On Wednesday, 24 of February 2010, Per Jessen wrote: > >> Well, I guess it depends on your point of view - how difficult is it > >> to set up an MTA to reject mails pretending to be from <yourdomain> > >> that didn't originate on your MTA? > > Good question - how would you do it? > > Postfix: I would have two different smtpd daemons - one for the local > network, one for the external. The external smtpd would have a > check_sender_access along these lines (thinking out loud here): > > check_sender_access = hash:/etc/postfix/reject_from_my_domain > > etc/postfix/reject_from_my_domain would have: > > example.com 5xx
How's it different from the "standard" approach - permitting mynetworks and then rejecting mails "from self"? Two instances of postfix only make the setup more complicated. -- /\-\/\-\/\-\/\-\/\-\/\-\/\ \ k...@epsilon.eu.org / / http://epsilon.eu.org/ \ \/-/\/-/\/-/\/-/\/-/\/-/\/
