On 1/8/2013 5:38 PM, Quanah Gibson-Mount wrote:
> So, with the breakout in Postfix 2.10 for smtpd_relay_restrictions
> and smtpd_recipient_restrictions, I seem to have goofed in relation
> to RBLs and the submission port.
>
> Right now, we have RBLs added to smtpd_recipient_restrictions. In
> smtpd_relay_restrictions, I have permit_sasl_authenticated.
I suggest explicitly specify all the smtpd_{client, helo, sender,
recipient, relay, data, end_of_data}_restrictions in the master.cf
submission service definition to prevent surprises -- most of these
would be set to empty.
That way there won't be any RBLs anywhere on the submission port,
regardless of what happens in main.cf.
If email is submitted on port 25, you would need to add
permit_sasl_authenticated to every used smtpd_*_restrictions.
-- Noel Jones
