tom at duncanthrax
Mar 20, 2009, 8:45 AM
Views: 830
Permalink
|
|
[Bug 823] exim does not perform smtp authentication when performing callouts
|
|
------- You are receiving this mail because: -------
You are on the CC list for the bug.
http://bugs.exim.org/show_bug.cgi?id=823
Tom Kistner <tom[at]duncanthrax.net> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |tom[at]duncanthrax.net
Status|NEW |RESOLVED
Resolution| |FIXED
--- Comment #1 from Tom Kistner <tom[at]duncanthrax.net> 2009-03-20 15:45:51 ---
To solve the security problem when routing mail to dynamic addresses, I'd
recommend to use TLS/SSL certificates instead of SMTP AUTH. You probably use
TLS anyway. Check
http://www.exim.org/exim-html-current/doc/html/spec_html/ch30.html
for the hosts_require_tls and tls_verify_certificates options.
(In reply to comment #0)
> Also, I should be able to create a router that "steals" the routing in the case
> of verify to only check that the email address exists locally and not cause
> SMTP callouts.
Check the generic verify_* router options:
http://www.exim.org/exim-html-current/doc/html/spec_html/ch15.html
These can also be inverted by prefixing them with "no_"
("no_verify_recipient"). You can then define a fall-through router that just
accepts (and has verify_only set).
--
Configure bugmail: http://bugs.exim.org/userprefs.cgi?tab=email
--
## List details at http://lists.exim.org/mailman/listinfo/exim-dev Exim details at http://www.exim.org/ ##
|
[Bug 823] exim does not perform smtp authentication when performing callouts
