Support reject_sender_login_mismatch and smtpd_sender_login_maps
This commit is contained in:
parent
1ef6d31abd
commit
775037b622
|
|
@ -88,6 +88,13 @@ postfix_smtpd_mx_client_restrictions:
|
||||||
- reject_unknown_recipient_domain
|
- reject_unknown_recipient_domain
|
||||||
- reject_unlisted_recipient
|
- reject_unlisted_recipient
|
||||||
|
|
||||||
|
#############################################################################
|
||||||
|
# SMTP sender restrictions
|
||||||
|
#############################################################################
|
||||||
|
postfix_smtpd_sender_restrictions: True
|
||||||
|
postfix_reject_sender_login_mismatch: False
|
||||||
|
postfix_smtpd_sender_login_maps: []
|
||||||
|
postfix_smtpd_additional_sender_restrictions: []
|
||||||
#############################################################################
|
#############################################################################
|
||||||
# SMTP submission server: accepts authenticated clients
|
# SMTP submission server: accepts authenticated clients
|
||||||
#############################################################################
|
#############################################################################
|
||||||
|
|
|
||||||
|
|
@ -616,16 +616,33 @@ broken_sasl_auth_clients = yes
|
||||||
# Block clients that speak too early.
|
# Block clients that speak too early.
|
||||||
smtpd_data_restrictions = reject_unauth_pipelining
|
smtpd_data_restrictions = reject_unauth_pipelining
|
||||||
{% endif %}
|
{% endif %}
|
||||||
|
{% if postfix_reject_sender_login_mismatch %}
|
||||||
|
smtpd_sender_login_maps
|
||||||
|
{% for login_map in postfix_smtpd_sender_login_maps %}
|
||||||
|
{{ login_map }}
|
||||||
|
{% endfor %}
|
||||||
|
|
||||||
|
{% endif %}
|
||||||
|
|
||||||
{% if postfix_smtpd_reject_unknown_helo_hostname %}
|
{% if postfix_smtpd_reject_unknown_helo_hostname %}
|
||||||
# Don't talk to mail systems that don't know their own hostname. Use with care: it breaks most dialup setups
|
# Don't talk to mail systems that don't know their own hostname. Use with care: it breaks most dialup setups
|
||||||
smtpd_helo_restrictions = reject_unknown_helo_hostname
|
smtpd_helo_restrictions = reject_unknown_helo_hostname
|
||||||
{% endif %}
|
{% endif %}
|
||||||
{% if postfix_reject_unknown_sender_domain %}
|
{% if postfix_smtpd_sender_restrictions %}
|
||||||
# Don't accept mail from domains that don't exist.
|
# Do not accept everything
|
||||||
smtpd_sender_restrictions =
|
smtpd_sender_restrictions =
|
||||||
|
{% if postfix_reject_unknown_sender_domain %}
|
||||||
reject_unknown_sender_domain
|
reject_unknown_sender_domain
|
||||||
reject_non_fqdn_sender
|
reject_non_fqdn_sender
|
||||||
{% endif %}
|
{% endif %}
|
||||||
|
{% if postfix_reject_sender_login_mismatch %}
|
||||||
|
reject_sender_login_mismatch
|
||||||
|
{% endif %}
|
||||||
|
{% for rule in postfix_smtpd_additional_sender_restrictions %}
|
||||||
|
{{ rule }}
|
||||||
|
{% endfor %}
|
||||||
|
{% endif %}
|
||||||
|
|
||||||
{% if postfix_submission_server %}
|
{% if postfix_submission_server %}
|
||||||
# Relay control: local clients and
|
# Relay control: local clients and
|
||||||
# authenticated clients may specify any destination domain.
|
# authenticated clients may specify any destination domain.
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue