On 7/14/2011 5:05 PM, Robert Schmid wrote:
> OK, that was unexpected. I clearly don't understand the distinction between
> client, sender and recipient restrictions. Why are they separate?
>
The smtpd_{client, helo, sender, recipient}_restrictions
sections are about *when* the check is performed,
corresponding to the stage of the SMTP transaction. This is
somewhat complicated by smtpd_delay_reject (default yes, don't
change it) which delays everything until the SMTP RCPT command.
Inside those sections you specify check_{client, helo, sender,
recipient}_access to specify *what* to check.
Since we need to whitelist the recipient, it just makes sense
to do all that in smtpd_recipient_restrictions.
It's very common to place all restrictions in
smtpd_recipient_restrictions to make whitelisting easier and
to quickly see the flow of "first match wins".
-- Noel Jones
