Yes if people were authenticating that would be great..
I found this to 'force' that..
accept authenticated = *
control = submission/domain=
back to my problem..
People sign into squirrelmail as username which can append @domain.org
silently..
imap and other smtp auth things.. need name@???..
I'm trying to help myself from squirrelmail abuse :/
domainlist sendfrom_domains = domain.org
acl_check_mail:
require domains = +sendfrom_domains
accept
temporarily rejected MAIL <name@???>: cannot test domains
condition in MAIL ACL
On 8/5/10 12:19 PM, Marcin Mirosław wrote:
> W dniu 2010-08-05 17:37, B. Cook pisze:
>> We had 2 accounts get compromised in the latest 'please reply with your
>> password ( ) ' scam..
>>
>> so what I am looking to do to prevent this from impacting us in the
>> future is..
>>
>> I would like exim to *only* send mail if it is from our domain..
>
> Hi!
> Maybe this acl would be usefull for you:
> acl_check_data:
>
> deny
> authenticated = *
> condition = ${if or {{!eqi{$authenticated_id}{$sender_address}}\
> {!eqi{$authenticated_id} {${address:$header_From:}} }}}
> message = You must send as the ID you authenticate with.
>
>
> Regards,
> Marcin
>