[Exim] Making sure authenticated SMTP always bypasses acl?

Pàgina inicial
Delete this message
Reply to this message
Autor: Jan Johansson
Data:  
A: exim-users
Assumpte: [Exim] Making sure authenticated SMTP always bypasses acl?
How can I make sure that if a user is using authenticated SMTP, acl's
are always bypassed and mail is accepted deleivered? (exim 4.2x) Needi
simply move the "accept authenticated" up in my ACL's, or need I do
something else?

scooter:~# cat /etc/exim/exim.conf | grep -v ^#
trusted_users = root : xams : sympa : www-data
domainlist local_domains = @:cdb;/etc/xams/localdomains.cdb
domainlist xams_domains = cdb;/etc/xams/localdomains.cdb
domainlist relay_to_domains =
hostlist   relay_from_hosts = 127.0.0.1:82.182.108.36
acl_smtp_rcpt = acl_check_rcpt
never_users = root
host_lookup = *
rfc1413_hosts = !194.236.142.201:*
rfc1413_query_timeout = 30s
ignore_bounce_errors_after = 2d
timeout_frozen_after = 7d
message_size_limit = 20M
.include /etc/xams/exim-global.conf
.include /etc/xams/exim-mysql.conf
begin acl
acl_check_rcpt:
  accept  hosts = :
  deny    local_parts   = ^.*[@%!/|]
  accept  local_parts   = postmaster
          domains       = +local_domains


deny    message         = rejected because $sender_host_address is in a
black list at $dnslist_domain\n$dnslist_text
        dnslists        = blackholes.mail-abuse.org:
dialups.mail-abuse.org : relays.ordb.org : relays.mail-abuse.org :
hil.habeas.com : dnsbl.sorbs.net : bl.spamcop.net
  accept  domains       = +local_domains
          endpass
          message       = unknown user
  accept  domains       = +relay_to_domains
          endpass
          message       = unrouteable address
          verify        = recipient


  accept  hosts         = +relay_from_hosts


  accept  authenticated = *
  # Reaching the end of the ACL causes a "deny", but we might as well
give
  # an explicit message.
  deny    message       = relay not permitted


###########################################
This message has been scanned by F-Secure Anti-Virus for Microsoft
Exchange.