On 07/07/2011 22:13, Jeremy Harris wrote:
> On 2011-07-07 19:32, mailing@??? wrote:
>> Hello, I'm trying to verify the sender of my messages so that my
>> users (authenticated) can't send with FROM something like
>> user@???, but with the real and public email address. But
>> actually every senders is accepted. This is my ACL, I suppose that
>> deny !verify = sender/callout (or without callout) will do the job,
>> but it's not, every sender is accepted:
> [...]
>> Where is my fault? Thanks!
>
> They were accepted because they authenticated, perhaps.
I suppose order matters, so:
acl_check_rcpt:
accept hosts = :
require verify = sender/callout
accept hosts = +relay_from_hosts
accept authenticated = *
will do the job, but it does not.
