smtpd_sender_restrictions and reject_sender_login_mismatch

Fri, 14 Mar 2014 08:07:09 -0700 

Hi!

I am having troubles understanding how *reject_sender_login_mismatch* works in 
the context of *smtpd_sender_restrictions*.

1.) Am I right in assuming that *smtpd_sender_restrictions* is a "blacklist" 
meaning that if a sender address isn't matched by any parameter it will be 
permitted implicitly?

2.) The documentaion states: "Reject the request when $smtpd_sender_login_maps 
specifies an owner for the MAIL FROM address...". So the premise for all 
rejections is that an address is listed by smtpd_sender_login_maps.
I tried sending an email from a...@mydomain.de which does not exist but it was 
still rejected. The same for a...@somerandomdomainname.com. Why does this 
happen?

Here are my settings (replaced the actual domain with "mydomain"):
# # postconf -nf
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
append_dot_mydomain = no
biff = no
config_directory = /etc/postfix
dovecot_destination_recipient_limit = 1
inet_interfaces = all
mailbox_size_limit = 0
message_size_limit = 52428800
mydestination = mail.mydomain.de, Debian-70-wheezy-64-minimal,
    localhost.localdomain, localhost
myhostname = mail.mydomain.de
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
myorigin = /etc/mailname
readme_directory = no
recipient_delimiter = +
relayhost =
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated,
    reject_unauth_destination, check_policy_service unix:private/policy-spf
smtpd_sasl_auth_enable = yes
smtpd_sasl_path = private/auth
smtpd_sasl_type = dovecot
smtpd_sender_login_maps = pgsql:/etc/postfix/pgsql-virtual-mailbox-maps.cf,
    pgsql:/etc/postfix/pgsql-virtual-alias-maps.cf
smtpd_sender_restrictions = reject_sender_login_mismatch
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/ssl/certs/mail.mydomain.de.chained.pem
smtpd_tls_key_file = /etc/ssl/private/mydomain.de.pem
smtpd_tls_security_level = may
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
soft_bounce = no
virtual_alias_maps = pgsql:/etc/postfix/pgsql-virtual-alias-maps.cf
virtual_mailbox_domains = pgsql:/etc/postfix/pgsql-virtual-mailbox-domains.cf
virtual_mailbox_maps = pgsql:/etc/postfix/pgsql-virtual-mailbox-maps.cf
virtual_transport = dovecot

Regards Sergei

Reply via email to