Auteur: Randy McAnally Date: À: Dirk GROSSE OSTERHUES CC: exim-users Sujet: Re: [exim] Accept local mail only from certain IP or auth
Thanks a ton, I got it figured out and working.
--
Randy
---------- Original Message -----------
From: Dirk GROSSE OSTERHUES <digo@???>
To: Randy McAnally <rsm@???>
Cc: exim-users@???
Sent: Wed, 20 May 2009 19:16:37 +0200
Subject: Re: [exim] Accept local mail only from certain IP or auth
> Hello Randy,
>
> On 20/5/09 15:50, Randy McAnally wrote:
> > Hello all,
> >
> > I need an exim server to only accept local mail from a content filter
> > (two IPs) and not the entire internet. Right now, a spammer can
> > figure out the exim server's IP and bypass the content filter. [...]
> > Is there a way to force exim to accept local mail only from the
> > content filter if it is not authenticated?
>
> You might want to have a look at the variable "relay_from_hosts" in
> exim4.conf. Usually, hosts (i.e. IPs) in that list are allowed to relay
> without authentication by ACL:
>
> accept hosts = +relay_from_hosts
>
> In addition, if you use TLS for authentication you might want to exclude
> the IPs of your content filters from TLS advertise:
>
> tls_advertise_hosts = !+relay_from_hosts
>
> Regards
>
> Dirk
>
> --
> Dirk große Osterhues <digo@???>
> * Hochschulstrasse 10, Room E322, D-64289 Darmstadt
> * Tel: ++49 (6151) 16-6634, Fax: ++49 (6151) 16-5482
> * PGP-Key-Fingerprint: E92F410DFF8DABA78B6804A75A426BA67F8FAC70 ------- End of Original Message -------