Re: [exim] Preventing Authenticated Users From Sending AsOth…

Top Page
Delete this message
Reply to this message
Author: David Saez Padros
Date:  
To: Frank Heydlauf
CC: Exim-users
Subject: Re: [exim] Preventing Authenticated Users From Sending AsOtherAccounts
Hi

>>>> deny  authenticated = *
>>>>        condition     = ${if eqi{$authenticated_id}{$sender_address}}
>>>>        message       = You are not authorized to use $sender_address
>>> ... and you probably will get lots of support-load since
>>> many mail clients do not show this error message at all.
>>> (0x800Uloose)
>> you will only get support requests from clients trying to forge
>> other users email addresses, which is the expected behaviour

>
> What about users testing some webservers-scripts or other
> robot-jobs sending mails,
> users who mistyped their From address,
> users intended to send mail with forged from-address
> (i.e. secretaries, bulk-mailer) ...


exim is flexible enough to cope with all those cases, you just
need to setup the appropiate acl rules

--
Best regards ...

----------------------------------------------------------------
    David Saez Padros                http://www.ols.es
    On-Line Services 2000 S.L.       telf    +34 902 50 29 75
----------------------------------------------------------------