On Thu, Apr 07, 2011 at 10:40:28AM -0500, Noel Jones wrote: [...] > Use instead: > smtpd_recipient_restrictions = > permit_sasl_authenticated, > reject > > The overhead is negligible -- just check an internal status flag, > about the same as your fake table lookup -- and may save you from an > embarrassing accident.
Yes, I have the same idea, however I need not only sasl authenticated users to accept but some others too, "authenticated" by their IPs, and it involves ldap, mysql and cidr tables too, since I have different systems (not my choice!) to need to check. If I already check those at sender restricitons, I guess it's safe to say that everything is OK. At the other hand, to be "really safe and not so ugly" I would need to do these again at recipient restrictions, which would need some measurable overhead anyway. Or maybe not, and I am just too nervous about those "overhead" and "resources" :) thanks for you answer, - Gábor
