Dupa o cautare foarte rapida pare ca solutia e sa folosesti un connector cu un certificat TLS cu un custom CA, si dupa asta faci validarea in postfix:
https://www.neoslash.net/blog/add%20smarthost%20365 combinat cu optiunea 1 daca ai CA-ul tau, optiunea 2 daca nu: permit_tls_all_clientcerts Permit the request when the remote SMTP client certificate is verified successfully. This option must be used only if a special CA issues the certificates and only this CA is listed as trusted CA. Otherwise, clients with a third-party certificate would also be allowed to relay. Specify "tls_append_default_CA = no" when the trusted CA is specified with smtpd_tls_CAfile or smtpd_tls_CApath, to prevent Postfix from appending the system-supplied default CAs. This feature requires "smtpd_tls_ask_ccert = yes" and is available with Postfix version 2.2 and later. permit_tls_clientcerts Permit the request when the remote SMTP client certificate fingerprint or public key fingerprint (Postfix 2.9 and later) is listed in $relay_clientcerts. The fingerprint digest algorithm is configurable via the smtpd_tls_fingerprint_digest parameter (hard-coded as md5 prior to Postfix version 2.5). This feature requires "smtpd_tls_ask_ccert = yes" and is available with Postfix version 2.2 and later. Sper ca e ce cauti. On Fri, 18 Nov 2022 at 16:09, <mat.mar...@gmail.com> wrote: > Salut > Vin la voi cu o problema careia nu ii gasesc raspuns , mai ales tinand cont > de constrangerile de securitate din ziua de azi. > Practic vreau ca toate mailurile din tenant-ul de O365 sa plece print-un > server de postfix. > > Tinand cont ca nu vreau sa permit toate clasele M$ ca si allowed_relay sau > mentine liste cu adresele senderilor , ce optiuni as mai avea? > > Multumesc, > Marius > _______________________________________________ > RLUG mailing list > RLUG@lists.lug.ro > http://lists.lug.ro/mailman/listinfo/rlug_lists.lug.ro > > _______________________________________________ RLUG mailing list RLUG@lists.lug.ro http://lists.lug.ro/mailman/listinfo/rlug_lists.lug.ro
