From: "jdow" <[EMAIL PROTECTED]>
Mail that comes directly into my network (not via fetchmail) I do not
believe ever has the ALL_TRUSTED as shown in the second example.
My trusted nework configs:
# Trusted
clear_trusted_networks
trusted_networks 192.168.1/24
# Internal
clear_internal_networks
internal_networks 192.168.1/24
Change this last to:
===8<---
# Trusted
clear_trusted_networks
trusted_networks 192.168.1/24 127/8
# Internal
clear_internal_networks
internal_networks 192.168.1/24
===8<---
127/8 is yourself. If you cannot trust your own mail machine who can
you trust?
Actually strip the 192.168.1/24 off trusted_networks, too. I saved
myself a couple DNS tests by also trusting specific smarthost machines
outside my network. They don't lie even if they have a customer that
tries to spam from their network. But going to that extreme is not
really necessary.
{^_^}
