Brian Evans - Postfix List a écrit : > > Really the only thing that can be done on the postfix side is to > implement smtpd_sender_login_maps and > reject_authenticated_sender_login_mismatch (or similar). > This is a matter of policy as any matches with invalid results will be > rejected. > > See http://www.postfix.org/postconf.5.html#smtpd_sender_login_maps and > http://www.postfix.org/postconf.5.html#smtpd_sender_restrictions. > > Fight spam through trusted sources since MAIL FROM is easily forged and > will block legitimate mail. > > Note: just remember the first restriction wins. If you want this to > work, it must come before permit_sasl_authenticated. >
note that this only works if the webmail solution does authenticate with user login.