On Fri, 17 Jan 2014 07:16:36 -0500 (EST) wie...@porcupine.org (Wietse Venema) wrote: > Florian Pritz: > > What do you think about adding a simpler pickup_restrictions option and > > extending the SMTP policy protocol a bit by adding a userid field which > > in case of pickup (I believe only maildrop/sendmail/postdrop go into > > pickup) contains the id of the sending user? > > [...] > > Why don't YOU try it, and then report how well the idea works. I > suggest that you also consider the implications of a malicious > application sending mail with forged sender addresses, and Postfix > then bouncing that mail to innocent people.
That's exactly why I want to put stuff on hold. > But is seems to be that the problem is better solved at the source: > fix those damned broken web applications. The main use case here is limiting the damage a hacked application can do. Given there tend to be rather many applications installed at once in a shared webhosting environment the attack surface is rather large. I'm not sure why you are reacting this aggressively. I couldn't find any prior discussion about a feature like this so I figured I'd ask. Sorry if that seems inappropriate to you. If you don't like the idea, please feel free not to reply to this thread. I understand silence. Anyway, thanks for the reply.
signature.asc
Description: PGP signature
