Dnia 28.12.2021 o godz. 07:17:43 Michael Peddemors via mailop pisze: > > For us, the security value of passing the originating IP to the > Dovecot or SMTP layers for auth restrictions is paramount, as well > as other details on the originating sender. (Country AUTH > restrictions, OS Detection, and many more)
Can't these restrictions be just moved from Dovecot/Postfix to Roundcube itself? Roundcube definitely knows the value of the $_SERVER["REMOTE_ADDR"] variable and can make use of it... It is Roundcube that is actually connecting to Dovecot/Postfix and receiving/sending mail, not the user's browser, so the connecting IP that Dovecot/Postfix gets is technically correct. No need to change it. On the other hand, user's browser is talking HTTP to Roundcube, and Roundcube knows it's IP address, so Roundcube is the point where restrictions should be enforced, not Dovecot/Postfix. -- Regards, Jaroslaw Rafa r...@rafa.eu.org -- "In a million years, when kids go to school, they're gonna know: once there was a Hushpuppy, and she lived with her daddy in the Bathtub." _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
