Hello, looking at postfix logs I found out that with standard restrictions inherited from main.cf at ports 465/587, the client gets error message like:
May 30 12:05:04 mail postfix/submission/smtpd[22649]: NOQUEUE: reject: RCPT from unknown[192.0.2.1]: 504 5.5.2 <redacted>: Helo command rejected: need fully-qualified hostname; from=<x...@example.com> to=<y...@example.com> proto=ESMTP helo=<redacted> while the proper message could be "authentication required". standard master.cf contains proposed overrides for submission/submissions services: # -o smtpd_client_restrictions=$mua_client_restrictions # -o smtpd_helo_restrictions=$mua_helo_restrictions # -o smtpd_sender_restrictions=$mua_sender_restrictions but no proposed values for those. So, I'd go with something like: mua_client_restrictions=permit_sasl_authenticated, reject mua_helo_restrictions=permit_sasl_authenticated, reject ...I would not override smtpd_sender_restrictions because I have list of senders to be disabled globally However, these provide standard reject_code "554" looking at google/hotmail servers they provide error messages: 530-5.7.0 Authentication Required. Learn more at 530 5.7.0 https://support.google.com/mail/?p=WantAuthError z19sm15110351wmk.8 - gsmtp 530 5.7.57 Client not authenticated to send mail. and I think "530 5.7.0 Authentication Required." would be better message on those ports. what's the cleanest way to force this error? -- Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Support bacteria - they're the only culture some people have.
