Re: postfix security configuration
On Sun, 10 Aug 2003 at 10:26:16 +0000, Fallen Angel wrote:
>
> my config:
> debian stable 3.0r1
> postfix
> qpopper
>
> I have a small problem:
>
> my smtp after pop3 configuration works fine, no open relay possible, but
> the authentificated users can fake their own e-mail address.
>
> How can I stop it, so they can only use the adress which were set up for
> them.
>
> thx for help
>
> Konstantin
If you want to prevent them from using non existing sender addresses
from your domain, you can do it by creating a file (lookup table) for
postmap(1), containing all allowed addresses with "OK" and another
table containing your domainname with "REJECT".
If you want to prevent them from using sender addresses from other
domain, it's also possible with properly prepared config.
If you want to prevent them from using other (not their own) sender
addresses from your domain, you must use SMTP AUTH, I'm afraid.
--
Tomasz Papszun SysAdm @ TP S.A. Lodz, Poland | And it's only
tomek@lodz.tpsa.pl http://www.lodz.tpsa.pl/ | ones and zeros.
Reply to: