Hi Mark,
first of all. Thanks.
> Not really. The @local_domains_maps list implicitly gets LDAP or SQL
> lookups prepended. So it makes no difference whether LDAP's amavisLocal
> or a statical lookup table provides a result, both are threated the
> same, i.e. it is just a result from @local_domains_maps.
>
> So this is not the reason why loading of MYUSERS does not work.
Ok, good to know.
>> Just tested my setup with a static @local_domains_maps, if the MYUSERS
>> is being used, but unfortunately even this does not activate the policy
>> bank.
>>
>> I have googled around and found information that originating must be set
>> to have this policy-bank activated. But how can I do this?
>
> Indeed.
>
> amavisd-new-2.6.0 release notes :
>
> - an additional requirement for loading a policy bank 'MYUSERS' is that
> 'originating' flag must be on, which typically means that mail must
> be coming from internal networks or from authenticated roaming users
> to be able to load a policy bank 'MYUSERS';
>
>
> So, the 'originating' flag must be set. It can be set implicitly
> through @mynetworks, which you said you have at:
>
> @mynetworks = qw( 127.0.0.0/8 [::1] [FE80::]/10 [FEC0::]/10
> 10.0.0.0/8 172.16.0.0/12 192.168.0.0/16 );
These nets are locally. But local means virtual servers. In fact my
server is a root-server in the internet and all clients are connecting
from remote.
> or it can be set explicitly, typically through some policy bank
> triggered by MTA when it sees an authenticated roaming user.
>
> See release notes, search for:
>
> - policy banks now contain a new key 'originating', which generalizes
> a previously hard-wired policy bank MYNETS. It is a boolean ...
I do not know how to tell amavis that a postfix user _was_ sasl
authenticated. See this header:
Return-Path: <christ...@roessner-net.com>
Delivered-To: de10...@service.intern
Received: from localhost (localhost [127.0.0.1])
by mx0.roessner-net.de (Postfix) with ESMTP id 0DCA51A8009
for <i...@testsetup.de>; Sun, 14 Jun 2009 18:32:21 +0200 (CEST)
X-Virus-Scanned: Debian amavisd-new at mx0.roessner-net.de
X-Spam-Flag: NO
X-Spam-Status: No, score=-1.308 required=2.5 tests=[ALL_TRUSTED=-1.44,
AWL=0.132]
Received: from mx0.roessner-net.de ([127.0.0.1])
by localhost (mx0.roessner-net.de [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id i9vPYuk73C-V for <i...@testsetup.de>;
Sun, 14 Jun 2009 18:32:14 +0200 (CEST)
Received: from [192.168.1.50] (ip-81-210-196-220.unitymediagroup.de
[81.210.196.220])
(Authenticated sender: de10000)
by mx0.roessner-net.de (Postfix) with ESMTPSA
for <i...@testsetup.de>; Sun, 14 Jun 2009 18:32:14 +0200 (CEST)
Even postfix is writing authenticated-header fields, but it seems amavis
does not care about these.
>
> Passed CLEAN, MYNETS LOCAL [...]
Here is the ail.log part:
Jun 14 18:32:21 mx0 amavis[9750]: (09750-04) Passed CLEAN,
[81.210.196.220] [81.210.196.220] <christ...@roessner-net.com> ->
<i...@testsetup.de>, Message-ID: <4a35260e.7090...@roessner-net.com>,
mail_id: i9vPYuk73C-V, Hits: -1.308, size: 829, queued_as: 0DCA51A8009,
6549 ms
I do miss something like:
Jun 14 09:48:43 mx0 amavis[26327]: (26327-04) Passed CLEAN,
MYNETS/MYUSERS LOCAL [10.1.0.4] [79.199.184.234]
<christ...@roessner-net.com> -> <i...@testsetup.de>, Message-ID:
<303c3a0a8fca28173708a4e57735f103.squir...@www.roessner-net.de>,
mail_id: FMgQPwQL-zZN, Hits: -1.44, size: 1097, queued_as: AA6931A8009,
2733 ms
The latter works, if sending over squirrelmail, which lays on a server
included in @mynetworks_maps. So as you can see, the policy-bank gets
loaded, but not for sasl-authenticated users here.
Do you have any further ideas?
Thanks alot in advance
Christian
------------------------------------------------------------------------------
Crystal Reports - New Free Runtime and 30 Day Trial
Check out the new simplified licensing option that enables unlimited
royalty-free distribution of the report engine for externally facing
server and web deployment.
http://p.sf.net/sfu/businessobjects
_______________________________________________
AMaViS-user mailing list
AMaViS-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
