 |
| Prev-20 | Home | Next-20 |
| Prev-20 | Home | Next-20 |
| Prev-Msg | Prev-Thread | Postfix-users | Jul-2007 | Next-Thread | Next-Msg |
| Subject: | Re: stop smtp from anyone unless sasl auth? |
| Group: | Postfix-users |
| From: | Duane Hill |
| Date: | 23 Jul 2007 |
> That would make sense.. for some reason i think ive tried that though and it
> caused problems. I shall try again and see what i come up with.
>
This is what I have in an instance of Postfix running for outbound sending
for our customers:
smtpd_recipient_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject
It works like a charm. If a message is not coming from $mynetworks or an
authenticated client, the message gets rejected.
>
> On Mon, 23 Jul 2007, Justin McAleer wrote:
>
>> Jordan Tardif wrote:
>>> Basicly I want to make it so only sasl auth'd users can send through A
>>> record machines.. As the config is right now non-local ip's can connect to
>>> the machine and send mail to a local domain without having to auth at
>>> all.. I was pretty sure that this stopped that but i guess im wrong..
>>>
>>> smtpd_recipient_restrictions =
>>> reject_unauth_pipelining reject_non_fqdn_sender
>>> reject_non_fqdn_recipient check_policy_service inet:10.3.19.237:10031
>>> permit_sasl_authenticated
>>> reject_unauth_destination
>>> permit
>>>
>>
>> I believe what you want is to simply change that permit to reject.
>>
>>> This is not jut email from $mynetworks but from any ip. Anyone know any
>>> way I can stop mail being sent by anyone that is not sasl authd? Here is
>>> my full config..
>>>
>>>
>>
>>
>
-------
_|_
(_| |
| Prev-Msg | Prev-Thread | Postfix-users | Jul-2007 | Next-Thread | Next-Msg |