On Fri, 13 Nov 2009, Terry Carmen wrote:
Adam Katz wrote:
Martin Gregorie wrote:
> Do we know the OIP is using sendmail?
Yes. Here's a quote:
> > I'm using SpamAssassin 3.2.3, milter-limit and sendmail
> Postfix checks local recipients
Folks, we're losing sight of the OP's request. Re-read the subject line,
and this quote from the OP:
neroxyr <brenne...@msn.com> wrote:
Over the past months, our internal mail server has encountered some
unknown _senders_ and we want to control them by validating the users
that are in the passwd file
{emphasis mine}
The suggestion to use SMTP AUTH should mostly cover it. To be totally
sure, the MTA should also be configured to not accept un-authenticated
SMTP at all.
Is there a way to configure sendmail to also validate both the envelope
sender and message From: header against the local passwd file?
Side note: this MTA would not be suitable for _inbound_ mail, obviously.
If this thread is morphing into a discussion of _recipient_ verification,
please change the subject or start a new thread.
/nanny off
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
jhar...@impsec.org FALaholic #11174 pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
USMC Rules of Gunfighting #7: In ten years nobody will remember the
details of caliber, stance, or tactics. They will only remember who
lived.
-----------------------------------------------------------------------
35 days since President Obama won the Nobel "Not George W. Bush" prize
