Re: [exim] How to verify and authenticate only for outgoing …

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Theo de Morée
Date:  
À: exim-users
Sujet: Re: [exim] How to verify and authenticate only for outgoing mail
In your local delivery router you have to do a 'address_data = $local_part'.
After doing this the local_part will be available in $sender_address_data
and you can use it in your ACL for the condition check.

What would also help is running exim in debug mode and faking a message.
Exim tells you then exactly what it does. Maybe the message isn't handled by
the router you think is handling it (which I had at some point ;) ). Try
running the following: exim4 -d+all-memory -bh 127.0.0.1

Theo

>From: "Lekshmi A. R" <lekshmiar@???>
>To: Theo de Morée <thdemo@???>,<exim-users@???>
>Subject: Re: [exim] How to verify and authenticate only for outgoing mail
>Date: Mon, 22 May 2006 14:58:16 +0530
>
>It is working if I give as
>
>require verify        = sender
>          condition     = ${if eq{$sender_address_local_part}{vinodgm} \
>                           {yes} {no} }

>
>instead of
>
>require verify    = sender
>           condition = ${if 
>eq{$sender_address_local_part}{$authenticated_id} \
>                            {yes} {no} }

>
>
>where vinodgm is a valid user in the server.
>
>Even $sender_address_data is also not working. What could be wrong.
>
>Lekshmi A. R.
>Computer Programmer
>DCG, DIT
>Canara Bank
>Naveen Complex
>#14, M. G. Road
>Bangalore - 560 001
>Ph: (080) 2558 4040 - 286
>                2559 8548
>   ----- Original Message -----
>   From: Theo de Morée
>   To: exim-users@???
>   Sent: Monday, May 22, 2006 1:18 PM
>   Subject: Re: [exim] How to verify and authenticate only for outgoing 
>mail

>
>
>   Do you have the condition entry in the require block? In that case you
>   should put it in an accept or deny block. Something like:
>   acl_check_rcpt:
>     accept  hosts         = :
>     require verify        = sender
>     accept  domains       = +local_domains
>     accept !domains       = +local_domains
>             authenticated = *
>            !condition     = ${if 
>eq{$sender_address_data}{$authenticated_id}
>   {no} {yes} }
>     drop    message       = Please authenticate first

>
> This allows incoming mail directed at one of my local domains, and for
> outgoing mail it only allows it when the user is authenticated and the
>mail
> address belongs to him, otherwise it will be dropped. This seems to work
> properly for me now.
>
> Theo
>
>
> >From: "Lekshmi A. R" <lekshmiar@???>
> >To: "Giuliano Gavazzi" <dev+lists@???>,"Exim Mailing List"
> ><exim-users@???>, <dot@???>
> >Subject: Re: [exim] How to verify and authenticate only for outgoing
>mail
> >Date: Mon, 22 May 2006 11:51:18 +0530
> >
> >I also wanted to configure exim so that even authorised senders should
>not
> >be able to fake their mail ids.
> >
> >In AUTHENTICATION CONFIGURATION, I gave the following entries.
> >
>   >login:
>   >         driver = plaintext
>   >         public_name = LOGIN
>   >         server_prompts = "Username:: : Password::"
>   >         server_condition = "${if pwcheck{$1:$2}{1}{0}}"

> >
> >and in ACL CONFIGURATION, the following entries.
> >
>   >require verify    = sender
>   >           condition = ${if eq{$sender_address_data}{$authenticated_id}
>   >{yes} {no} }

> >
> >Evem then I am able to send mails from fake addresses. How to check
>this.
> >
> >Lekshmi A. R.
> >Computer Programmer
> >DCG, DIT
> >Canara Bank
> >Naveen Complex
> >#14, M. G. Road
> >Bangalore - 560 001
> >Ph: (080) 2558 4040 - 286
>
>
>
> --
> ## List details at http://www.exim.org/mailman/listinfo/exim-users
> ## Exim details at http://www.exim.org/
> ## Please use the Wiki with this list - http://www.exim.org/eximwiki/
>
>--
>## List details at http://www.exim.org/mailman/listinfo/exim-users
>## Exim details at http://www.exim.org/
>## Please use the Wiki with this list - http://www.exim.org/eximwiki/