antispoofing with dovecot submission
Hi, it is possible to do antispoofing, like reject_authenticated_sender_login_mismatch from postfix ?
Hi, it is possible to do antispoofing, like reject_authenticated_sender_login_mismatch from postfix ?
it is possible to do antispoofing, like reject_authenticated_sender_login_mismatch from postfix ?
I could be wrong, but i believe dovecot submission is only a proxy to postfix submission. Dovecot does not directly delivery mail to the world. Meaning the mail is still passing through postfix and reject_authenticated_sender_login_mismatch would still be applied.
My follow up question would be does dovecot queue the mail or proxy it live? If postfix rejected the submission based on something like reject_authenticated_sender_login_mismatch does the email client get sent the error live by dovecot submission, or would a type of backscatter bounce be created between postfix and dovecot?
On 14/03/2024 17:28 EET dovecot--- via dovecot <dovecot@dovecot.org> wrote:
it is possible to do antispoofing, like reject_authenticated_sender_login_mismatch from postfix ?
I could be wrong, but i believe dovecot submission is only a proxy to postfix submission. Dovecot does not directly delivery mail to the world. Meaning the mail is still passing through postfix and reject_authenticated_sender_login_mismatch would still be applied.
My follow up question would be does dovecot queue the mail or proxy it live? If postfix rejected the submission based on something like reject_authenticated_sender_login_mismatch does the email client get sent the error live by dovecot submission, or would a type of backscatter bounce be created between postfix and dovecot?
Dovecot submission is only a relay. It will not queueing or anything like that, it always requires a live, functional MTA to back it up. If MTA does not reject the mail during sending, then what happens next is up to the MTA.
Aki
On 15-03-2024 08:10, Aki Tuomi via dovecot wrote:
On 14/03/2024 17:28 EET dovecot--- via dovecot <dovecot@dovecot.org> wrote:
it is possible to do antispoofing, like reject_authenticated_sender_login_mismatch from postfix ?
I could be wrong, but i believe dovecot submission is only a proxy to postfix submission. Dovecot does not directly delivery mail to the world. Meaning the mail is still passing through postfix and reject_authenticated_sender_login_mismatch would still be applied.
Indeed it does, I use this exact configuration and it works as expected.
- Kees.
My follow up question would be does dovecot queue the mail or proxy it live? If postfix rejected the submission based on something like reject_authenticated_sender_login_mismatch does the email client get sent the error live by dovecot submission, or would a type of backscatter bounce be created between postfix and dovecot?
Dovecot submission is only a relay. It will not queueing or anything like that, it always requires a live, functional MTA to back it up. If MTA does not reject the mail during sending, then what happens next is up to the MTA.
Aki
dovecot mailing list -- dovecot@dovecot.org To unsubscribe send an email to dovecot-leave@dovecot.org
participants (4)
-
Adrian M
-
Aki Tuomi
-
dovecot@ptld.com
-
Kees van Vloten