Policy filter applied from command line

• Previous message: mouss: "Re: Postfix (virtual) and Mailman, Invalid user specified."
• Next in thread: Wietse Venema: "Re: Policy filter applied from command line"
• Maybe reply: Wietse Venema: "Re: Policy filter applied from command line"
• Maybe reply: Brian Evans - Postfix List: "Re: Policy filter applied from command line"
• Maybe reply: Tony Holmes: "Re: Policy filter applied from command line"
• Maybe reply: Tony Holmes: "Re: Policy filter applied from command line"
• Maybe reply: mouss: "Re: Policy filter applied from command line"
• Maybe reply: Tony Holmes: "Re: Policy filter applied from command line"
• Maybe reply: mouss: "Re: Policy filter applied from command line"
• Maybe reply: Wietse Venema: "Re: Policy filter applied from command line"
• Maybe reply: Wietse Venema: "Re: Policy filter applied from command line"
• Maybe reply: Tony Holmes: "Re: Policy filter applied from command line"
• Maybe reply: Wietse Venema: "Re: Policy filter applied from command line"
• Maybe reply: Tony Holmes: "Re: Policy filter applied from command line"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

My google-fu has failed me.

I have a FreeBSD 7 system for hosting php for various users on it.
I wish to allow the php mail() function to work but to aslo prevent
spam and enforce an outgoing quota. I have replaced the default sendmail
command and am including my own wrapper to ensure the from address is
being set correctly so that the policy server (postfix-policyd-sf).

The wrapper I wrote uses the sendmail compatibility with -t so that it
pulls the from/to from the email body itself.

The pertinent line in my main.cf is:

smtpd_sender_restrictions =
        check_sender_access hash:/usr/local/etc/postfix/cwahi_net-allowed
        check_policy_service inet:216.18.117.19:10031
        reject

/usr/local/etc/postfix/cwahi_net-allowed:
root PERMIT

So basically, I don't trust anyone on the system, but I want root to be
able to send (it goes to a relayhost) so that I get my nightly cron jobs,
etc. Everyone else can only send if the policy service allows it.

However, the policy service is never checked.

I set mynetwork= since I don't even want to trust myself, but no go.

I have to be missing something obvious, but I'm not sure what.

Pointers?

-- 
Tony Holmes
Ph: (416) 993-1219
Founder and Senior Systems Architect
Crosswinds Internet Communications Inc.

• Previous message: mouss: "Re: Postfix (virtual) and Mailman, Invalid user specified."
• Next in thread: Wietse Venema: "Re: Policy filter applied from command line"
• Maybe reply: Wietse Venema: "Re: Policy filter applied from command line"
• Maybe reply: Brian Evans - Postfix List: "Re: Policy filter applied from command line"
• Maybe reply: Tony Holmes: "Re: Policy filter applied from command line"
• Maybe reply: Tony Holmes: "Re: Policy filter applied from command line"
• Maybe reply: mouss: "Re: Policy filter applied from command line"
• Maybe reply: Tony Holmes: "Re: Policy filter applied from command line"
• Maybe reply: mouss: "Re: Policy filter applied from command line"
• Maybe reply: Wietse Venema: "Re: Policy filter applied from command line"
• Maybe reply: Wietse Venema: "Re: Policy filter applied from command line"
• Maybe reply: Tony Holmes: "Re: Policy filter applied from command line"
• Maybe reply: Wietse Venema: "Re: Policy filter applied from command line"
• Maybe reply: Tony Holmes: "Re: Policy filter applied from command line"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]