[exim] Authentication and Relaying

Páxina inicial
Borrar esta mensaxe
Responder a esta mensaxe
Autor: Christopher Molnar
Data:  
Para: exim-users
Asunto: [exim] Authentication and Relaying
I have tried to read the docs and find a good example, however I am
at a loss. I have tried to set up the ability for authorized users to
relay through our smtp server. Anytime a user tries to connect and
login and send messages thorugh to a "non-local hosted domain" we get
a 501 - Relay Denied. I would appreciate any help someone can give.
From my config:


acl_check_rcpt:
   accept
     hosts = :
     accept authenticated = *




   accept
     hosts = +relay_from_hosts
         accept  authenticated = *


   accept
     authenticated = *





begin authenticators

plain_saslauthd_server:
    driver = plaintext
    public_name = PLAIN
    server_condition = ${if saslauthd{{$2}{$3}}{1}{0}}
    server_set_id = $2
    server_prompts = :
    server_advertise_condition = yes
login_saslauthd_server:
    driver = plaintext
    public_name = LOGIN
    server_prompts = "Username:: : Password::"
    server_condition = ${if saslauthd{{$1}{$2}}{1}{0}}
    server_set_id = $1
    .ifndef AUTH_SERVER_ALLOW_NOTLS_PASSWORDS
    server_advertise_condition = ${if eq{$tls_cipher}{}{}{*}}
    .endif


plain:
   driver = plaintext
   public_name = PLAIN
.ifndef AUTH_CLIENT_ALLOW_NOTLS_PASSWORDS
   client_send = "${if !eq{$tls_cipher}{}{\
                      ^${extract{1}{::}\
                        {${lookup{$host}lsearch*{CONFDIR/ 
passwd.client}{$value}fail}}}\
                      ^${extract{2}{::}\
                        {${lookup{$host}lsearch*{CONFDIR/ 
passwd.client}{$value}fail}}}\
                    }fail}"
.else
   client_send = "^${extract{1}{::}{${lookup{$host}lsearch*{CONFDIR/ 
passwd.client}{$value}fail}}}^${extract{2}{::}{${lookup
{$host}lsearch*{CONFDIR/passwd.client}{$value}fail}}}"
.endif


login:
   driver = plaintext
   public_name = LOGIN
.ifndef AUTH_CLIENT_ALLOW_NOTLS_PASSWORDS
   client_send = "${if and{\
                           {!eq{$tls_cipher}{}}\
                           {!eq\
                               {${lookup{$host}lsearch*{CONFDIR/ 
passwd.client}\
                                  {$value}fail}}\
                               {}}\
                          }\
                       {}fail}\
                  : ${extract{1}{::}\
                         {${lookup{$host}lsearch*{CONFDIR/ 
passwd.client}{$value}fail}}} \
                  : ${extract{2}{::}\
                      {${lookup{$host}lsearch*{CONFDIR/passwd.client} 
{$value}fail}}}"


.else
   client_send = "${if !eq\
                           {${lookup\
                             {$host}lsearch*{CONFDIR/passwd.client}\
                             {$value}fail}}\
                           {}\
                       {}fail}\
                  : ${extract{1}{::}\
                         {${lookup{$host}lsearch*{CONFDIR/ 
passwd.client}{$value}fail}}} \
                  : ${extract{2}{::}\
                         {${lookup{$host}lsearch*{CONFDIR/ 
passwd.client}{$value}fail}}}"
.endif