Неворотин Вадим a écrit :
Cool)) But then how to combine permit_sasl_authenticated and
permit_tls_clientcerts? The purpose is to allow send mails only for
users with valid certificate and valid login+password)))
smtpd_client_restrictions =
permit_mynetworks
reject
* Неворотин Вадим nevoro...@gmail.com:
I need to allow to send mails throw my Postfix SMTP server only for
users from mynetwork with valid SMTP authentication. But I can't
understand how to combine two permissions in smtp_recipient_restriction
options: permit_mynetworks and
* Ralf Hildebrandt ralf.hildebra...@charite.de:
You need restriction classes for that :)
I suck. I left out the restriction classes...
smtp_recipient_restriction =
permit_mynetworks
permit_sasl_authenticated
smtpd_recipient_restriction =
check_client_access
* Неворотин Вадим nevoro...@gmail.com:
Cool)) But then how to combine permit_sasl_authenticated and
permit_tls_clientcerts? The purpose is to allow send mails only for users
with valid certificate and valid login+password)))
Phew. Dunno.
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung
Mmm... Unfortunatelly, I can't understand how combine
permit_sasl_authenticated and permit_tls_clientcerts with access_maps.
Because this maps look like client - action, but I can't write in client
field something like sasl_autentificated
2010/2/12 Ralf Hildebrandt ralf.hildebra...@charite.de
*
* Неворотин Вадим nevoro...@gmail.com:
Mmm... Unfortunatelly, I can't understand how combine
permit_sasl_authenticated and permit_tls_clientcerts with access_maps.
You can't, since both return PERMIT
--
Ralf Hildebrandt
Geschäftsbereich IT | Abteilung Netzwerk
Charité -
* Ralf Hildebrandt ralf.hildebra...@charite.de:
* Неворотин Вадим nevoro...@gmail.com:
Mmm... Unfortunatelly, I can't understand how combine
permit_sasl_authenticated and permit_tls_clientcerts with access_maps.
You can't, since both return PERMIT
One idea would be to use a policy daemon.
Ok, well, now I decide not to allow connections not from my internal
network. But I was really surprised that I can't fully operate with
different clients identification information.
Where can I write feature request?))) It will be good to add state values
(something like $is_from_mynetwork,
* Неворотин Вадим nevoro...@gmail.com:
Ok, well, now I decide not to allow connections not from my internal
network. But I was really surprised that I can't fully operate with
different clients identification information.
Where can I write feature request?))) It will be good to add state
On 2/12/2010 5:27 AM, Неворотин Вадим wrote:
Ok, well, now I decide not to allow connections not from my internal
network. But I was really surprised that I can't fully operate with
different clients identification information.
Where can I write feature request?))) It will be good to add state
I need to allow to send mails throw my Postfix SMTP server only for users
from mynetwork with valid SMTP authentication. But I can't understand how to
combine two permissions in smtp_recipient_restriction options:
permit_mynetworks and permit_sasl_authenticated.
If I write
11 matches
Mail list logo
