> From: Frank DeChellis
> even if somebody was using a permitted IP address
I.e. in +relay_from_hosts or authenticated, right?
> their
> mail must still have a domain listed in local_domains . So an infected user
> could not unknowingly send out mail through our SMTP because the from: field
> has an invalid domain.
Then:
acl_check_rcpt:
accept hosts = :
deny message = Restricted characters in address
domains = +local_domains
local_parts = ^[.] : ^.*[@%!/|]
deny message = Restricted characters in address
domains = !+local_domains
local_parts = ^[./|] : ^.*[@] : ^.*/\\.\\./
accept local_parts = postmaster
domains = +local_domains
require verify = sender
accept hosts = +relay_from_hosts
domains = +sender_domains
control = submission/domain=
accept authenticated = *
domains = +sender_domains
control = submission/domain=
require message = relay not permitted
domains = +local_domains : +relay_to_domains
require verify = recipient
(checking RBLs here)
accept
