John Thomas wrote:
mouss said the following on 08/01/2007 01:58 PM:
John Thomas wrote:
I am hosting mail for friends and family on Postfix 2.3.3. I would
like to turn on reject_sender_login_mismatch, but only for certain
domains. Could I trouble you for a short howto?
smtpd_restriction_classes = verify_login
smtpd_sender_restrictions =
check_recipient_access hash:/etc/postfix/special_domains
This seems counterintuitive. Shouldn't it be check_sender_access,
instead of check_recipient_access?
I thought you wanted to do the check if the recipient domain is in some
list.
If you want per sender check, then there is no need for a restriction
class. just use smtpd_sender_login_maps.
<snip>
== special_domains
domain1.example verify_login
domain2.example dunno
Does dunno mean, basically, "no need to bother with this check, but keep
checking."
it means, this lookup has matched, so don't continue comparing with
other entries in _this_ map.
Wouldn't that be the same result of leaving it off the list?
In this example, yes. but sometimes, it helps setting an exception.
consider this:
foo.example.com dunno
.example.com reject
this will reject any *.example.com (again, this depends on
parent_domain_matches_subdomains) except foo.example.com.
Thank you much for your time and help.
|
