Am 09.02.2014 12:32, schrieb Pol Hallen: > External sasl authentication works, I need force users to authentication > from localhost (i.e. CMS joomla and wordpress). > > inside main.cf: > > before: > > mynetworks = 127.0.0.0/8, 192.168.1.0/24 > > after > > #mynetworks = 127.0.0.0/8, 192.168.1.0/24
re-read the manual: mynetworks (default: see "postconf -d" output) removing the line means fall back to defaults postconf -d | grep mynetworks mynetworks = 127.0.0.0/8 62.178.103.0/24 192.168.2.0/24 192.168.10.0/24 192.168.196.0/24 10.0.0.0/24 however, configure your applications to use port 587 and close 25 on 127.0.0.1 may be the easier way to achieve the goal which is no problem with iptables ___________________________________________ if you need more help provide the logs of a relevant message until now there is no evidence that whatever message was even sent with SMTP and not pickup (sendmail-command) where smtp-restrictions are completly irrelevant if it is pickup than disable "mail" and a lot of other dangerous PHP functions they will always make it possible to bypass *any* restrictions - below a sane PHP configuration from a production server disable_functions = "apache_child_terminate, chown, dl, exec, fileinode, get_current_user, getmypid, getmyuid, getrusage, highlight_file, link, mail, openlog, passthru, pclose, pcntl_alarm, pcntl_errno, pcntl_exec, pcntl_fork, pcntl_get_last_error, pcntl_getpriority, pcntl_setpriority, pcntl_signal_dispatch, pcntl_signal, pcntl_sigprocmask, pcntl_sigtimedwait, pcntl_sigwaitinfo, pcntl_strerror, pcntl_wait, pcntl_waitpid, pcntl_wexitstatus, pcntl_wifexited, pcntl_wifsignaled, pcntl_wifstopped, pcntl_wstopsig, pcntl_wtermsig, pfsockopen, popen, posix_kill, posix_mkfifo, posix_setpgid, posix_setsid, posix_setuid, proc_close, proc_get_status, proc_nice, proc_open, proc_terminate, shell_exec, show_source, socket_accept, socket_bind, symlink, syslog, system"
