I've written a patch to qmail-smtpd that I don't think anyone ought to use: it lets you control relaying based on envelope sender. Please don't write to me and point out that this isn't secure--I know that. But it's something people have asked to be able to do, and combined with tarpitting and running your SMTP daemon on a non-standard port, it may provide an acceptable level of safety. As with the unpatched version of qmail-smtpd, relaying is allowed whenever RELAYCLIENT is set. This patch adds a control file called relaymailfrom; envelope senders listed in the file will also be allowed to relay. Entries in relaymailfrom can be e-mail addresses, or just the domain (with the @ sign). So if I want [EMAIL PROTECTED] and anyone in domain2.com to be able to relay, my control/relaymailfrom file would contain: [EMAIL PROTECTED] @domain2.com Controlling relaying based on envelope sender address isn't something I'd recommend, but if you feel you need to do it, the patch is at http://www.palomine.net/qmail/relaymailfrom.patch. Also see http://www.palomine.net/qmail/relaymailfrom.README. I haven't tested it extensively, but it's pretty simple and most of it is lifted off of Dan's badmailfrom code. In fact, I think there's only one line that isn't directly copied and pasted. Chris
