Selected `RCPT TO:' addresses allowed only from SASL authenticated?
:-) I wonder if it is possible. If so - thanks for any tips. I'd like some `RCPT TO:' addresses accepted if and only if those mails are send by local users - that is those authenticated via SASL. That is for some selected `RCPT TO:'s : permit_sasl_authenticated, reject Best regards, Marek
Re: Selected `RCPT TO:' addresses allowed only from SASL authenticated?
On 2014-08-23 Marek Kozlowski wrote: > I'd like some `RCPT TO:' addresses accepted if and only if those mails > are send by local users - that is those authenticated via SASL. That is > for some selected `RCPT TO:'s : > > permit_sasl_authenticated, reject I think you're looking for the "reject_sender_login_mismatch" restriction[1]. See section "Envelope sender address authorization" in the SASL README[2] for details. [1] http://www.postfix.org/postconf.5.html#reject_sender_login_mismatch [2] http://www.postfix.org/SASL_README.html Regards Ansgar Wiechers -- "Abstractions save us time working, but they don't save us time learning." --Joel Spolsky
Re: Selected `RCPT TO:' addresses allowed only from SASL authenticated?
On Sat, Aug 23, 2014 at 10:54:55AM +0200, Marek Kozlowski wrote:
> I'd like some `RCPT TO:' addresses accepted if and only if those mails
> are send by local users - that is those authenticated via SASL. That is
> for some selected `RCPT TO:'s :
>
> permit_sasl_authenticated, reject
main.cf:
indexed = ${default_database_type}:${config_directory}/
smtpd_recipient_restrictions =
check_recipient_access ${indexed}rcpt-to,
permit_sasl_authenticated,
permit_mynetworks,
reject_unauth_destination,
... UBE checks ...
rcpt-to:
j...@example.edupermit_sasl_authenticated, reject
--
Viktor.
