[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: TLS in smtpserver
Thinking more of my answer to Eugene's question:
> > Another question: how do you actually use auth? Can you, e.g., require
> > auth for a specific set of networks? How do you tell to the policy
> > checker that if auth is used, then the source is "trusted"? Any docs?
>
> Sorry, docs (manual) is way out of date..
>
> The problem I begun to solve with the "AUTH LOGIN" facility
> are people who are subscribers at our email services, and
> who want to send email thru our outbound email relay server(s)
> when they are traveling somewhere -- our local networks are
> listed at the policy datasets allowing relaying, but when
> they are somewhere else...
>
> The policy code contains a simple test: "authentication has
> been successfull ("authuser" variable is non NULL), allow
> open relaying."
This all can - sort of - be interpreted as 'from those networks
thy must AUTH LOGIN', but only as a complement of the set of
networks from which that isn't needed *FOR OUTBOUND RELAY*.
It could be possible to add mechanism to list networks for which
AUTH LOGIN is required, but where that would really be necessary ?
( That is, define a skenario, and you might get it... )
....
> > Eugene
/Matti Aarnio <mea@nic.funet.fi>