On Tue, 16 Sep 2003, Oren Levi wrote:
> The problem with this is that on a shared domain server one could
> authenticate using lets say user@??? and actually pretenting to be a
> sender from domain2.com (which is a local domain as well)
>
> So what i wanted to do is make sure that the authenticated user name will
> match the sender.
Then check it! You can preserve the user name in your authenticator
using server_set_id, and check $authenticated_id using a "condition" in
your ACL.
condition = ${if eq{$authenticated_id}{${local_part:$sender_address}}{yes}{no}}
--
Philip Hazel University of Cambridge Computing Service,
ph10@??? Cambridge, England. Phone: +44 1223 334714.
Get the Exim 4 book: http://www.uit.co.uk/exim-book
