We had 2 accounts get compromised in the latest 'please reply with your
password ( ) ' scam..
so what I am looking to do to prevent this from impacting us in the
future is..
I would like exim to *only* send mail if it is from our domain..
in the acl_smtp_mail I have tried..
acl_check_mail:
On Thu, Aug 05, 2010 at 11:37:47AM -0400, B. Cook wrote:
in the acl_smtp_mail I have tried..
acl_check_mail:
require domains = mydomain.org
accept
which passes exim -bV but gives a 451 and: cannot test domains
condition in MAIL ACL
In acl_smtp_mail, you probably want sender_domains,
W dniu 2010-08-05 17:37, B. Cook pisze:
We had 2 accounts get compromised in the latest 'please reply with your
password ( ) ' scam..
so what I am looking to do to prevent this from impacting us in the
future is..
I would like exim to *only* send mail if it is from our domain..
Hi!
I will test that and see what it does..
it *looks* like it will also only take mail from domain list as well..
or am I missing something..
Will try and report back; thanks.
On 8/5/10 12:15 PM, Dave Evans wrote:
On Thu, Aug 05, 2010 at 11:37:47AM -0400, B. Cook wrote:
in the acl_smtp_mail I
Yes if people were authenticating that would be great..
I found this to 'force' that..
accept authenticated = *
control= submission/domain=
back to my problem..
People sign into squirrelmail as username which can append @domain.org
silently..
imap and other smtp auth things.. need
W dniu 2010-08-05 18:32, B. Cook pisze:
Yes if people were authenticating that would be great..
Why they aren't? People uses login and password to login into webmail.
I found this to 'force' that..
accept authenticated = *
control= submission/domain=
back to my problem..