I do this before dnsbl checks. Because, you would like your trusted IP
not checked against blacklists, and you would like your authenticated
users send mail even from blacklisted IPs. If they are authenticated and
send spam, just delete their account...
Odhiambo Washington wrote:
> * On 04/07/06 21:27 +0200, Renaud Allard wrote:
> | in acl_smtp_rcpt because if you do it earlier, some dumb MTAs will retry.
>
> Thanks. Do you do this before or after the dnsbl checks? At what
> juncture in acl_smtp_rcpt?
>
> | Odhiambo Washington wrote:
> | > * On 04/07/06 21:13 +0200, Renaud Allard wrote:
> | > | Well, I do something like that:
> | > |
> | > | accept
> | > | authenticated = *
> | > | endpass
> | > | message = Sending mails from $sender_address_domain is not permitted
> | > | sender_domains = +local_domains
> | > |
> | > | deny
> | > | !hosts = : +relay_from_hosts
> | > | sender_domains = +local_domains
> | > | message = You are not authenticated
> | > | log_message = No authentication
> | > |
> | > | The first one accepts authenticated users (using only local domains to
> | > | prevent abuse on other domains)
> | > |
> | > | The second one denies everything unless you have passed a former accept
> | > | ACL (auth) or are a trusted IP.
> | >
> | > In which ACL do you perform these?
>
>
> -Wash
>
> http://www.netmeister.org/news/learn2quote.html
>
> DISCLAIMER: See http://www.wananchi.com/bms/terms.php
>
> --
> +======================================================================+
> |\ _,,,---,,_ | Odhiambo Washington <wash@???>
> Zzz /,`.-'`' -. ;-;;,_ | Wananchi Online Ltd. www.wananchi.com
> |,4- ) )-,_. ,\ ( `'-'| Tel: +254 20 313985-9 +254 20 313922
> '---''(_/--' `-'\_) | GSM: +254 722 743223 +254 733 744121
> +======================================================================+
>
> A day for firm decisions!!!!! Or is it?
>
--
Nikademus
http://www.octools.com
.O.
..O
OOO
PGP key:
http://www.llorien.org/gnupg/key.pub