[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: smtp-auth and resolvable source domain

To: zmailer <zmailer@lists.com.ar>
Subject: Re: smtp-auth and resolvable source domain
From: Matti Aarnio <mea@nic.funet.fi>
Date: Sat, 2 Jul 2005 04:34:09 +0300
Cc: zmailer@nic.funet.fi
In-Reply-To: <5DC7EB0268F3E549BA5ACFB1DDF1236D9C2CD8@mafalda.pert.com.ar>; from zmailer@lists.com.ar on Fri, Jul 01, 2005 at 11:31:22AM -0300
Original-Recipient: rfc822;zmailer-log@nic.funet.fi
References: <5DC7EB0268F3E549BA5ACFB1DDF1236D9C2CD8@mafalda.pert.com.ar>
Sender: zmailer-owner@nic.funet.fi

On Fri, Jul 01, 2005 at 11:31:22AM -0300, zmailer wrote:
> Hi,
> We have an smtpserver configured with smtp-auth. The problem is that when a
> client authenticates himself, the conection is accepted even is if he sends
> a not existing domain in the 'mail from' field.
> 
> Is there a way to reject these connections, like it's done when no auth is
> required?

I get this verification of sender's domain to happen with 
"senderokwithdns -" pair in the  _default_dot  ruleset.
(Or, if older setup, at the "." -rule.)

Related: user IP address must not have "fulltrustnet +" pair,
or the pt_mailfrom() testing short-circuits most of its rules.

The necessary code has existed for at least a year, possibly 3-4 years.

> Thanks,
> María

-- 
/Matti Aarnio	<mea@nic.funet.fi>
-
To unsubscribe from this list: send the line "unsubscribe zmailer" in
the body of a message to majordomo@nic.funet.fi

References:
- smtp-auth and resolvable source domain
  - From: zmailer <zmailer@lists.com.ar>

Prev by Date: smtp-auth and resolvable source domain
Next by Date: msgbuffer IO-error and GateDefender
Prev by thread: smtp-auth and resolvable source domain
Next by thread: msgbuffer IO-error and GateDefender
Index(es):
- Date
- Thread