Re: [Exim] SMTP Auth doesn't prevent users from sending as o…

Góra strony
Delete this message
Reply to this message
Autor: Wakko Warner
Data:  
Dla: Philip Hazel
CC: exim-users
Temat: Re: [Exim] SMTP Auth doesn't prevent users from sending as other users
> The name they authenticated with can be saved in $authenticated_id (your
> config seems to do this). So you can check at ACL time:
>
>   deny  message "You must send as the id you authenticate with"
>         authenticated = *
>         condition = ${if eq {$authenticated_id}{$sender_address_local_part}\
>                     {no}{yes}}

>
> This is off the top of my head, and untested.


would this work instead of the condition =   :
    !senders = $authenticated_id@*


I thought there was a sender_local_part condition (just checked, there
isn't. Wishlist =)

The above condition will accept $authenticated_id at any domain. Might want
to check the domain as well.

--
Lab tests show that use of micro$oft causes cancer in lab animals