On Mon, Jun 08, 2009 at 02:31:06PM +0200, Florian Wagner wrote: > I'm currently playing around with client certificates in postfix. > > Is there any way do do something similar to reject_sender_login_mismatch > with certificate authentication? A table to map from certificate > fingerprints to allowed addresses?
Nothing particularly scalable built-in. For just one or two users you can use check_ccert_access with nested restriction classes, but for a large set of sender addresses and fingerprint pairs, you need a policy service as already posted. -- Viktor. Disclaimer: off-list followups get on-list replies or get ignored. Please do not ignore the "Reply-To" header. To unsubscribe from the postfix-users list, visit http://www.postfix.org/lists.html or click the link below: <mailto:majord...@postfix.org?body=unsubscribe%20postfix-users> If my response solves your problem, the best way to thank me is to not send an "it worked, thanks" follow-up. If you must respond, please put "It worked, thanks" in the "Subject" so I can delete these quickly.