>
> it will accept if (a) the connection is authenticated AND (b) the sender
> address verifies successfully. A "senders" line adds another AND
> condition, this time checking for specific senders (by an explicit list,
> or lookup, etc.) A "sender_domains" line adds a condition that tests the
> sender address domain, so if you wanted to restrict this to your local
> domain, you should use
>
> accept authenticated = *
> sender_domains = your.local.domain
> verify = sender
>
The problem with this is that on a shared domain server one could
authenticate using lets say user@??? and actually pretenting to be a
sender from domain2.com (which is a local domain as well)
So what i wanted to do is make sure that the authenticated user name will
match the sender.
right now i'm using this as you suggested:
authenticated = *
sender_domains = +local_domains
verify = sender
deny message = bla bla
which is great, but i'm looking for that extra measure.
Thanks a bunch!
Oren.
