Re: [exim] Block local submission

Top Page
Delete this message
Reply to this message
Author: Viktor Dukhovni
Date:  
To: exim-users
Subject: Re: [exim] Block local submission
On Fri, Jul 17, 2015 at 04:49:54PM +0200, Giuliano David wrote:

> In Postfix I acheived this result adding the rule
>
>    authorized_submit_users = root, !static:all


[ FWIW, that was introduced in postfix-2.2-20040918. ]

> What I did with Postfix was to deny any chance to send mail via local
> submission of any system user, except to the ones I trust in (root).
>
> Can anyone point me in the right direction to achieve the same with exim4?


My guess based on:

    https://github.com/Exim/exim/wiki/BlockCracking


is that you want to use

    acl_non_smtp = ...


in which you can use "$authenticated_id" to compare the user login
running Exim to your static whitelist. Someone better versed in
writing Exim ACLs should be able to help with that if you run into
trouble.

-- 
    Viktor.