On Fri, Aug 12, 2022 at 04:53:45PM +0200, Jaroslaw Rafa wrote:
> Dnia 12.08.2022 o godz. 16:31:04 Jaroslaw Rafa pisze:
> > Dnia 12.08.2022 o godz. 10:27:47 Viktor Dukhovni pisze:
> > > You neglected to add:
> > >
> > > -o smtpd_delay_reject=no
> >
> > Thank you for your answer. Just a few minutes ago found that out myself and
> > added this parameter to master.cf! :)
>
> But now it rejects everything... even connections from hosts that are in my
> "allowed" list... I have to investigate this again... :(
Well, the client couldn't possibly be authenticated at connect time,
you need:
-o smtpd_client_restrictions=$temp_client_block
-o smtpd_relay_restrictions=permit_sasl_authenticated,reject
-o smtpd_helo_restrictions=
-o smtpd_sender_restrictions=reject_plaintext_session
-o smtpd_recipient_restrictions=
-o smtpd_data_restrictions=
-o smtpd_end_of_data_restrictions=
-o smtpd_tls_security_level=encrypt
--
Viktor.
