[Pkg-exim4-users] authenticated ACL
Tony Finch
dot at dotat.at
Mon Oct 31 11:43:56 UTC 2005
Marc Haber <mh+pkg-exim4-users at zugschlus.de> wrote:
>
>Tony's configuration from cambridge does sender verification after
>accepting authenticated senders, so that authenticators senders
>receive a bounce to their inbox instead of having the message rejected
>(and the SMTP error message probably hidden from them by their
>"user-friendly" MUA). I am not sure whether we should go with Tony's
>idea which surely is appropriate for the University.
Er, that's a rather mangled description.
When acting as an outgoing relay, my servers do sender verification but
not recipient verification, which has the effect you describe. (They have
to do sender verification so they have somewhere to send the bounce!)
The default Exim configuration now does something like the following,
which is about right for a server which can act both as an MX and as an
outgoing relay.
accept local_parts = postmaster
domains = +local_domains
require verify = sender
accept hosts = +relay_from_hosts
accept authenticated = *
# anti-spam checks
require verify = recipient
accept domains = +local_domains
accept domains = +relay_to_domains
deny message = relay not permitted
Tony.
--
f.a.n.finch <dot at dotat.at> http://dotat.at/
ARDNAMURCHAN POINT TO CAPE WRATH INCLUDING THE OUTER HEBRIDES: SOUTH OR
SOUTHWEST 6 TO GALE 8. RAIN OR SQUALLY SHOWERS. MODERATE OR GOOD. ROUGH OR
VERY ROUGH, PERHAPS HIGH AT FIRST WEST OF THE OUTER HEBRIDES.
More information about the Pkg-exim4-users
mailing list