mick <[EMAIL PROTECTED]> wrote:
> > > The :allow at the end makes the server an open relay! Not acceptable.
> >
> > No it doesn't. The allow means "allow the connection". RELAYCLIENT=""
> > means "allow relaying to the world".
>
> Ok, then how can I test wether I have an open relay or not? All of the
> tests from the web show us as an open relay because the connection and
> message are accepted.
If all of the following are true:
-you do not enable the percenthack
-you have a file /var/qmail/control/rcpthosts
-your .cdb file for the tcpserver instance running qmail-smtpd does
not have :allow,RELAYCLIENT="" in it, or some number of IP-specific
lines which amount to the same thing
you are not an open relay. qmail will accept mail from any host which is
address to _any_ local-part in any of the domains in rcpthosts. If that
domain is in locals or virtuals, qmail will deliver it appropriately on the
local box, and otherwise, will forward it to the domain in question (by
looking up MX records or using smtproutes).
Show us these "tests from the web" with all their output, and the output
of `qmail-showctl`.
Charles
--
-----------------------------------------------------------------------
Charles Cazabon <[EMAIL PROTECTED]>
GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/
Any opinions expressed are just that -- my opinions.
-----------------------------------------------------------------------
