Policy filter applied from command line

From: Tony Holmes (no email)
Date: Mon Aug 18 2008 - 13:29:51 EDT

  • Next message: Wietse Venema: "Re: Policy filter applied from command line"

    My google-fu has failed me.

    I have a FreeBSD 7 system for hosting php for various users on it.
    I wish to allow the php mail() function to work but to aslo prevent
    spam and enforce an outgoing quota. I have replaced the default sendmail
    command and am including my own wrapper to ensure the from address is
    being set correctly so that the policy server (postfix-policyd-sf).

    The wrapper I wrote uses the sendmail compatibility with -t so that it
    pulls the from/to from the email body itself.

    The pertinent line in my main.cf is:

    smtpd_sender_restrictions =
            check_sender_access hash:/usr/local/etc/postfix/cwahi_net-allowed
            check_policy_service inet:216.18.117.19:10031
            reject

    /usr/local/etc/postfix/cwahi_net-allowed:
    root PERMIT

    So basically, I don't trust anyone on the system, but I want root to be
    able to send (it goes to a relayhost) so that I get my nightly cron jobs,
    etc. Everyone else can only send if the policy service allows it.

    However, the policy service is never checked.

    I set mynetwork= since I don't even want to trust myself, but no go.

    I have to be missing something obvious, but I'm not sure what.

    Pointers?

    -- 
    Tony Holmes
    Ph: (416) 993-1219
    Founder and Senior Systems Architect
    Crosswinds Internet Communications Inc.
    

  • Next message: Wietse Venema: "Re: Policy filter applied from command line"





    Hosted Email Solutions

    Invaluement Anti-Spam DNSBLs



    Powered By FreeBSD   Powered By FreeBSD