Hello list, I have been using eMPF for about one year now and it does a great job limiting email accounts and/or who they can send or receive emails from. Thanks for including it in the distribution.
I have noticed that eMPF requires that the user sending the email authenticates (otherwise how would it know if the user was allowed to send or not). I run several applications (nagios, timetrex, etc) on servers I have on my LAN. These internal servers occasionally send automated emails. I have qmail (from source boo!) installed on the internal servers, but not qmailtoaster. I have the internal servers relay mail to my qmailtoaster server. I entered the ip address of the qmailtoaster server into /var/qmail/control/smtproutes control file of my internal servers. If the application I am running (see above) has a config section where I can enter a smtp server, a valid [email protected] and a valid password, then my qmailtoaster will accept the email and relay successfully. However, if application does not have a config section for the smtp server, username, and password or the application uses a phpmailer (which many do) the relayed email fails. In the smtp log file on the qmailtoaster spamdyke reports "DENIED OTHER" which means "The text returned by qmail (or the downstream filter that generated the rejection).". Here is a section of the smtp logfile on the qmailtoaster server when the email fails: 11-10 11:55:20 policy_check: local [email protected] -> local [email protected] (UNAUTHENTICATED SENDER) 11-10 11:55:20 spamdyke[21618]: DENIED_OTHER from: [email protected] to: [email protected] origin_ip: 192.168.105.110 origin_rdns: (unknown) auth: (unknown) If I empty my /var/qmail/control/policy file (empf config file) basically turning eMPF off, and send the same message, it is successful. Here is a section of the smtp logfile on the qmail toaster after turning off eMPF 11-10 13:26:25 policy_check: local [email protected] -> local [email protected] (UNAUTHENTICATED SENDER) 11-10 13:26:25 spamdyke[24110]: ALLOWED from: [email protected] to: [email protected] origin_ip: 192.168.105.110 origin_rdns: (unknown) auth: (unknown) Does anyone know a way around this? Turning off eMPF is not an option since my client insists on limiting email accounts. I read a post by Eric dated 10/29/2009 regarding "a quickie guide to configuring postfix to relay securely to a toaster". This seems simple enough. I suppose I would need to remove qmail first and seeing how it was installed from source, it may be a little more complicated than "rpm -e". Any suggestions, comments, etc. would be greatly appreciated. Thanks, Dave --------------------------------------------------------------------------------- Qmailtoaster is sponsored by Vickers Consulting Group (www.vickersconsulting.com) Vickers Consulting Group offers Qmailtoaster support and installations. If you need professional help with your setup, contact them today! --------------------------------------------------------------------------------- Please visit qmailtoaster.com for the latest news, updates, and packages. To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
