- Previous message: Wietse Venema: "Re: duplicate delivery elimination"
- Maybe in reply to: Rich Wales: "Verifying sender address on locally submitted mail?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
|
|
|
From: Wietse Venema (no email)
Date: Tue Nov 01 2005 - 07:19:54 EST
Rich Wales:
> My home mail server requires SASL authentication in order to submit
> an outgoing message.
>
> Is there a way for me to require the sender's address to match the
> authenticated value? For example, if a user authenticates himself
> as "fred" on smtpserver.example.tld, I would want to accept =only=
> mail for which the MAIL FROM: address is "".
In postconf(5), look for the following:
smtpd_sender_login_maps
reject_authenticated_sender_login_mismatch
reject_sender_login_mismatch
> If possible, I'd like to go one step further and also require that
> the address in the "From:" header line should match the authenticated
> user's identity. Is this possible? (I realize such a restriction
> could only be enforced after a DATA command has been issued and the
> actual message has been received.)
Sorry, not possible. It also won't "verify" the "pretty name"
in the From: address, such as:
From: PayPal <>
Wietse
> I realize that doing either or both of these things will not, in
> and of itself, block all forgery of mail -- but I'd still like to
> be able to do it if there's a way.
>
> Rich Wales
> Palo Alto, CA, USA
>
>
>
|
|
|