On 1/23/2013 1:19 PM, Tom Tucker wrote: > You mentioned that...."The above disables all your UCE controls." > You say this because of the order of the rules, right?
Your first rule is equivalent to permit_auth_destination. After that, the only mail left is either mail from unauthorized clients that you will reject anyway, or mail from authorized clients that you shouldn't reject. > > I'm still wrapping my head around this, but this config seems to be > working. Again, I welcome any comments you might have. If your postfix host doesn't receive mail from the internet, then UCE controls are irrelevant, and you don't have to worry about spoofed rDNS since all the clients are in mynetworks. So your previous config is acceptable. It's lots harder when we get details one at a time. -- Noel Jones
