On Tue, 2004-04-13 at 17:43, Matti Aarnio wrote:
> > --- smtpserver/policytest.c 12 Apr 2004 12:13:11 -0000 1.89
> > +++ smtpserver/policytest.c 13 Apr 2004 10:19:58 -0000
> > @@ -1704,7 +1704,9 @@ if (state->always_freeze)
> > return 1;
> > if (state->full_trust || state->authuser)
> > - return 0;
> > + return 0;
> > + if (state->always_accept)
> > + return 0;
> > if (len > 0) { /* Non-box address.. */
>
> The story here is somewhat more complicated.
> For the "ratelimitmsgs" to work, the "always_accept" flag testing
> must be moved onwards - a lot.
>
> Reading the code again, the "always_accept" has been demoted into
> "accept if various tests don't reject" state, while "full_trust" is
> literally that.
Then probably SMTP AUTH and WHOSON sould be changed to raise full_trust
rather than always_accept, right?
> What I say above is true for MAIL FROM policy processing.
> The RCPT TO policy processing needs similar forward movement.
> .. which is there already
> just unplugging the unnecessarily early test.
Eugene
This is a digitally signed message part