On Sun, Aug 24, 2014 at 04:52:35PM +0100, Edwin Marqe wrote:
> Is there a Postfix specific command that would end/kill a user's
> session? If not, any workaround that would disconnect that user? I've
> been trying to find something regarding this in the documentation but
> found nothing.
Postfix 2.11 or later has a new feature:
http://www.postfix.org/postconf.5.html#check_sasl_access
If your relay restrictions look like:
main.cf:
indexed = ${default_database_type}:${config_directory}/
smtpd_relay_restrictions =
check_sasl_access ${indexed}sasl-access,
permit_sasl_authenticated,
permit_mynetworks,
reject_unauth_destination
(before any user account is compromised), then once an account
is hijacked:
sasl-access:
[email protected] REJECT 5.7.1 Your login is compromised.
# cd /etc/postfix; postmap sasl-access
The relay check is performed for every message, even for
established connections.
--
Viktor.
