On Sun, Jan 03, 2010 at 09:58:15PM +1100, Barney Desmond wrote:
> > mynetworks = 0.0.0.0
> This is *definitely* very wrong! smtpd_recipient_restrictions will
> allow ANY client in mynetworks to relay mail to any destination. I
While it was intended, no doubt, to be very wrong, it failed. Lacking
a valid CIDR expression, that only matches the single IPv4 address of
0.0.0.0, which, having special meaning in networking, is unroutable.
A setting of equivalent functionality is "mynetworks =".
The OP would be well advised to review the BASIC_CONFIGURATION_README,
listing in $mynetworks the client networks which should be allowed to
relay.
If the OP does not wish to allow any to relay on the basis of IP
address unless using a "local sender", as the $SUBJECT suggests, the
solution is pretty simple.
main.cf :
mynetworks = real.IP.add.ress/CIDR[, ...]
smtpd_recipient_restrictions = reject_unlisted_sender,
permit_mynetworks, permit_sasl_authenticated,
reject_unauth_destination[, ...]
> don't know if using smtpd_reject_unlisted_sender would prevent
> anything going wrong here, but this is likely to make you an open
> relay.
If the wrong thing had been done correctly ;) I think this would have
worked too, that is, if I understood the OP's goal correctly.
--
Offlist mail to this address is discarded unless
"/dev/rob0" or "not-spam" is in Subject: header
