From owner-freebsd-questions@FreeBSD.ORG  Thu Dec  7 21:33:13 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 68B9C16A522
	for <freebsd-questions@freebsd.org>;
	Thu,  7 Dec 2006 21:33:13 +0000 (UTC) (envelope-from cswiger@mac.com)
Received: from smtpout.mac.com (smtpout.mac.com [17.250.248.185])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 65DD343E62
	for <freebsd-questions@freebsd.org>;
	Thu,  7 Dec 2006 21:31:18 +0000 (GMT) (envelope-from cswiger@mac.com)
Received: from mac.com (smtpin05-en2 [10.13.10.150])
	by smtpout.mac.com (Xserve/8.12.11/smtpout15/MantshX 4.0) with ESMTP id
	kB7LWAbU010042; Thu, 7 Dec 2006 13:32:11 -0800 (PST)
Received: from [17.214.13.96] (a17-214-13-96.apple.com [17.214.13.96])
	(authenticated bits=0)
	by mac.com (Xserve/smtpin05/MantshX 4.0) with ESMTP id kB7LW53C017031; 
	Thu, 7 Dec 2006 13:32:06 -0800 (PST)
In-Reply-To: <506770.29245.qm@web25221.mail.ukl.yahoo.com>
References: <506770.29245.qm@web25221.mail.ukl.yahoo.com>
Mime-Version: 1.0 (Apple Message framework v752.2)
Content-Type: text/plain; charset=US-ASCII; delsp=yes; format=flowed
Message-Id: <BFF120CD-3B03-4192-B169-229BCA95C5D2@mac.com>
Content-Transfer-Encoding: 7bit
From: Chuck Swiger <cswiger@mac.com>
Date: Thu, 7 Dec 2006 13:32:04 -0800
To: Efren Bravo <efrenba@yahoo.es>
X-Mailer: Apple Mail (2.752.2)
X-Brightmail-Tracker: AAAAAA==
X-Brightmail-scanned: yes
Cc: freeBSD <freebsd-questions@freebsd.org>
Subject: Re: Sendmail - restrict some users.
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Dec 2006 21:33:13 -0000

On Dec 7, 2006, at 12:51 PM, Efren Bravo wrote:
> Which feature of Sendmail can I use to prohibit
> an local user to send and to receive mails?
>
> For intance:
>
> jhon receive from *.cu only
>      send    to *.cu and *.domain.com

While it is possible to prevent a user from sending mail at all, it  
is not easily possible to permit them to send mail, but only to a  
limited set of domains, using the normal mechanisms.  While you can  
write your own LOCAL_RULESETS to accomplish the goal, anyone with a  
smidgen of clue could work around such a restriction by forging email  
as if it came from another user.

In other words, you're describing a social problem which should be  
enforced by getting the user to agree to use email only for  
legitimate purposes, and by monitoring their usage by checking the  
mail logfiles to ensure they don't abuse email by sending to  
inappropriate domains.

-- 
-Chuck