Re: [exim] denying email when sender verify fails

Top Page
Delete this message
Reply to this message
Author: Marten Lehmann
Date:  
To: exim-users
Subject: Re: [exim] denying email when sender verify fails
Hello,

> Please post evidence of this. It should not happen with the ACL you have
> shown.


well, here is the complete ACL part:

acl_smtp_rcpt = acl_check_rcpt

acl_check_rcpt:

accept hosts = :

   deny    message       = Restricted characters in address
           domains       = +local_domains
           local_parts   = ^[.] : ^.*[@%!/|]


   deny    message       = Restricted characters in address
           domains       = !+local_domains
           local_parts   = ^[./|] : ^.*[@%!] : ^.*/\\.\\./


   accept  local_parts   = postmaster
           domains       = +local_domains


   require verify        = sender


   accept  domains       = +local_domains
           endpass
           verify        = recipient


   accept  domains       = +relay_to_domains
           endpass
           verify        = recipient


   accept  hosts         = +relay_from_hosts


accept authenticated = *

   deny    message       = relay not permitted


The server is auth-smtp only, no local domains, no /etc/aliases file.

I was just sending a mail which worked out perfectly, although the
address given in the return path doesn't exist:

Return-path: <lehmann2@xxx>
Envelope-to: lehmann@xxx
Delivery-date: Fri, 18 Aug 2006 17:09:43 +0200
Received: from relay1.mail.xxx ([81.28.232.18])
    by mail.xxx with esmtp (Exim 4.62)
    (envelope-from <lehmann2@xxx>)
    id 1GE5yU-0002Pt-0i
    for lehmann@xxx; Fri, 18 Aug 2006 17:09:30 +0200
Received: from [217.83.57.177] (helo=[192.168.33.66])
    by relay1.mail.xxx with esmtpsa (TLSv1:AES256-SHA:256)
    (Exim 4.60)
    (envelope-from <lehmann2@xxx>)
    id 1GE5z4-0005mf-ET
    for lehmann@xxx; Fri, 18 Aug 2006 17:10:06 +0200
Message-ID: <44E5D7D3.7000203@xxx>
Date: Fri, 18 Aug 2006 17:08:03 +0200
From: Marten Lehmann <lehmann2@xxx>
To:  lehmann@xxx
Subject: test
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
X-Relay-User: lehmann@xxx


The x-relay-user header is set by the smtp-server so know which
credentials have been used to send the mail.

Regards
Marten