Re: [exim] Multiple users for SMTP Authentication

Top Page
Delete this message
Reply to this message
Author: Jan-Piet Mens
Date:  
To: exim-users
Subject: Re: [exim] Multiple users for SMTP Authentication
> Up until now, we have had a common authenticator for our own staff so that
> they can send email from outside the office.


Have you thought about what you'll have to do when one of your staff
leaves? Shared secrets are always a Bad Thing.

> My thoughts we to do this:
>
> fixed_cram:
> driver = cram_md5
> public_name = CRAM-MD5
> server_secret = ${if eq{$1}{username1}{password1}fail} OR ${if
> eq{$1}{username2}{password2}fail}
> server_set_id = $1


That will get hugely messy when you get to your 13th client. :-)

Use a local database or a simple text file to store your client's
credentials, and use that in the authenticator. Something along the
lines of

${if eq{$3}{${lookup{$2}lsearch{smtp-auth.file}{$value}fail}}{yes}{no}}

should get you started.

        -JP