Flo Leibert wrote: > Lately, I use my own domain in the baddomain list. However now people > have figured out how to circumvent the system and I emails like (my > domain being test.com): > ::: > helo xxx > MAIL FROM:[EMAIL PROTECTED] > RCPT TO:[EMAIL PROTECTED] > data > From:[EMAIL PROTECTED] > ::: > > get through, since the from field matches. I would however like to > ignore From field and limit TMDA inspection to the "Return-Path:" > (which is generated with the MAIL FROM) thus that the above would not > get through.
I'm not 100% sure that I understand your question, but... You should never add your own email address to your whitelist. Also, you should configure your MTA (qmail) to reject email with a "from" address that matches any of your domains, unless the sender is authenticated. Hopefully, that should solve your problem.
signature.asc
Description: OpenPGP digital signature
_____________________________________________ tmda-users mailing list ([email protected]) http://tmda.net/lists/listinfo/tmda-users
