Quanah Gibson-Mount:
> When implementing sender login maps, we've run into an issue where people
> cannot send out email using a "from" address of the alias domain. We store
Postfix alias expansion happens after the sender authorization check.
At the risk of asking an obvious question: have you tried adding
the authorized email addresses in sender login maps? Have you tried
automating the account management procedure so that it does that
for you?
Alias expansions are one-to-many, and alias expansions are recursive.
Suppose that foo is aliased to bar and baz. When a client sends
mail from foo, the Postfix SMTP server does not know what addresses
foo is aliased to. And even if it did, what address should it look
up in the sender login map? foo? bar? baz? All three of them? And
what if the client sends mail from bar?
Wietse
