Hello
Can I configure Postfix 2.7 to only run check_policy_service for SASL
authenticated emails?
My purpose for doing so is to have a quota policy in place (max amount of email
relayed by unit of time, for each authenticated user) in case one of my users'
accounts get compromised, so that the attacker cannot relay huge amounts of
spam before I have a chance to disable the compromised account.
My recipient restrictions currently are as follows:
smtpd_recipient_restrictions =
reject_non_fqdn_recipient
check_policy_service inet:127.0.0.1:10031
permit_sasl_authenticated
permit_mynetworks
reject_unauth_destination
reject_unlisted_recipient
reject_non_fqdn_sender
permit
This clearly checks all email against the policy server.
Can I have Postfix check SASL authenticated emails only?
Better yet, can I have it only check emails that would be relayed outside the
system by authenticated users? That would be ideal.
-Tobia
