Dnia 30.08.2020 o godz. 16:11:32 Viktor Dukhovni pisze: > > There is, for good reason, no relay authorisation based on sender > address, because unlike a source IP address on your network (which is > difficult to forge with TCP) without being on your network, a sender > address is trivially forged by just using it. Sender addresses are > neither secret not difficult to forge. > > Thus permit_mynetworks (and thus mynetworks) is a thing, but there > is no permit_sender_domain (nor thus mydomains).
However if someone wants to take a risk, I guess they can still put in main.cf something like smtpd_relay_restrictions = ..., check_sender_access /etc/postfix/relayuser, ... where /etc/postfix/relayuser contains something like usern...@domain.com PERMIT Wouldn't it work? -- Regards, Jaroslaw Rafa r...@rafa.eu.org -- "In a million years, when kids go to school, they're gonna know: once there was a Hushpuppy, and she lived with her daddy in the Bathtub."
