SPF and DKIM is mail tools to prevent spoofing of non-local domains.
OP was out after tools to prevent local spoofing.
One is for example:
1: reject_sender_login_mismatch
2: Other is a check_sender_access table containing "yourdomain.com:
permit_sasl_authenticated, reject".
3: Another one is reje
The rule is still a good idea to have even if you have a rule to reject a sasl
mismatch, because the suggested rule also rejects mail which have a spoofed
local sender destined for a local mailbox.
Something that none of the standard rules can enforce.
-Ursprungligt meddelande-
Från: own
Create a file containing the following (where yourdomain.com is the domain
your authenticated users send from):
yourdomain.com: permit_sasl_authenticated, reject
postmap the file.
Then use:
smtpd_recipient_restrictions =
...
check_sender_access hash:/path/to/file
...
No
