Re: [Exim] Forcing authenticated connections over TLS

Top Page
Delete this message
Reply to this message
Author: Philip Hazel
Date:  
To: Clive McDowell
CC: exim-users
Subject: Re: [Exim] Forcing authenticated connections over TLS
On Fri, 11 Oct 2002, Clive McDowell wrote:

> I'm trying to set up an ACL which does this for all authenticated
> connections. I've set up an acl_smtp_auth procedure as in the manual
> i.e.
>
> acl_check_auth:
>
> accept encrypted = *
> deny message = TLS encryption required
>
> This works in that the error message appears in the main log but the
> following acl_check_rcpt ACL allows the connection anyway. How do I
> prevent the acl_check_rcpt from being run if acl_check_auth has
> rejected the connection? Sorry if I'm missing something obvious here.


That ACL just controls the AUTH command.

If you want to reject messages from unauthenticated connections, you
need an ACL that runs at RCPT time which tests the "authenticated"
condition.

--
Philip Hazel            University of Cambridge Computing Service,
ph10@???      Cambridge, England. Phone: +44 1223 334714.