On Fri, Nov 07, 2008 at 02:22:08PM +0100, Per Jessen wrote: > Matt Kettler wrote: > > > Per Jessen wrote: > >> Occasionally I'd like to do something like this: > >> > >> whitelist_from_rcvd [EMAIL PROTECTED] /^smtp[0-9]+\.orange\.fr$/ > >> > > One problem.. That involves a regex, but whitelist_from is a "regular > > user" config option. > > > > In general, regular expressions are intentionally not used in "regular > > user" options due to the potential for a to possibly exploit the > > system. (this is why user_prefs can't contain rules unless you define > > allow_user_rules). > > > > So, SA actually went out of its way to prevent that from being > > allowed. > > Yes, I saw that in the code - still, having a whitelist_from_rcvdregex > would be very useful, people relay via their providers quite a lot. I > guess I'll have to write something up.
If the originator is static IP, add whole path to trusted_networks and use ALL_TRUSTED. Nothing prevents zombies sending through smarthosts anyway, that's much more secure in the long run. And you should be dropping dialups at MTA anyway.
