[Pkg-exim4-users] Force encryption and auth?
Eduardo M KALINOWSKI
eduardo at kalinowski.com.br
Thu Sep 18 20:16:35 UTC 2008
Eliteforce escreveu:
> On Thu, 18 Sep 2008 16:31:18 -0300, "Eduardo M KALINOWSKI"
> <eduardo at kalinowski.com.br> said:
>
>> Don't, this is a list of domains for which you will relay mail always,
>> regardless of authentication.
>>
>
> so where do I set up the list of domains mails will be relayed for
> *after* the client authenticated?
>
You would need to configure that in the ACL that allows authenticated
users to relay mail. By default, it allows relaying all mail from
authenticated users.
> I don't think this works out of the box, because of this:
> # Insist that any other recipient address that we accept is either in
> one of
> # our local domains, or is in a domain for which we explicitly allow
> # relaying. Any other domain is rejected as being unacceptable for
> relaying.
> require
> message = relay not permitted
> domains = +local_domains : +relay_to_domain
Just before that ACL, there is another:
# Accept if the message arrived over an authenticated connection, from
# any host. Again, these messages are usually from MUAs, so recipient
# verification is omitted, and submission mode is set. And again, we
do this
# check before any black list tests.
accept
authenticated = *
control = submission/sender_retain
You should take a look at README.Debian in your exim package (also
available online at http://pkg-exim4.alioth.debian.org/ ), and the exim
documentation (http://www.exim.org/exim-html-current/doc/html/spec_html/
). Chapter 7 deals with the default configuration file. While the Debian
configuration is somewhat different in form, the differences in content
are not that big. You'll probably want to take a look at the chapters
about authentication, TLS/SSL and ACLs, at the mininum.
--
Eduardo M Kalinowski
eduardo at kalinowski.com.br
More information about the Pkg-exim4-users
mailing list