On Thu, 2008-09-11 at 09:00 +0200, Andrea Gozzi wrote: > > The REDIRECT check can easily be bypassed by changing the MAIL FROM: , > so I configured the webmail to allow mail originating from the real > address only. > Unfortunately, someone might still try to connect directly to postfix > and fake the envelope..
After some research, I thought I would be happier with reject_authenticated_sender_login_mismatch Unfortunately some users relay through my postfix server and I can't add every one of their other addresses to smtpd_sender_login_maps . Is there anyway to whitelist a user in the table or (even better) perform the check for a certain domain only? Andrea
