Re: relaying by domain
Have you considered authenticated SMTP? That way clients would have to I hadn't. Thanks. I will look into it as well.
Re: relaying by domain
As you have noted, it's a terrible idea but if you insist http://www.palomine.net/qmail/relaymailfrom.html [ found from http://www.qmail.org/top.html ] Thanks for this. I am going to try Aaron's suggestion of forcing pop before smtp and inserting the roaming ip for a period if it fails out then I will resort to this last.
Re: relaying by domain
I don't think you've considered all the choices. A POP-before-SMTP solution would be as effective, but much more secure. Try Bruce Guenter's relay-ctrl package, which you can find from a link on www.qmail.org. As was pointed out by another poster. I guess it is because I did not know it was possible for a pop before smtp solution but it definitely a much better solution.
Re: relaying by domain
Well Then U have No option other than using pop b4 smtp :) E ksemat writes: On Wed, 3 Jan 2001 [EMAIL PROTECTED] wrote: Have U tried the rcpthosts file, that shld do the trick. E Systems Engineer Infocom Uganda Limited Tel:077409672 or 075409672 Well if you had looked at my question you could see that I can't possibly put every domain in the world in my rcpthosts file. here is an example: The domain is domain1.co.ug and it is in rcpthosts: telnet smtp.server 25 220 smtp.server ESMTP helo domain1.co.ug 250 smtp.server mail from:[EMAIL PROTECTED] 250 ok rcpt to: [EMAIL PROTECTED] 553 sorry, that domain isn't in my list of allowed rcpt hosts (#5.7.1) Thus you see the recipients would all have to be in rcpt hosts which is just not workable. I am talking about relaying and not acting as a secondary mx for a domain. Systems Engineer Infocom Uganda Limited Tel:077409672 or 075409672
Re: relaying by domain
Actually I have some options including a patch to qmail-smtpd so that it can relay using envelope sender addresses with tarpitting I think this could be reasonably safe. because I can't guarantee that all my users will pop before smtp besides outlook express has an annoying habit of sending queued messages before fetching mail at times. On Thu, 4 Jan 2001 [EMAIL PROTECTED] wrote: Well Then U have No option other than using pop b4 smtp :) E ksemat writes: On Wed, 3 Jan 2001 [EMAIL PROTECTED] wrote: Have U tried the rcpthosts file, that shld do the trick. E Systems Engineer Infocom Uganda Limited Tel:077409672 or 075409672 Well if you had looked at my question you could see that I can't possibly put every domain in the world in my rcpthosts file. here is an example: The domain is domain1.co.ug and it is in rcpthosts: telnet smtp.server 25 220 smtp.server ESMTP helo domain1.co.ug 250 smtp.server mail from:[EMAIL PROTECTED] 250 ok rcpt to: [EMAIL PROTECTED] 553 sorry, that domain isn't in my list of allowed rcpt hosts (#5.7.1) Thus you see the recipients would all have to be in rcpt hosts which is just not workable. I am talking about relaying and not acting as a secondary mx for a domain. Systems Engineer Infocom Uganda Limited Tel:077409672 or 075409672
Re: relaying by domain
Have you considered authenticated SMTP? That way clients would have to verify themselves each time they sent out a message, similar to the POP login procedure. There is a very good patch for qmail that enables the ESMTP AUTH command, written by Krzysztof Dabrowski, available at www.qmail.org/top.html. Personally I think that ESMTP AUTH is a much cleaner way of doing things than SMTP-after-POP, and most major mail clients support it, including Outlook and Outlook Express. ---Kris
relaying by domain
Hello everyone, Sorry for putting this on the list if it has already been answered however I checked the archives and failed to get an answer to it and although I have read 5.4 in the FAQ it does not help me much. I am using tcpserver and I have set up qmail and done relaying as instructed in the FAQ however the /etc/tcp.smtp file only accepts realying by ip address yet I would like to do it by domain name i.e I have say domain.org hosted by my server and I want the users for this domain to use my server as their smtp server however their ips keep changing and they wander a lot thus I would like to relay by domain kind of the equivalent of relay-domains in sendmail. i.e as long as the from line is [EMAIL PROTECTED] then my server should allow relaying for that domain. I know the dangers but I really have no choice in this matter. Please help. I have tried putting domain names in the place of ips in /etc/tcp.smtp but it has not worked. regards, Sematmba Noah [EMAIL PROTECTED]
