Am 03.12.2014 um 13:06 schrieb mancyb...@gmail.com:
Hi, I'm currently the following two parameters:
reject_authenticated_sender_login_mismatch,
reject_unauthenticated_sender_login_mismatch,
under 'smtpd_recipient_restrictions'
to enforce sasl username+password authentication.
As you may know, M$ Exchange, when using an external SMTP, can't send
username+password of each user
but only 1 username+password for all the domain.
In short, postfix must allow spoofing the username of the domain.
Perhaps I'm missing something about all this,
if not, the question is: is there a way in postfix to disable the two
parameters above just for that domain
(thus allowing spoofing of the username, only for that domain)?
put the exchange host in "mynetworks" and just add "permit_mynetworks"
*before* "reject_authenticated_sender_login_mismatch"
you don't want to do this domain based with access lists because that
can be spoofed easily
