On 1/22/2011 9:45 PM, IT geek 31 wrote:
smtpd_recipient_restrictions =
permit_sasl_authenticated,
permit_mynetworks,
reject_unauth_destination,
check_sender_access hash:/usr/pkg/etc/postfix/sender_access,
reject_unauth_pipelining,
... (more)
The main thing is that reject_unauth destination is immediately after
your relay exceptions (permit_mynetworks and such) and before
sender_access, assuming sender_access is a list of sites to ONLY
override the filters imposed beyond it. The reject_unauth_pipelining is
ok, but this can be more securely implemented by appending it in
smtpd_data_restrictions:
smtpd_data_restrictions = reject_multi_recipient_bounce,
reject_unauth_pipelining,
permit_auth_destination
... (more)
Jerrale G.
SC Senior Admin
