Re: [exim] IMAP / ACL relay question

Top Page
Delete this message
Reply to this message
Author: Nigel Metheringham
Date:  
To: Mark D. Hansen
CC: Exim-Users \(E-mail\)
Subject: Re: [exim] IMAP / ACL relay question
On Wed, 2005-07-06 at 10:47 -0400, Mark D. Hansen wrote:
> Is there a way that I can set up the ACL so that relays are allowed if
> and only if the source of the relay request is and IMAP client? I
> want to prohibit spammers from using my exim mail MTA for SMTP relays,
> but I'd like to allow my employees to access and send email via an
> IMAP connection that may come in from any domain.


In theory yes - google for "pop before smtp" or "smtp after pop".

You need a system for recording pop/imap connections against
authentication and ip address, and communicating that to exim somehow as
well as expiring off old data (this bit is a real problem with IMAP
which has long lived connections so that the assumptions are very
different to POP).

However this tends to be a pain to do, and has some shortcomings. Its
frankly much much easier to just use SMTP authentication now that its
effectively universally supported.

As long as your imap/pop server have sane authentication methods you can
use the same authentication database within exim as you do for the
retrieval server.

    Nigel.
-- 
[ Nigel Metheringham           Nigel.Metheringham@??? ]
[ - Comments in this message are my own and not ITO opinion/policy - ]