Ok, I tried changing the settings. I changed:
relay_to_domains =
acl_whitelist_local_deny:
accept hosts = ${if exists{CONFDIR/local_host_whitelist}\
{CONFDIR/local_host_whitelist}\
{}}
accept senders = ${if exists{CONFDIR/local_sender_whitelist}\
{CONFDIR/local_sender_whitelist}\
{}}
acl_check_rcpt:
accept hosts = :
deny domains = +local_domains
local_parts = ^[.] : ^.*[@%!/|]
message = restricted characters in address
deny domains = !+local_domains
local_parts = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
message = restricted characters in address
accept local_parts = postmaster
domains = +local_domains
deny message = sender envelope address $sender_address is locally
blacklisted here. If you think this is wrong, get in touch with postmaster
!acl = acl_whitelist_local_deny
senders = ${if exists{CONFDIR/local_sender_blacklist}\
{CONFDIR/local_sender_blacklist}\
{}}
deny message = sender IP address $sender_host_address is locally
blacklisted here. If you think this is wrong, get in touch with postmaster
!acl = acl_whitelist_local_deny
hosts = ${if exists{CONFDIR/local_host_blacklist}\
{CONFDIR/local_host_blacklist}\
{}}
accept domains = +local_domains
endpass
message = unknown user
verify = recipient
accept domains = +relay_to_domains
endpass
message = unrouteable address
verify = recipient
accept hosts = +relay_from_hosts
accept authenticated = *
deny message = relay not permitted
acl_check_data:
warn condition = ${if !def:h_Message-ID: {1}}
hosts = +relay_from_hosts
message = Message-ID: <E$message_id@$primary_hostname>
accept
login:
driver = plaintext
public_name = PLAIN
server_prompts = Username:: : Password::
server_condition = ${if and {{eq{$2}{user}}{eq{$3}{pass}}}{yes}{no}}
server_set_id = $2
For some reason with these settings, I cannot authenticate. Apparently I was
wrong when I said authentication was working because when I tried it, it
just kept prompting me over and over. So, I changed authenticators to this,
which in theory should allow a connection with login of user, and password
of pass. Pretty simple, but, it does the same thing. Any ideas?
----- Original Message -----
From: "Tony Finch" <dot@???>
To: "Joe Csernik" <joe@???>
Cc: <exim-users@???>
Sent: Sunday, February 06, 2005 1:54 PM
Subject: Re: [exim] SMTP AUTH help
> On Sat, 5 Feb 2005, Joe Csernik wrote:
>
> > I REALLY need to deny access to SMTP from users that are not
authenticated.
>
> Your relay_from_hosts list only contains localhost, so your ACL below
> says that your users must be authenticated if they want to send email to
> non-local domains, but don't have to be if they send to local domains.
> Unless you separate your MX from your outgoing relay (which is a very good
> idea, because it makes life harder for spammers) this is the best you can
> do.
>
> > accept domains = +local_domains
> > endpass
> > message = unknown user
> > verify = recipient
> >
> > accept domains = +relay_to_domains
> > endpass
> > message = unrouteable address
> > verify = recipient
> >
> > accept hosts = +relay_from_hosts
> >
> > accept authenticated = *
>
> Tony.
> --
> <fanf@???> <dot@???> http://dotat.at/ ${sg{\N${sg{\
> N\}{([^N]*)(.)(.)(.*)}{\$1\$3\$2\$1\$3\n\$2\$3\$4\$3\n\$3\$2\$4}}\
> \N}{([^N]*)(.)(.)(.*)}{\$1\$3\$2\$1\$3\n\$2\$3\$4\$3\n\$3\$2\$4}}
>
> --
> ## List details at http://www.exim.org/mailman/listinfo/exim-users Exim
details at
http://www.exim.org/ ##
>
