]>
Commit | Line | Data |
---|---|---|
7c7baedf | 1 | # /etc/mail/access |
2 | # Copyright (c) 1998, Richard Nelson <cowboy@debian.org>. | |
3 | # Time-stamp: <1998/10/27 10:00:00 cowboy> | |
4 | # GPL'd config file, please feed any gripes, suggestions, etc. to me | |
5 | # | |
6 | # Function: | |
7 | # Access Control for this smtp server - determines: | |
8 | # * Who we accept mail from | |
9 | # * Who we accept relaying from | |
10 | # * Who we will not send to | |
11 | # | |
12 | # Usage: | |
13 | # FEATURE(access_db[, type [-o] /etc/mail/access])dnl | |
14 | # makemap hash access < access | |
15 | # | |
16 | # Format: | |
17 | # lhs: | |
18 | # email addr <user@[host.domain]> | |
19 | # domain name unless FEATURE(relay_hosts_only) is used, | |
20 | # then this is a fqdn - and relay-domains ($=R) | |
21 | # must also be fqdns. | |
22 | # network number must end on an octet boundary, or | |
23 | # you're stuck going the longwinded way ;-{ | |
24 | # rhs: | |
25 | # OK accept mail even if other rules in the | |
26 | # running ruleset would reject it. | |
27 | # RELAY Allow domain to relay through your SMTP | |
28 | # server. RELAY also serves an implicit | |
29 | # OK for the other checks. | |
30 | # REJECT reject the sender/recipient with a general | |
31 | # purpose message that can be customized. | |
32 | # confREJECT_MSG [550 Access denied] will be issued | |
33 | # DISCARD discard the message completely using | |
34 | # the $#discard mailer. | |
35 | # ### any text where ### is an RFC 821 compliant error code | |
36 | # and "any text" is a message to return for | |
37 | # the command | |
38 | # Examples: | |
39 | # spammer@aol.com REJECT | |
40 | # FREE.STEALTH.MAILER@ 550 Spam not accepted | |
41 | # | |
42 | # Notes: | |
43 | # With FEATURE(blacklist_recipients) this is also possible: | |
44 | # badlocaluser 550 Mailbox disabled for this username | |
45 | # host.mydomain.com 550 That host does not accept mail | |
46 | # user@otherhost.mydomain.com 550 Mailbox disabled for this recipient | |
47 | # | |
48 | # Related: | |
49 | # define(`confREJECT_MSG', `550 Access denied')dnl | |
50 | # define(`confCR_FILE', `-o /etc/mail/relay-domains')dnl <<- $=R | |
51 | # FEATURE(relay_hosts_only)dnl | |
52 | # FEATURE(relay_entire_domain)dnl <<- relays any host in the $=m class | |
53 | # FEATURE(relay_based_on_MX)dnl <<- relaying for boxes MX'd to you | |
54 | # FEATURE(blacklist_recipients)dnl | |
55 | # FEATURE(rbl[,alternate server])dnl | |
56 | # FEATURE(orbs[,alternate server])dnl <<- Debian addition | |
57 | # FEATURE(orca[,alternate server])dnl <<- Debian addition | |
58 | # FEATURE(accept_unqualified_senders)dnl | |
59 | # FEATURE(accept_unresolvable_domains)dnl | |
60 | # | |
61 | # Local addresses 10.x.x.x, 127.x.x.x, 172.16-31.x.x 192.168.x.x can relay | |
62 | # Note Well! You *must* make sure these address can't be spoofed externally | |
63 | 10 RELAY | |
64 | 127 RELAY | |
65 | 172.16 RELAY | |
66 | 172.17 RELAY | |
67 | 172.18 RELAY | |
68 | 172.19 RELAY | |
69 | 172.20 RELAY | |
70 | 172.21 RELAY | |
71 | 172.22 RELAY | |
72 | 172.23 RELAY | |
73 | 172.24 RELAY | |
74 | 172.25 RELAY | |
75 | 172.26 RELAY | |
76 | 172.27 RELAY | |
77 | 172.28 RELAY | |
78 | 172.29 RELAY | |
79 | 172.30 RELAY | |
80 | 172.31 RELAY | |
81 | 192.168 RELAY | |
82 | # | |
83 | # Hosts that are allowed to talk to me | |
84 | # | |
85 | # | |
86 | # Blacklisted users | |
87 | # | |
88 | reject@ REJECT |