> Timo Sirainen schreef: > > On Mon, 2007-12-03 at 14:36 +0100, Marc Cuypers wrote: > >> When using dovecot for authentication of an SASL (postfix) request, i > >> cannot use the allow_nets parameter. The IP-address of the requester is > >> not known in dovecot. > >> > >> I would like to allow sasl for certain users, others are not allowed to > >> access via SASL. > >> Some users can have access to imap and pop3 from certain IP-addresses. > >> > >> How could i combine this in then dovecot configuration? > > > > Since Postfix doesn't send the IP to Dovecot, there isn't anything on > > Dovecot's side you can do. You could try asking about this in Postfix > > list.. Someone at least had a patch which allowed sending local IP to > > Dovecot (http://marc.info/?t=119306971600010&r=1&w=2). Maybe it sends > > remote IP as well.
I wrote that patch. It passes both endpoints (remote & local) through to dovecot . This lets you restrict smtp-auth just like pop3 or imap using the remote IP. In my case, I had played around with a quick hack for doing per-ip realming (using the local IP) w/ dovecot-sql.