Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 2 May 2003 20:21:30 +0100
From:      Matthew Seaman <m.seaman@infracaninophile.co.uk>
To:        Mike Hogsett <hogsett@csl.sri.com>
Cc:        questions@freebsd.org
Subject:   Re: Sendmail & Valid users
Message-ID:  <20030502192130.GC14853@happy-idiot-talk.infracaninophile.co.uk>
In-Reply-To: <200305021855.h42ItYCG026151@quarter.csl.sri.com>
References:  <200305021855.h42ItYCG026151@quarter.csl.sri.com>
next in thread | previous in thread | raw e-mail | index | archive | help 

--i7F3eY7HS/tUJxUd
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, May 02, 2003 at 11:55:34AM -0700, Mike Hogsett wrote:

> I have a question regarding sendmail and this list may be able to point me
> in the right direction.
>=20
> What I want is to be able to verify the address in the "MAIL FROM:" during
> the SMTP transaction for domains that this sendmail is responsible for.
>=20
> If they are claiming to be within our domain(s) then the address in "MAIL
> FROM:" should be a valid recipient.

The standard mechanism use to control this sort of thing is the access
DB (/etc/mail/access) -- take a look at

    http://www.sendmail.org/tips/relaying.html

for a good introduction.  There's more that can go into the access
database than is discussed in that page: the canonical reference is
the /usr/share/sendmail/cf/README file.

Now, the access db is usually keyed off the domainname part of an
address: you can do some filtering on whole addresses but it isn't
really a general solution.  If you need finer grained control than the
access DB can give you, you should look into using the sendmail AUTH
mechanism:

    http://www.sendmail.org/~ca/email/auth.html

or even the STARTTLS support:

    http://www.sendmail.org/~ca/email/starttls.html
    http://www.ofb.net/%7Ejheiss/sendmail/tlsandrelay.shtml

	Cheers,

	Matthew

--=20
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey         Marlow
Tel: +44 1628 476614                                  Bucks., SL7 1TH UK

--i7F3eY7HS/tUJxUd
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (FreeBSD)

iD8DBQE+ssU6dtESqEQa7a0RAnIdAJ92aX0dIRZ9fFImC4HuGsGvYWhkdACdEA86
NkyatHn4xZbtj9dd4tK7sGY=
=UJ9V
-----END PGP SIGNATURE-----

--i7F3eY7HS/tUJxUd--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030502192130.GC14853>