Author: Peter Bowyer Date: To: Exim Users Subject: Re: [exim] SMTP-Auth,
specific users addicted to specific email adresses
On Thu, 4 Nov 2004 16:48:16 +0100, Giuliano Gavazzi <eximlists@???> wrote: > At 3:34 pm +0000 2004/11/04, Peter Bowyer wrote:
>
>
> >Mirko Grÿffffe4fen wrote:
> >> hi all,
> >>
> >> this whole authentication stuff is running well on my
> >> system (cram_md5).
> >> because i´m hosting some domains for different people,
> >> i need to know how a user can authenticate at exim and
> >> send mails only by his real email adress.
> >> so, that also autherized senders can´t fake their
> >> adresses.
> >>
> >> system running is a debian sarge with exim 4.34
> >> thanks!
> >
> >You can probably use $authenticated_sender in an ACL at MAIL or RCPT time.
> >
> >eg
> >
> >deny message = Don't forge your From address
> > !senders = $authenticated_sender
> > authenticated = *
> >
> >Or something. Treat the above as something to get you thinking along
> >the right lines, not as something to copy/paste.
> >
>
> I was thinking something along these lines, but I
> would add a lookup of the alias file, to check if
> the sender maps to the authenticated sender and
> accept also in this case.
Depending how the OP's logins and email addresses are structured, I
guess. In my case the above would work unaltered because the AUTH
login is the full email address.