Author: Dave C. Date: To: Brian Hein CC: exim-users Subject: Re: [Exim] config exim 4 control relay
On Fri, 7 Jun 2002, Brian Hein wrote:
> This is a multi-part message in MIME format.
> --
> [ Picked text/plain from multipart/alternative ]
> Hi,
>
> asked already 2 days ago - but no one replied -
Perhaps you should offer to pay for consulting.
Perhaps no one knows, or wants to know, how to do what you asked.
Perhaps you could set this up yourself if you took the time to read the
documentation and FAQS.
> could anyone email or post me a sample configuration for exim 4 where
> i can see how to setup exim.conf to do what is shown under exim specs
> -> 37.12 Using ACL to control relay
>
> the facts:
>
> exim should handle email from MUAs outgoing from my network or from sender@??? no matter to whom the mail is adressed
Basing relaying controls on the sender address is a BAD thing. Spammers
CAN, and WILL forge emails at your domain to relay through your server.
Proper relay control should be based on known, numeric IP addresses, or
SMTP AUTH for roaming users.
With the exception of this, the default exim 4 configuration will do
exactly this, as long as you set the local_domains to your own domains,
and put the IP addresses/networks of your hosts in relay_from_hosts.
> exim should handle emails from other MTAs where the reciepient is a valid user
>
> i wasted alot of time 3 to 4 days to find a solution but it was impossible -
Its possible, but since doing so will make you an open relay, you arent
likely to find too many people on this list wanting to help you, since we
have all received far too much spam to knowingly help someone set up a new
one.
> i need help as soon as possible 'cause of customers demand
As I implied above, since you paid nothing for exim, and the members of
this list are all volunteers, they may (or may not) help you in a timely
fashion, or at all. If you have a specific deadline, and paying
customers, then you should consider budgeting some money to pay for
someone to do this consulting work for you. If *you* are the person that
is suppose to be setting this up (eg, if you are being paid as a
sysadmin or a mail expert), then you might want to start reading the
documentation.
The Exim ACL's _are_ documented, and if you take the time, and are of at
least average intelligence, you will find it eventually.
I will tell you the answer to your question *IS* in the documentation. In
fact I know exactly what would accomplish what you want. But I will not
tell you where, mainly becuase I will not help you provide a new server
for spammers to use, and slightly less so becuase you seem to assume you
are somehow entitled to demand that the members of this list do your work
for you.
The proper way to set this up (SMTP AUTH) is also documented. If you ask
for help setting up SMTP AUTH, you might find more people here willing
to help. You could also read over the archives, as you are not the first
to ask. Others have asked for help with SMTP AUTH, and all of the
answers and discussions regarding their questions were posted to the
list.