Email question

James Wilkinson james at westexe.demon.co.uk
Tue Aug 3 12:34:17 UTC 2004


Alexander Dalloz wrote:
> Second part of your mail: if you relay based on SMTP AUTH then there is
> no IP database allowed for relaying. That is the sense of SMTP AUTH.
> Anyone with a valid username/password for auth can relay through the
> MTA.

It is, of course, possible to relay based on SMTP AUTH via an MTA
running as an MSA (message *submission* agent) on port 587, as detailed
in RFC 2476.

This has the advantage that your relaying is seperated from your normal
send and receive MTA. It means you can firewall the MSA how you like (so
you can have your IP database implemented through iptables), and run
much more restrictive policies.

You can still use localhost as your smarthost, so outgoing authenticated
e-mails go through the same MTA.

James.
-- 
E-mail address: james@ | I learnt the rules of rugby. There is only one rule.
westexe.demon.co.uk    | "Skip it by any means necessary".





More information about the fedora-list mailing list