Hi, Wieste, Thanks for reply. From: Wietse Venema <[email protected]> Subject: Re: SRS implementation Date: Fri, 21 May 2010 16:13:45 -0400 (EDT)
> First, this would accept mail for [email protected], > meaning that it would be an open relay. A more secure implementation > would compute a hash of ([email protected], local secret) and > include that hash in the return address. I guess, with my patch alone, could not cause open relay, but ... when someone implement the functions for bounce or DSN to the anyu...@anydomain address derived from that SRS'ed sender unconditionally, this would be the case, isn't it ? Or, something else I could missed here (as usual ;-p). > Second, Postfix has a plugin interface that supports implementations > SRS, SPF, DKIM, SenderID, etc. I currently have no plans to build > these into Postfix. OK, I'd like to consider these lines too. Thanks, --- Tomo.
pgpln9Wpu0Vce.pgp
Description: PGP signature
