Topic: Allowed FROM address with a different logged in user
==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (0.9.4):
- Deployed with iRedMail Easy or the downloadable installer?
- Linux/BSD distribution name and version: Ubuntu 16.04
- Store mail accounts in which backend (MySQL):
- Web server (Apache):
- Manage mail accounts with iRedAdmin-Pro?
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====
Hello Guys,
A couple of days ago i had some problems that email users where able to send from random@nonexistingdomain.abc to anyone.
ZhangHuangbin adviced to enable the plugin "reject_sender_login_mismatch", which helped to prevent that users can send email with non existing FROM users. The only problem now is that a authenticated user "example: validmail@validdomain.com" in SSMTP (small program_ cannot send with a different FROM email like "secondexistingemail@secondexistingdomain.com", which is also existing in de alias list. In this case i am getting the message: "REJECT Sender login mismatch"
Question: Is it possible to login with a an existing alias email and send with different FROM domain which exist in the alias list.
My current configuration is:
Main.cf
# HELO restriction
smtpd_helo_required = yes
smtpd_helo_restrictions =
permit_mynetworks
permit_sasl_authenticated
reject_non_fqdn_helo_hostname
reject_invalid_helo_hostname
check_helo_access pcre:/etc/postfix/helo_access.pcre
# Sender restrictions
smtpd_sender_restrictions =
reject_unknown_sender_domain
reject_non_fqdn_sender
reject_unlisted_sender
permit_sasl_authenticated
permit_mynetworks
reject_rbl_client zen.spamhaus.org=127.0.0.[2..11]
reject_rbl_client b.barracudacentral.org=127.0.0.2
check_sender_access pcre:/etc/postfix/reject_domains
# Recipient restrictions
smtpd_recipient_restrictions =
reject_unknown_recipient_domain
reject_non_fqdn_recipient
reject_unlisted_recipient
check_policy_service inet:127.0.0.1:7777
permit_mynetworks
permit_sasl_authenticated
reject_unauth_destination
reject_unlisted_sender
reject_rbl_client zen.spamhaus.org=127.0.0.[2..11]
reject_rbl_client b.barracudacentral.org=127.0.0.2
check_sender_access pcre:/etc/postfix/reject_domains
Enabled Iredapd plugins:
plugins = ["reject_null_sender", "greylisting", "throttle", "amavisd_wblist", "sql_alias_access_policy"]
Hopefully someone can help me out.
----
Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.