Re: Unauthenticated user and domain restriction

[Adam NEVERT]

On 8/5/2012 10:13 PM, Adam NEVERT wrote:
The client would be on my local network only /192.168.0.*/ and for
any email sending I configure postfix so that it tries to use TLS if
the client support it.
So to sum up I want the user /maintenance/ to be able to send any
email only from /192.168.0.*/ and only to my domain /sample.com /(to
avoid spaming if an indelicate user understands this user doesn't
need authenticating).


Thank you for providing a better description of the requirements.
Now a simple solution can be found.


# main.cf
smtpd_sender_restrictions =
   reject_non_fqdn_sender
   check_sender_access hash:/etc/postfix/local_only


# local_only
maintena...@example.com  reject_unauth_destination


Of course, replace example.com above with your local domain name.


If you already have a smtpd_sender_restrictions defined in main.cf,
the example above will need to be inserted before any other
restrictions, ie. before permit_mynetworks.



   -- Noel Jones
Nice, it works now the /maintenance/ user can only send emails to the 
/sample.com/ domain.
Finally I note it is still a too large range of destinations, how to 
restrict the destination to the user /administra...@sample.com/ ?