Marc Haber wrote:
> Hi,
>
> I would like to have some kind of local whitelist to exempt some hosts
> or networks from a dnslist access list. I didn't find an option to do
> so. One possible way would be the condition "condition", but I don't
> see any example. What would the following acl entry do?
>
> deny message = rejected
> condition = ${host not in whitelist}
> dnslists = black.list.example
>
> Would the dnslists condition be evaluated if the host is inside the
> whitelist? Would it be if it where not? Or is it only planned to have
> a single condition per access list entry?
Make it
deny message = rejected
!hosts = your : whitelisted : +hosts
dnslists = black.list.example
Exim uses short-circuit-evaluation on ACLs, so when an entry returns
false, the processing will be stopped and handed to the next statement.
Nico
