On 13 Dec 2006, at 21:35, Rob Munsch wrote:
[...]
> Poor choice in ISP :) . Specific example: fred@??? is trying to
> mail someone in this office. Foo.com is coming up on a SORBS hit
> and so
> all mail from foo.com is being blocked. i do NOT want to stop
> referencing SORBS, and i most definitely do not want to accept all
> mail
> from foo.com unconditionally; but i would like fred's mail to get
> through.
>
> Poking around, i *think* what i want is
>
> accept
> senders = lsearch*@;/etc/exim4/local_whitelist
>
> with the address(es) i want to whilist in /etc/exim4/local_whitelist,
> and that should match fred@??? and not all of foo.com. i think.
depending on the previous acls in your configuration and on your
policy you might be missing one thing or two:
1) you must check that the recipient is local
2) you might want to check that the recipient exists
# list of senders that are unconditionally accepted
# (and with recipient in the local domains)
accept domains = +local_domains
senders = @@partial-lsearch;/etc/exim4/
whitelist_senders
verify = recipient
(thinking of it, the last two line might be better swapped, if
verifying the local recipient is less expensive than the lookup)
In whitelist_senders you may have addresses as:
domain user1 : user2
for whitelisting those two users in domain, and:
domain *
to whitelist a whole domain.
Look towards the end of section 10.18 in the specs and you'll find
how you can enter more elaborate values in that file or do other
types of searches.
g
