Jeremy Harris <jgh146exb@???> (Fr 14 Nov 2014 11:34:24 CET):
> --- Comment #2 from Jeremy Harris <jgh146exb@???> 2014-11-14 10:34:23 ---
> As of sixteen years later, with no action, I'm not convinced there are enough
> broken SMTP implementations out there for this to be worthwhile.
I think, we had some similiar discussion already. Some kind of acl for
outgoing connections, e.g. drop the connection if there is an unexpected
certificate, drop the connection if there is an unexpected SMTP banner,
…
Maybe this can be achieved by translating the SMTP response before
processing it.
driver = smtp
translate_response = <trigger> : <operation>
eg:
translate_response = RCPT : ${if match{$remote_banner}{postfix}{sg{$remote_response}{^4\d+}{550}}{}
Just thinking loudly…
--
Heiko