Re: relaying by domain
Have U tried the rcpthosts file, that shld do the trick. E ksemat writes: Hello everyone, Sorry for putting this on the list if it has already been answered however I checked the archives and failed to get an answer to it and although I have read 5.4 in the FAQ it does not help me much. I am using tcpserver and I have set up qmail and done relaying as instructed in the FAQ however the /etc/tcp.smtp file only accepts realying by ip address yet I would like to do it by domain name i.e I have say domain.org hosted by my server and I want the users for this domain to use my server as their smtp server however their ips keep changing and they wander a lot thus I would like to relay by domain kind of the equivalent of relay-domains in sendmail. i.e as long as the from line is [EMAIL PROTECTED] then my server should allow relaying for that domain. I know the dangers but I really have no choice in this matter. Please help. I have tried putting domain names in the place of ips in /etc/tcp.smtp but it has not worked. regards, Sematmba Noah [EMAIL PROTECTED] Systems Engineer Infocom Uganda Limited Tel:077409672 or 075409672
Re: relaying by domain
On Wed, Jan 03, 2001 at 06:32:14PM +0300, ksemat wrote: instructed in the FAQ however the /etc/tcp.smtp file only accepts realying by ip address yet I would like to do it by domain name i.e As you have noted, it's a terrible idea but if you insist http://www.palomine.net/qmail/relaymailfrom.html [ found from http://www.qmail.org/top.html ] james -- James Raftery (JBR54) "Managing 4000 customer domains with BIND has been a lot like herding cats." - Mike Batchelor, on [EMAIL PROTECTED]
Re: relaying by domain
ksemat [EMAIL PROTECTED] wrote: I am using tcpserver and I have set up qmail and done relaying as instructed in the FAQ however the /etc/tcp.smtp file only accepts realying by ip address yet I would like to do it by domain name [...] I know the dangers but I really have no choice in this matter. I don't think you've considered all the choices. A POP-before-SMTP solution would be as effective, but much more secure. Try Bruce Guenter's relay-ctrl package, which you can find from a link on www.qmail.org. Charles -- --- Charles Cazabon[EMAIL PROTECTED] GPL'ed software available at: http://www.qcc.sk.ca/~charlesc/software/ Any opinions expressed are just that -- my opinions. ---
Re: relaying by domain
Sorry for putting this on the list if it has already been answered however I checked the archives and failed to get an answer to it and although I have read 5.4 in the FAQ it does not help me much. I am using tcpserver and I have set up qmail and done relaying as instructed in the FAQ however the /etc/tcp.smtp file only accepts realying by ip address yet I would like to do it by domain name i.e I have say domain.org hosted by my server and I want the users for this domain to use my server as their smtp server however their ips keep changing and they wander a lot thus I would like to relay by domain kind of the equivalent of relay-domains in sendmail. i.e as long as the from line is [EMAIL PROTECTED] then my server should allow relaying for that domain. I know the dangers but I really have no choice in this matter. Please help. I have tried putting domain names in the place of ips in /etc/tcp.smtp but it has not worked. What you are proposing is impossible, because you are confusing IP/RDNS with the users envelope-sender which cant be detected with TCPSERVER. Besides you do NOT want use the envelope-sender as a relay authenticator, TRUST ME! Far better solution is to search the archives for other more reliable methods, some of them is found here http://www.palomine.net/qmail/relaying.html and this document is worth reading to get a better perspective on relaying. If you still will not listen to reason, there are patches to qmail-smtpd that I believe do just what you want is also included in on this page :) MVH André Paulsberg
