Hello,
The way MTAs work, relaying can be configured to allow or not certain hosts to relay emails using the server. However after searching for quite a few days, I found no way to prevent user1@trustedhost.com from impersonating user2@trustedhost.com. The way I understand it, sendmail would allow the user to relay the email (which is what I call internal spoofing).
I'd be very surprised if no milter or mailer configuration already existed to address this concern which is why I am asking. Maybe I am not searching using the right keywords as I am not sure if this problem has a specific technical name.
The ideal behavior I am after is that virtusertable be used to determine whether or not a user is allowed to relay an email using the from/sender address he is trying to use. So the virtusertable would be used in the opposite direction for outgoing emails. I hope this makes sense.
Could someone please comment / point in the right direction?
Thanks!
The way MTAs work, relaying can be configured to allow or not certain hosts to relay emails using the server. However after searching for quite a few days, I found no way to prevent user1@trustedhost.com from impersonating user2@trustedhost.com. The way I understand it, sendmail would allow the user to relay the email (which is what I call internal spoofing).
I'd be very surprised if no milter or mailer configuration already existed to address this concern which is why I am asking. Maybe I am not searching using the right keywords as I am not sure if this problem has a specific technical name.
The ideal behavior I am after is that virtusertable be used to determine whether or not a user is allowed to relay an email using the from/sender address he is trying to use. So the virtusertable would be used in the opposite direction for outgoing emails. I hope this makes sense.
Could someone please comment / point in the right direction?
Thanks!