View Single Post
  #2  
Old 23rd October 2005, 14:20
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,749 Times in 2,579 Posts
Default

Quote:
relay_domains

the variable relay_domains specifies with which domains the sending of emails is allowedd. AS far as I unerstand if we set it to relay_domains = $mydestination there is no faking of email addresses possible?
As long as the user has a valid username and password for SMTP-AUTH or is sending directly from the server (e.g. with webmail) or sends a mail to a recipient on the server he can use whatever sender address he likes. You cannot prevent the user from faking the sender address.

Quote:
I inserted these entries additionally, as they seemed "logical" to me. Any problems with that?
delay_warning_time = 4h
maximal_queue_lifetime = 5d
No.

Quote:
what about these settings? too paranoid?
smtpd_recipient_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_destination,
reject_invalid_hostname,
reject_unknown_hostname,
reject_unknown_sender_domain,
reject_unknown_recipient_domain,
I'd try it for a few days and then check if too many valid emails have been rejected.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote