steffen: server/kolab/kolab kolab.schema, 1.16, 1.17 kolab_smtpdpolicy, 1.10, 1.11
cvs at intevation.de
cvs at intevation.de
Mon Aug 9 18:11:04 CEST 2004
Author: steffen
Update of /kolabrepository/server/kolab/kolab
In directory doto:/tmp/cvs-serv22939/kolab/kolab
Modified Files:
kolab.schema kolab_smtpdpolicy
Log Message:
optionally allow unauthenticated smtp clients to send mail from other domains
Index: kolab.schema
===================================================================
RCS file: /kolabrepository/server/kolab/kolab/kolab.schema,v
retrieving revision 1.16
retrieving revision 1.17
diff -u -d -r1.16 -r1.17
--- kolab.schema 16 Jul 2004 17:18:03 -0000 1.16
+++ kolab.schema 9 Aug 2004 16:11:02 -0000 1.17
@@ -626,6 +626,10 @@
NAME 'postfix-enable-virus-scan'
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
+attributetype ( 1.3.6.1.4.1.19414.2.1.508
+ NAME 'postfix-allow-unauthenticated'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 )
+
# imapd specific attributes
attributetype ( 1.3.6.1.4.1.19414.2.1.601
@@ -727,6 +731,7 @@
postfix-relayhost $
postfix-transport $
postfix-enable-virus-scan $
+ postfix-allow-unauthenticated $
cyrus-autocreatequota $
cyrus-quotawarn $
cyrus-autocreatequota $
Index: kolab_smtpdpolicy
===================================================================
RCS file: /kolabrepository/server/kolab/kolab/kolab_smtpdpolicy,v
retrieving revision 1.10
retrieving revision 1.11
diff -u -d -r1.10 -r1.11
--- kolab_smtpdpolicy 3 Aug 2004 23:13:14 -0000 1.10
+++ kolab_smtpdpolicy 9 Aug 2004 16:11:02 -0000 1.11
@@ -131,7 +131,7 @@
my $username = $attr{'sasl_username'};
my $client_addr = $attr{'client_address'};
- mylog($syslog_priority, "Checking sender=\"$sender\", recipient=\"$recip\", username=\"$username\", domains=".join(',', at conf_domain)." permithosts=".join(',', at conf_permithosts)) if $verbose;
+ mylog($syslog_priority, "Checking sender=\"$sender\", recipient=\"$recip\", username=\"$username\", domains=".join(',', at conf_domain)." permithosts=".join(',', at conf_permithosts).", conf_allowunauth=$conf_allowunauth") if $verbose;
#### This should probably be simplifed to
#### reject sender <anything>@domain.tld if the user is
@@ -170,6 +170,17 @@
# LDAP error?
mylog($syslog_priority, "Query returned error: ".$mesg->error ) if $verbose;
}
+ if( $conf_allowunauth ) {
+ # Dont reject mail from other domains
+ $sender =~ /(.*)@(.*)/;
+ my $domain = $2;
+ mylog($syslog_priority, "sender=$sender, domain=$domain") if $verbose;
+ if( !contains( $domain, @conf_domain ) ) {
+ # Ok
+ mylog($syslog_priority, "sending from other domains OK") if $verbose;
+ goto CHECKDISTLIST;
+ }
+ }
# UPS, fake sender
mylog($syslog_priority, "Attempt to fake address $sender") if $verbose;
return "REJECT Invalid sender";
@@ -236,6 +247,7 @@
#
# We don't need getopt() for now.
#
+$conf_allowunauth = 0;
while ($option = shift(@ARGV)) {
if ($option eq "-v") {
$verbose = 1;
@@ -249,6 +261,8 @@
$conf_bindpw = shift(@ARGV);
} elsif ($option eq '-domain') {
push @conf_domain, shift(@ARGV);
+ } elsif ($option eq '-allow-unauth') {
+ $conf_allowunauth = 1;
} elsif ($option eq '-permithosts') {
for my $h (split /\s*,\s*/, shift(@ARGV)) {
push @conf_permithosts, $h;
More information about the commits
mailing list