Hi ,
I am using the postfix-2.9.4-1.rhel5.x86_64 and smtplogin maps with auth
feature. which Its working properly.
Below is the working config from main.cf :--
smtpd_sender_login_maps = hash:/etc/postfix/smtploginmaps
smtpd_sender_restrictions =
permit_mynetworks,
reject_sender_login_mismatch
This is working properly when sender auth and From: get differ , such
emails get rejecting properly. i.e its forcing auth ID and From:
address always should be same.
But now a days few of my users who are using the MS Outlook 2007 are
start sending the emails by changing the different From: address and
creating problem.
The MS outlook have the feature where end user can use any other's email
id in From: For Example see this Delegation - Sending Email 'On
Behalf Of' on http://isservices.tcd.ie/email/exchange-outlook-usage.php .
When end user send email like this , the above smtpd_sender_login_maps
setting is not working . For more details see the below header in 2
different condition.
1) Header , when email send as normal:--
---------------------------------------------------
X-Envelope-From: <us...@example.com>
Received: from user1 (unknown [10.14.13.20])
(Authenticated sender: us...@example.com)
by insmtp.example.com (Postfix) with ESMTPA id 6EF8A18D47AF
for <jayesh.shi...@netcore.co.in>; Wed, 5 Jun 2013 17:01:35 +0530 (IST)
From: "Firstname lastname" <us...@example.com>
To: <jayesh.shi...@netcore.co.in>
Subject: Normal email
Date: Wed, 5 Jun 2013 17:01:39 +0530
2) Header , when sender sent email with different From: address :--
------------------------------------------------------------------------------
X-Envelope-From: <us...@example.com>
Received: from user1 (unknown [10.14.13.20])
(Authenticated sender: us...@example.com)
by insmtp.example.com (Postfix) with ESMTPA id 4C52418D47D2
for <jayesh.shi...@netcore.co.in>; Wed, 5 Jun 2013 17:03:32 +0530 (IST)
From: "Firstname lastname" <forged...@example.com>
Sender: "Firstname lastname" <us...@example.com>
To: <jayesh.shi...@netcore.co.in>
Subject: Sending with forged ID
Date: Wed, 5 Jun 2013 17:03:36 +0530
If you notice in above , the From: and Sender: is different
How do I control such forged emails on postfix level , is there any
option main.cf which can control this ?
Or do i need to use some content filter for checking this.
How to make sure and allow SMTP relay for the matched auth id +
From: + Sender: ID combination ?
Please guide and suggest.
Thanks
Jayesh Shinde
Disclaimer is Empty.. Add your Disclaimer and Enable and Submit