On 26/10/06, Beber <beber@???> wrote: > Le mercredi 25 octobre à 17:03:00, « Peter Bowyer » à écrit :
>
> > > Hum.. Yes. But: Could it be enable only when a ESMTP failed ? Cause I
> > > want that people USE auth, and auth with SMTP is not possible.
> >
> > Then you're trying to fix the wrong problem.
> >
> > require authenticated = *
> >
> > in some ACL would ensure that no unauthenticated mail is accepted. If
> > you're sure that's what you want...
>
> Yes, that's the thing, but HELO is accept in that place:
>
> ~ :( % telnet xxx.net 25
> Trying 89.291.440.279...
> Connected to xxx.net.
> Escape character is '^]'.
> 220 xxx.net ESMTP Exim 4.62 Thu, 26 Oct 2006 00:50:01 +0200
> HELO xxx.net
> 250 xxx.net Hello xxx.net [82.230.172.234]
>
> HELO is still allowed. I really would like to deny it here.
HELO support is a required part of SMTP, as has already been
explained. It's not possible, and not sensible, to disallow it.
You said what you wanted was to ensure your clients use authentication
- Exim has a control for that, as I've already shown you. Does that
not meet your need? Or do you have another reason to want to disallow
HELO?
