't help us as we can't have anyone who mails mail.isp.example to use that clients auth details.
As per http://www.postfix.org/SASL_README.html#client_sasl_sender
We can do what we want to achieve on a per sender basis which would give the desired results we are looking for, however this becomes a problem for us in terms of managing users in this file when new users are created/removed etc - we would prefer not to write scripts to try and manage this, it will get messy.
So, my question is with SASL Authentication, can we do SMTP AUTH on a per sender domain basis and not on a per destination host basis nor a per user basis.
I'm not quite sure why we can't do something simple like @domain.com or *...@domain.com if per sender works fine.
I do understand that this is not Postfix specific as it's based on how Cyrus SASL works, but find it crazy that an option like this is not possible.
Any assistance in this regard would be highly appreciated.
First post to postfix mailing list, be nice... ;)
Postfix 2.6.6.2z
We have a hosted mail platform with 100's of companies, some companies require our MTA to talk to a smarthost for their domain with authentication.
As per SASL_README
The above can be achieved with something like this :
/etc/postfix/sasl_passwd:
# destination credentials
[mail.isp.example] username:password
# Alternative form:
# [mail.isp.example]:submission username:passwordThe
problem with the above is it will use the auth details when talking to
mail.isp.example for ALL companies which is not what we want, we want to
simply state that the recipient domain x.com uses auth and no one
else.The above method doesn't help us as we can't have anyone who mails mail.isp.example to use that clients auth details.
As per http://www.postfix.org/SASL_README.html#client_sasl_sender
We can do what we want to achieve on a per sender basis which would give the desired results we are looking for, however this becomes a problem for us in terms of managing users in this file when new users are created/removed etc - we would prefer not to write scripts to try and manage this, it will get messy.
So, my question is with SASL Authentication, can we do SMTP AUTH on a per sender domain basis and not on a per destination host basis nor a per user basis.
I'm not quite sure why we can't do something simple like @domain.com or *...@domain.com if per sender works fine.
I do understand that this is not Postfix specific as it's based on how Cyrus SASL works, but find it crazy that an option like this is not possible.
Any assistance in this regard would be highly appreciated.
| David Jacobson | |||
| Technical Director | |||
| Tel: | 011 262 3632 | ||
| Fax: | 086 637 8868 | ||
| Cell: | 083 235 0760 | ||
| Email: | dav...@synaq.com | ||
| Web: | www.synaq.com | ||
Sandhaven Office Park, Pongola Crescent Eastgate Ext 17 Sandton |
|||
