Re: [Exim] ACL troubles with exim-4.10

Top Pagina
Delete this message
Reply to this message
Auteur: Ben Lutgens
Datum:  
Aan: exim-users
Onderwerp: Re: [Exim] ACL troubles with exim-4.10
--
On Sun, Aug 25, 2002 at 07:45:14AM +0200, Nico Erfurth wrote:
>> hostlist relay_from_hosts = 127.0.0.1 : 192.168.1.0/8
>isn't /8 a little bit to big? this would be 192.*.*.* and in this space
>are public addresses too.


well yes, but this box is still inside a firewall and still being tested.
But you make a valid point.

>You must be careful, the ACLs are run from top to bottom, so if another
>rule denies you, your one will never be used, try exim -d -bh IP


It appears the right rule is denying me. What I don't understand is why it
can't seem to find the ip in the list.

so I added my workstation IP to the list like so.

hostlist relay_from_hosts = 127.0.0.1 : 192.168.1.2

Then ran a test session as you suggested as such:
exim -d -bh 192.168.1.2

The interesting bits are

check hosts = +relay_from_hosts
host in "127.0.0.1 : 192.168.1.2"? no (end of list)
host in "+relay_from_hosts"? no (end of list)
accept: condition test failed
processing "accept"
check authenticated = *
accept: condition test failed
processing "deny"
deny: condition test succeeded
SMTP>> 550 relay not permitted

550 relay not permitted


Does something here not seem right?

--
Ben Lutgens                 | http://people.sistina.com/~blutgens/
System Administrator     | http://www.sistina.com/
Sistina Software Inc. |


"If you love something set it free, if it doesn't come back to you
hunt it down and set it on fire" -- George Carlin
--
[ Content of type application/pgp-signature deleted ]
--