Re: [Exim] Policy controls for local input

Top Page
Delete this message
Reply to this message
Author: Philip Hazel
Date:  
To: Alexander Sabourenkov
CC: exim-users
Subject: Re: [Exim] Policy controls for local input
On Tue, 4 Mar 2003, Alexander Sabourenkov wrote:

> > In summary:
> >
> > 1. The SMTP ACLs are used for -bs and SMTP over TCP/IP.
> > 2. The acl_not_smtp ACL is used for -bS and -bm.
>
> Aha. But are the interactive SMTP ACLs run in case of -bs option?


Yes. That's what I meant in (1) above. The ACLs for MAIL, RCPT, and DATA
are run for every SMTP connection, local or remote. By "SMTP" I mean
interactive SMTP, with command-response handling. I do not include
BSMTP. That isn't SMTP - it is just a convenient use of SMTP syntax to
pass an envelope non-interactively.

> Does 'hosts = :' still evaluate true when STDIN is not an inet socket?


hosts = : matches only when the SMTP input is not a TCP/IP connection,
that is, it matches only when there is no remote IP address.

That isn't strictly true. If you run something like

exim -bs -oMa 1.2.3.4

(as a trusted user), then the the host IP address is set to 1.2.3.4 and
hosts=: won't match. But that is not the usual situation.

--
Philip Hazel            University of Cambridge Computing Service,
ph10@???      Cambridge, England. Phone: +44 1223 334714.