1

Topic: Allow Sender Login Mismatch for One Domain

==== REQUIRED BASIC INFO OF YOUR IREDMAIL SERVER ====
- iRedMail version (check /etc/iredmail-release): 1.1
- Deployed with iRedMail Easy or the downloadable installer? Downloadable
- Linux/BSD distribution name and version: Debian 9
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): LDAP
- Web server (Apache or Nginx): Nginx
- Manage mail accounts with iRedAdmin-Pro? Yes, 4.3
- [IMPORTANT] Related original log or error message is required if you're experiencing an issue.
====

One of my domains uses frequently generated addresses to send reports.
I would like this domain to use one single smtp login for any addresses on this domain.

I do not want to (allow sender login mismatch) because I assume this will allow any address
from any domain on the server to use one set of credentials to authenticate smtp.

I'm also working under the assumption this is the issue based on the following error:
554 5.7.1 <abcdefg@example.com>: Recipient address rejected: Sender is not same as SMTP authenticate username (in reply to RCPT TO command))

Thanks for reading!

2

Re: Allow Sender Login Mismatch for One Domain

Add parameter "ALLOWED_LOGIN_MISMATCH_SENDERS" in /opt/iredapd/settings.py and list the smtp username or the entire sender domain you want to allow sender login mismatch like this:

ALLOWED_LOGIN_MISMATCH_SENDERS = ["user@domain.com", "domain.com"]

Restarting iredapd service is required after change.
Note: it's better to allow only the smtp username, not the entire domain. But it's all up to your demand. smile

----

Does my reply help a little? How about buying me a cup of coffee ($5) as an encouragement?

buy me a cup of coffee

3

Re: Allow Sender Login Mismatch for One Domain

Thank you for the reply!

I 'll go with adding the relay username. 
My only concern is if those credentials become compromised, will any domain be allowed to send emails using those credentials? or just the domain that the username is located in?

4

Re: Allow Sender Login Mismatch for One Domain

Listed user ("user@domain.com") or anyone under listed domain ("domain.com") will be able to send email as ANY sender address, including sender addresses which are not hosted on your server. e.g. xxx@gmail.com.

----

Does my reply help a little? How about buying me a cup of coffee ($5) as an encouragement?

buy me a cup of coffee