Re: safe setup of smtpd_relay_restrictions and smtpd_recipient_restrictions

On 3/19/2013 7:11 PM, Steve Jenkins wrote: > On Tue, Mar 19, 2013 at 4:30 PM, Matthew Hall > wrote: > > It seems like I keep seeing you on every crypto and security list! > Thanks for being there and assisting people so often. > > > Based on the feedback f

Re: safe setup of smtpd_relay_restrictions and smtpd_recipient_restrictions

On Tue, Mar 19, 2013 at 4:30 PM, Matthew Hall wrote: > It seems like I keep seeing you on every crypto and security list! > Thanks for being there and assisting people so often. Based on the feedback from Viktor, I've made some similar changes in my 2.10 config. It's close to Matthew's, but di

Re: safe setup of smtpd_relay_restrictions and smtpd_recipient_restrictions

Hi Viktor, On Tue, Mar 19, 2013 at 3:37 PM, Viktor Dukhovni wrote: > Fine, but you often don't want reject_unknown_recipient_domain in > any restrictions. It is not needed for inbound MX hosts, and > interacts poorly with MUA clients on outbound MSAs. It is only > useful on outbound relays that

Re: safe setup of smtpd_relay_restrictions and smtpd_recipient_restrictions

On Tue, Mar 19, 2013 at 03:25:01PM -0700, Matthew Hall wrote: > smtpd_relay_restrictions = > permit_sasl_authenticated, > permit_mynetworks, > reject_unauth_destination Perfect. > smtpd_recipient_restrictions = >reject_invalid_hostname, >reject_non_fqdn_hostname, >reject_

safe setup of smtpd_relay_restrictions and smtpd_recipient_restrictions

Hello, I am trying to update my configuration in light of the new smtpd_relay_restrictions in Postfix 2.10. I did read some threads and documentation, but I am a bit confused about which reject_* should be in each rulechain. I am hoping someone could quickly check my work, and let me know if I'm