On 08/30/2018 01:08 PM, Bill Cole wrote:
If that MSA is requiring authentication (as it should) and recording that in the Received header (as it should) then as I understand it, the handoff of the message will not be considered for __RDNS_NONE.
Okay.What happens if the MSA isn't using authentication and instead is configured to blindly allow relaying from the local / internal / private LAN. As is / was traditional for a long time for ISPs to allow relaying from their (client) IP address space. (Granted, this is against best practices.)
How would this type of scenario effect your statement above?
OK, but in that case the MTA would use an IP that should be in trusted_networks and have rDNS.
Agreed.
The partner machine's IP should be in trusted_networks AND should have rDNS as an explicit technical requirement of the cooperation, which is entirely reasonable.
Okay. -- Grant. . . . unix || die
smime.p7s
Description: S/MIME Cryptographic Signature
