On 24.11.2008 14:24, Aiko Barz wrote: > Hi, > > does anybody know if there is a patch that allows regular expressions > within the tcpserver configuration? > > At the moment, I use the following lines > > =.adsl.alicedsl.de:allow,AUTHREQUIRED="",SMTPAUTH="TLSREQUIRED", ... > =.dip.t-dialin.net:allow,AUTHREQUIRED="",SMTPAUTH="TLSREQUIRED", ... > [...] > > to force ADSL users to authenticate first before talking to the SMTP > server. The ADSL users are still able to relay, while many botnet members > fail to deliver their mails directly. > > It would be nice to write it like this: > ~\.adsl\.:allow,AUTHREQUIRED="",SMTPAUTH="TLSREQUIRED", ... > ~\.dhcp\.:allow,AUTHREQUIRED="",SMTPAUTH="TLSREQUIRED", ... > (I know, it is dangerous. Those lines are just examples to get the idea.) > > So long, > Aiko > Not the answer you were looking for, but this solves yours and a lot of other problems ...
Best practice today is to provide a submission server on port 587 for authenticated users. http://www.maawg.org/port25 In Qmail-LDAP this is easy to achieve, by just making a copy of your service-folder and adjust the port number in the run script. Regards Alain Wolf
