On Wed, 2005-07-06 at 10:47 -0400, Mark D. Hansen wrote:
> Is there a way that I can set up the ACL so that relays are allowed if
> and only if the source of the relay request is and IMAP client? I
> want to prohibit spammers from using my exim mail MTA for SMTP relays,
> but I'd like to allow my employees to access and send email via an
> IMAP connection that may come in from any domain.
In theory yes - google for "pop before smtp" or "smtp after pop".
You need a system for recording pop/imap connections against
authentication and ip address, and communicating that to exim somehow as
well as expiring off old data (this bit is a real problem with IMAP
which has long lived connections so that the assumptions are very
different to POP).
However this tends to be a pain to do, and has some shortcomings. Its
frankly much much easier to just use SMTP authentication now that its
effectively universally supported.
As long as your imap/pop server have sane authentication methods you can
use the same authentication database within exim as you do for the
retrieval server.
Nigel.
--
[ Nigel Metheringham Nigel.Metheringham@??? ]
[ - Comments in this message are my own and not ITO opinion/policy - ]
