Quoting wie...@porcupine.org (Wietse Venema), Fri, 25 Oct 2013:
Rudy Gevaert:
Hello,
I was wondering if I could add a access map (to deny access in fact) for
specific sasl authenticated users?
Adding check_sasl_sender_access support would not be difficult.
It just hasn't been done yet.
E.g. even if the login succeeds that user can't send email.
You could lock the account so they can't log in.
Otherwise, postfwd and the like could be configured for a rate limit
of zero (can't send mail).
Thanks for confirming it isn't possible from within postfix (e.g.
check_sasl_sender_acces).
Disabling the account is indeed a possibility, which we do now.
However because of the current setup, we can't only disable smtp auth.
Having an extra sender access map would have helped :)
--
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
Rudy Gevaert e-mail: rudy.geva...@ugent.be
Directie ICT, Afdeling Infrastructuur
Groep Systemen tel: +32 9 264 4750
Universiteit Gent fax: +32 9 264 4994
Krijgslaan 281, gebouw S9, 9000 Gent, Belgie www.UGent.be
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
