On Wed, 11 May 2005, Raphael Reich wrote:
>
> The users (whitch are all system users having maildirs) authenticate
> themselves via SMPT AUTH. The problem is, that e.g. the user tom
> (tom@???) can use any local part as sender address (e.g.
> anything@???). I want to restrict the users to their own local
> part.
In the RCPT ACL for your message submission service, put the following:
# Do return address verification.
require
verify = sender
# Check that authenticated users aren't pretending to be someone else.
deny
message = Sender address does not match authenticated user
authenticated = *
! condition = ${if and{{ def:sender_address_data } \
{{ eq{$sender_address_data}{$authenticated_id} }} }
In the router that handles email addresses of local users, add
address_data = $local_part
Tony.
--
<fanf@???> <dot@???>
http://dotat.at/ ${sg{\N${sg{\
N\}{([^N]*)(.)(.)(.*)}{\$1\$3\$2\$1\$3\n\$2\$3\$4\$3\n\$3\$2\$4}}\
\N}{([^N]*)(.)(.)(.*)}{\$1\$3\$2\$1\$3\n\$2\$3\$4\$3\n\$3\$2\$4}}
