Re: [exim] allowing bogus sender_helo_name if authenticated.

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Jeremy Harris
Datum:  
To: exim-users
Betreff: Re: [exim] allowing bogus sender_helo_name if authenticated.
On 07/07/16 10:40, Gary Stainburn wrote:
> I have the following check in acl_check_helo
>
>   deny   hosts = !+relay_from_hosts
>          message = Your server with the IP $sender_host_address is with\
>          help name ($sender_helo_name) configured incorrectly. \

                 ^^^^
                      typo!


>         Email has been blocked. (HELO Error)
>          condition = ${if match{$sender_helo_name}{\\.}{no}{yes}}

>


>
> I've had to add additional conditions, one for each laptop to allow them to
> work.
>
> condition = ${if match{$sender_helo_name}{LSALES7}{no}{yes}}


You could use "inlist" to cut down the verbiage a bit,
or a file or DB lookup (worth it if the list is constantly
being changed, but less efficient)

> As I was adding another one today I was wondering if there is a better way.
> Every one of these users authenticates before they are allowed to send
> emails. I was wondering how I could use this information to come up with a
> better solution.
>
> The problem is of course that this check is done before the user
> authenticates.


Move the test to the mail acl?
--
Cheers,
Jeremy