On 2/11/2011 11:57 AM, Benny Pedersen wrote:
postscreen_access_list = permit_sasl_authenticated, permit_mynetworks, cidr:/etc/postfix/cidr/postscreen_access.cidrwill it work ?
No. Authentication happens in smtpd after postscreen is done.
to avoid sasl users being tested in dnsbl
Best solution is to disable AUTH on port 25 and make submission/587 and optionally smtps/465 available to your users. This also helps users get around port 25 blocks by ISPs and hotspots.
-- Noel Jones
