On Wed, 8 Feb 2006, Kenneth Porter wrote:
Well, because you only know the recipient address before virtuser,
aliasing and forwarding takes place, it is no 100% solution, but I do as
follows:
IF one recipient in @Recipient is a protected address
AND sender is not authentificated via SMTP AUTH
AND sender is not sending from a trusted host
THEN
return action_bounce("protected address - authentificate yourself
first")
Of course, one can also use $Sender, but I prefer pushing all local users
to submit their mails via SMTP AUTH anyway and $Sender is easy to fake,
but you probably need $Sender, if the mails cannot be submitted directly.
So far, it works pretty well.
BTW: Mailman works pretty well, too. ;-)
Bye.
--
Steffen Kaiser
_______________________________________________
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list [email protected]
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
