Ta for that.
On Thu, 2004-07-01 at 15:01, Dennis Davis wrote:
> >Subject: Re: [Exim] SMTP
> >From: Ron McKeating <R.J.Mckeating@???>
> >To: Dennis Davis <D.H.Davis@???>
> >Cc: "Exim-Users (E-mail)" <exim-users@???>
> >Date: Thu, 01 Jul 2004 14:37:09 +0100
> >
> >Thanks for this very useful, may contact you about how you did the
> >different acles for different ports.
>
> Well, as I'm already here...
>
> Use $interface_port in your mail configuration section to
> differentiate between the SMTP and MSA ports. So part of my main
> configuration reads:
>
>
> # This option specify the Access Control List (ACL) that is used
> # for incoming SMTP messages, after the RCPT command. Note we use
> # different ACLs for connections on the smtp and msa ports.
> acl_smtp_rcpt = ${if eq {$interface_port}{SMTP_PORT} \
> {check_recipient_port_smtp}{check_recipient_port_msa}}
>
>
> To enforce encryption, authentication etc check_recipient_port_msa
> starts with:
>
>
> check_recipient_port_msa:
>
> # Connections must use TLS...
> deny message = unencrypted connections are not allowed.
> ! encrypted = *
>
> # ...of the right kind...
> deny message = poor encryption cipher
> ! encrypted = TLS_CIPHERS_TO_USE
>
> # ...and they must be authenticated.
> deny message = unauthenticated connections are not allowed
> ! authenticated = *
--
Ron McKeating
Senior IT Services Specialist
Internet Services and Software Solutions
Loughborough University
01509 222329