Menu
▾
▴
[SM-USERS] Force SASL-auth when sending mail
|
From: Nikolaos M. <nm...@no...> - 2012-11-06 22:20:55
|
Hi,
I am using v1.4.22 on CentOS 5.8 (x86_64).
Currently, when sending mail from SM, it uses the following setup
(config/config.php):
$useSendmail = true;
$smtpServerAddress = 'localhost';
$smtpPort = 587;
$sendmail_path = '/usr/sbin/sendmail';
$sendmail_args = '-i -t';
$pop_before_smtp = false;
$pop_before_smtp_host = '';
Here is a typical session, as logged by Postfix:
Nov 4 21:43:11 mailserver postfix/pickup[17587]: C58DC6D6771: uid=48
from=<us...@ex...>
Nov 4 21:43:11 mailserver postfix/cleanup[18472]: C58DC6D6771:
message-id=<491...@ma...>
Nov 4 21:43:11 mailserver opendkim[5402]: C58DC6D6771: DKIM-Signature
header added (s=default, d=example.com)
Nov 4 21:43:13 mailserver postfix/qmgr[25488]: C58DC6D6771:
from=<us...@ex...>, size=799, nrcpt=1 (queue active)
Nov 4 21:43:21 mailserver postfix/pipe[18491]: C58DC6D6771:
to=<us...@ex...>, relay=dovecot, delay=16, delays=8.9/0.017/0/7.3,
dsn=2.0.0, status=sent (delivered via dovecot service)
Nov 4 21:43:21 mailserver postfix/qmgr[25488]: C58DC6D6771: removed
So, in essence, SM directly feeds Postfix (through "pickup").
Can we configure SM to explicitly use SMTP SASL-auth (using
username/password of the logged-in user) when sending each and every
email message?
Doing so, we would be able to distinguish between sending users (since
they will be SASL-authenticated)and enforcevarious limitations based on
their identity at the SMTP level (e.g. using postfwd). Currently, there
is no way to tell who was the user who submitted a mail, since the
senderaddress should not be the definitive criterion (while the client
is always 127.0.0.1).
I am aware of "Restrict Senders" plugin, which provides a solution, but
-as mentioned in the plugin description- it is not the suggested one.
Any advice regarding the issue will be appreciated.
Thanks and regards,
Nick
|