Le 3 juil. 2013 à 16:23, Wietse Venema a écrit : > [...] > > If you want immediate verification, use reject_unverified_recipient. > This does a lot of work behind the scenes and then caches the result. > http://www.postfix.org/ADDRESS_VERIFICATION_README.html#recipient > > Having Postfix do full address resolution for every RCPT TO command > would make Postfix more vulnerable to denial-of-service attacks, > because sending RCPT TO is much cheaper than recursively resolving > multiple levels of address rewriting or aliasing that happens in a > bunch of different processes from cleanup(8), trivial-rewrite(8), > to local(8), virtual(8), lmtp(8) and so on.
Hello Wietse, You must have been reading my mind... I was indeed trying (agreed, a bit confusingly) to check whether I could have overlooked some intermediate between the quick smtpd_reject_unlisted_recipient and the heavyweight reject_unverified_recipient. Many thanks for your thorough reply, Axel
