Steve Brown wrote:
[...]
> I've got a user that cannot send mail from home. They are on a DSL
> line that has been listed in Spamhaus Policy Black List, probably
> because its in a dynamic IP block. zen.spamhaus.org consults this
> list, so when the user tries to connect, there are logs returning a
> 451 when querying the Spamhaus.
>
> All this is well and good, but my question is, shouldn't the user be
> allowed to relay based on the fact that he has an authenticated SMTP
> session? I thought that once the user is authenticated by vchkpw, the
> appropriate env vars are set so that relaying wouldn't be an issue?
> Obviously this is not the case, so is there a more appropriate way to
> handle this scenario than what I am currently doing?
>
I'm using qmail-spp solution http://qmail-spp.sourceforge.net/. You can use
ifauthskip plugin to skip subsequent plugins (like rblspp) if user has
authenticated. It also lets you to add more features to qmail-smtpd without
patching it (beside the qmail-spp patch).
> I realize that I could resolve this issue by choosing a different RBL,
> but I view that as a workaround, not a solution.
>
> Thanks,
> Steve
Greets,
Pawel
|