[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

RE: Sendmail & access restrictions

Here some straightforward methods for sendmail:

You want to restrict to some IP's?

local-host-names:
10.0.0
192.168
127.1.2.3
...

(You don't need sendmailconfig here!)

Or to authenticated users?
http://lists.debian.org/debian-isp/2004/debian-isp-200402/msg00267.html

Christian


-----Original Message-----
From: Stephen Gran [mailto:steve@lobefin.net]On Behalf Of Stephen Gran
Sent: Thursday, March 25, 2004 2:23 AM
To: debian-isp@lists.debian.org
Subject: Re: Sendmail & access restrictions

...
Ah, I see the problem - it's not _relaying_ alone I want to reject
(we've got the auth part straightened out already, and we're not an open
relay).  What I want to do is not accept mail unless it comes from one
of a few IP's, or is authenticated.  Say the domain is foo.com, and this
servers hostname is mail.foo.com.  It is not listed as an MX record, so
no legitimate emails should ever arrive there, only spams and viruses
and whatnot.  However, any mail that arrives for user@mail.foo.com is
accepted, since sendmail knows that it _is_ mail.foo.com.  I want to
reject these, and only accept mail that is authed, or coming in through
one of the frontend machines.  I can't just do it with iptables, because
of the roaming users.

-- 
 -----------------------------------------------------------------
|   ,''`.					     Stephen Gran |
|  : :' :					 sgran@debian.org |
|  `. `'			Debian user, admin, and developer |
|    `-					    http://www.debian.org |
 -----------------------------------------------------------------
Reply to: