How to allow mail relay when only for correct auth id + From: + Sender: combination ?

Thu, 06 Jun 2013 01:53:43 -0700 

Hi ,
I am using the postfix-2.9.4-1.rhel5.x86_64 and smtplogin maps with auth feature. which Its working properly. 
Below is the working config from main.cf :--

smtpd_sender_login_maps = hash:/etc/postfix/smtploginmaps

smtpd_sender_restrictions =
   permit_mynetworks,
  reject_sender_login_mismatch
This is working properly when sender auth and From: get differ , such emails get rejecting properly. i.e its forcing auth ID and From: address always should be same.
But now a days few of my users who are using the MS Outlook 2007 are start sending the emails by changing the different From: address and creating problem. The MS outlook have the feature where end user can use any other's email id in From: For Example see this Delegation - Sending Email 'On Behalf Of' on http://isservices.tcd.ie/email/exchange-outlook-usage.php .
When end user send email like this , the above smtpd_sender_login_maps setting is not working . For more details see the below header in 2 different condition. 


1) Header , when email send as normal:--
---------------------------------------------------
X-Envelope-From: <us...@example.com>

Received: from user1 (unknown [10.14.13.20])
  (Authenticated sender: us...@example.com)
  by insmtp.example.com (Postfix) with ESMTPA id 6EF8A18D47AF
  for <jayesh.shi...@netcore.co.in>; Wed,  5 Jun 2013 17:01:35 +0530 (IST)

From: "Firstname lastname" <us...@example.com>
To: <jayesh.shi...@netcore.co.in>
Subject: Normal email
Date: Wed, 5 Jun 2013 17:01:39 +0530



2) Header , when sender sent email with different From: address :--
------------------------------------------------------------------------------

X-Envelope-From: <us...@example.com>

Received: from user1 (unknown [10.14.13.20])

  (Authenticated sender: us...@example.com)
  by insmtp.example.com (Postfix) with ESMTPA id 4C52418D47D2
  for <jayesh.shi...@netcore.co.in>; Wed,  5 Jun 2013 17:03:32 +0530 (IST)

From: "Firstname lastname" <forged...@example.com>
Sender: "Firstname lastname" <us...@example.com>
To: <jayesh.shi...@netcore.co.in>
Subject:  Sending with forged ID
Date: Wed, 5 Jun 2013 17:03:36 +0530

If you notice in above ,  the From: and Sender: is different
How do I control such forged emails on postfix level , is there any option main.cf which can control this ? 
Or do i need to use some content filter for checking this.
How to make sure and allow SMTP relay for the matched auth id + From: + Sender: ID combination ? 

Please guide and suggest.

Thanks

Jayesh Shinde






Disclaimer is Empty.. Add your Disclaimer and Enable and Submit

Reply via email to