I need to implement smtpd login maps on our postfix servers so as
minimize the chances of a compromised client machine screwing our smtp
relay.
But this cannot be done overnight. There are various clients who use
different envelope sender domains (for perfectly legitimate reasons) and
I cannot get a mapping for all such entries.
How can I use reject_authenticated_sender_login_mismatch only for some
auth logins. Especially those who insist on using some junk mailserver
in their offices and cannot sufficiently secure their network
So I want to say
if(sasl authenticated) {
if(suspect client login) {
reject_authenticated_sender_login_mismatch
} else {
allow sender_login_mismatch
}
}
Thanks
Ram
