--- In [email protected], Victor Duchovni <victor.ducho...@...> wrote: > > On Thu, Jan 15, 2009 at 05:17:07AM -0000, jeff_homeip wrote: > > > > There's the problem. Now test the table as Noel suggested. > > > > > > $ echo katie.prevost@ | > > > postmap -q - mysql:/etc/postfix/mysql_smtpd_sender_login_maps.cf > > > > I just tested again with this result: > > > > % /etc/postfix : postmap -q katie.prev...@... > > mysql:/etc/postfix/mysql_smtpd_sender_login_maps.cf > > % /etc/postfix : > > Please use the suggested: > > echo <lookup-key> | postmap -q - <table> > > form. Also as documented, "smtpd_sender_login_maps" uses additional > lookup keys: > > http://www.postfix.org/postconf.5.html#smtpd_sender_login_maps > > smtpd_sender_login_maps (default: empty) > > Optional lookup table with the SASL login names that own sender > (MAIL FROM) addresses. > > Specify zero or more "type:table" lookup tables. With lookups from > indexed files such as DB or DBM, or from networked tables such as > NIS, LDAP or SQL, the following search operations are done with a > sender address of u...@domain: > > 1) u...@domain > This table lookup is always done and has the highest precedence. > > 2) user > This table lookup is done only when the domain part of the sender > address matches $myorigin, $mydestination, $inet_interfaces > or $proxy_interfaces. > > 3) @domain > This table lookup is done last and has the lowest precedence. > > In all cases the result of table lookup must be either "not found" > or a list of SASL login names separated by comma and/or whitespace. > > You need to tset the full set of lookup keys (sh, ksh or bash, not csh): > > ( > echo morris.com | > postmap -q - mysql:/etc/postfix/mysql_mydestination_maps.cf >&2 && > echo katie.prevost > sleep 1 > echo katie.prev...@... > echo @morris.com > ) | postmap -q - mysql:/etc/postfix/mysql_smtpd_sender_login_maps.cf > > All this assumes that the sender address in question is unmodified... >
% /etc/postfix : ( > echo morris.com | > postmap -q - mysql:/etc/postfix/mysql_mydestination_maps.cf >&2 && > echo katie.prevost > sleep 1 > echo katie.prev...@... > echo @morris.com > ) | postmap -q - mysql:/etc/postfix/mysql_smtpd_sender_login_maps.cf % /etc/postfix : again, an empty result set. I'm not sure of all the possible meanings of "All this assumes that the sender address in question is unmodified..." but I know I've left the sender address untouched and I don't think I have anything that rewrites the sender address, so as far as I know it's unmodified. I appreciate you continuing to seek possible causes. I am having another issue which is not exactly this, but is related to this thread, and i suspect there may be some relation (I think it's the same thing - getting my restriction slightly wrong): Per your and Wietse's suggestions, I changed: -o smtpd_sender_restrictions= permit_sasl_authenticated,reject_sender_login_mismatch,reject in my submission service to: -o smtpd_sender_restrictions=reject_sender_login_mismatch,permit_sasl_authenticated,rejec t so that the permit_sasl_authenticated didn't obviate the reject_sender_login_mismatch. Now I am unable to send mail when authenticated as me with a valid address from a client outside of my_networks. My master.cf submission entry is: submission inet n - n - - smtpd -o smtpd_tls_security_level=encrypt -o smtpd_sasl_auth_enable=yes -o smtpd_client_restrictions= -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject -o smtpd_sender_restrictions=reject_sender_login_mismatch,permit_sasl_authenticated,rejec t -o milter_macro_daemon_name=ORIGINATING in its unaltered entirety. my postconf -n remains as in the message in this thread of several hours ago. The log entry is: Jan 14 22:10:06 s postfix/smtpd[1557]: NOQUEUE: reject: RCPT from unknown[32.155.5.72]: 554 5.7.1 <[email protected]>: Relay access denied; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<[10.97.215.245]> I am using my mobile phone to test this, but I verified that it is submitting on port 587. [email protected] is another address that is also mine. It is listed as a valid from address sasl authenticated user in my smtpd_sender_login_maps (so I can send messages from that when I don't have immediate access to my regular mail client and I"m logged in as [email protected]. If I send to another unrelated address, it works fine, so this is clearly caused by the fact that the address to which I'm sending is also listed in smtpd_sender_login_maps. I didn't expect this behavior, but I'm guessing it's what postfix is supposed to do. Can you explain why this happens? and do you have any suggestions to avoid it? Thank you again.
