[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: TLS in smtpserver

To: mea@nic.funet.fi (Matti Aarnio)
Subject: Re: TLS in smtpserver
From: Matti Aarnio <mea@nic.funet.fi>
Date: Thu, 13 May 1999 23:48:53 +0300 (EET DST)
Cc: crosser@online.ru, zmailer@nic.funet.fi
In-Reply-To: <19990513164836Z9368-10582+162@nic.funet.fi> from "Matti Aarnio" at May 13, 99 07:48:34 pm

Thinking more of my answer to Eugene's question:

> > Another question: how do you actually use auth?  Can you, e.g., require
> > auth for a specific set of networks?  How do you tell to the policy
> > checker that if auth is used, then the source is "trusted"?  Any docs?
> 
> 	Sorry, docs (manual) is way out of date..
> 
> 	The problem I begun to solve with the "AUTH LOGIN" facility
> 	are people who are subscribers at our email services, and
> 	who want to send email thru our outbound email relay server(s)
> 	when they are traveling somewhere -- our local networks are
> 	listed at the policy datasets allowing relaying, but when
> 	they are somewhere else...
> 
> 	The policy code contains a simple test: "authentication has
> 	been successfull ("authuser" variable is non NULL), allow
> 	open relaying."

	This all can - sort of - be interpreted as 'from those networks
	thy must AUTH LOGIN', but only as a complement of the set of
	networks from which that isn't needed *FOR OUTBOUND RELAY*.

	It could be possible to add mechanism to list networks for which
	AUTH LOGIN is required, but where that would really be necessary ?
	( That is, define a skenario, and you might get it... )
....
> > Eugene

/Matti Aarnio <mea@nic.funet.fi>

References:
- Re: TLS in smtpserver
  - From: Matti Aarnio <mea@nic.funet.fi>

Prev by Date: A couple of short router question
Next by Date: Re: A couple of short router question
Prev by thread: Re: TLS in smtpserver
Next by thread: Re: TLS in smtpserver
Index(es):
- Date
- Thread