On 4/11/2009, Doug Lytle ([email protected]) wrote: > You've lost me. Why would ASSP care about users, it's a proxy? It > would only care about if the inbound email matches a domain(s) that you > may have. I host 3 small domains. > > Checking for valid users would be the job of Postfix via smtp-auth or > IMAP via Dovecot
Wrong. ASSP MUST proxy the entire SMTP connection, and allow the MTA behind it to perform recipient validation IN REAL TIME. > At home, I have 3 domains with a hand full of users, in this case I > specify those in a flat file and check against it. > > At work, we have don't have this option set. If an inbound email > matches the domain(s) that we host, it is passed on to our mail server, > it's the responsiblity of the mail server to either accept or bounce > that message. Maybe you just don't understand how ASSP is designed to work. As a proxy, properly configured, it proxies, in real time, the SMTP connection to the MTA - and the MTA performs the recipient validation IN REAL TIME - ie, during the SMTP connection phase. If your ASSP is actually ACCEPTING the message without doing this, then you are a backscatter source, and will eventually be blacklisted. ... just read Fritz's respone... 'What he said'... :) -- Best regards, Charles ------------------------------------------------------------------------------ This SF.net email is sponsored by: High Quality Requirements in a Collaborative Environment. Download a free trial of Rational Requirements Composer Now! http://p.sf.net/sfu/www-ibm-com _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
