New: allow.certain.users.to.send.email.as.different.user.html.
This commit is contained in:
parent
7d3fe28652
commit
e18b5d2fae
|
@ -6,6 +6,7 @@
|
|||
* [Setup DNS records for your iRedMail server](https://bitbucket.org/zhb/docs.iredmail.org/src/default/installation/setup_dns.md)
|
||||
* [Perform silent/unattended iRedMail installation](https://bitbucket.org/zhb/docs.iredmail.org/src/default/installation/unattended.iredmail.installation.md)
|
||||
# How to
|
||||
* [Allow some users to send email as another user](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/0-allow.certain.users.to.send.email.as.different.user.md)
|
||||
* [Change mail attachment size](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/0-change.mail.attachment.size.md)
|
||||
* [Completely disable Amavisd + ClamAV + SpamAssassin](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/0-completely.disable.amavisd.clamav.spamassassin.md)
|
||||
* [Enable SMTPS service (SMTP over SSL, port 465)](https://bitbucket.org/zhb/docs.iredmail.org/src/default/howto/0-enable.smtps.md)
|
||||
|
|
|
@ -0,0 +1,41 @@
|
|||
# Allow some users to send email as another user
|
||||
|
||||
iRedMail configures Postfix to
|
||||
reject the request when sender specifies an owner for the MAIL FROM address
|
||||
(`From:` header), but the client is not (SASL) logged in as that MAIL FROM
|
||||
address owner; or when the client is (SASL) logged in, but the client login
|
||||
name doesn't own the MAIL FROM address.
|
||||
|
||||
Sometimes we do need to send email as another user, this tutorial describes
|
||||
how to allow certain users to do this with iRedAPD plugin
|
||||
`reject_sender_login_mismatch`.
|
||||
|
||||
* Remove `reject_sender_login_mismatch` restriction rule in Postfix
|
||||
setting `smtpd_sender_restrictions` (`/etc/postfix/main.cf`). Out iRedAPD
|
||||
plugin will do the same restriction for you.
|
||||
|
||||
After removed `reject_sender_login_mismatch`, Postfix setting looks like
|
||||
below:
|
||||
|
||||
```
|
||||
smtpd_sender_restrictions = permit_mynetworks, permit_sasl_authenticated
|
||||
```
|
||||
|
||||
* Enable plugin `reject_sender_login_mismatch` in iRedAPD config file
|
||||
`/opt/iredapd/settings.py`:
|
||||
|
||||
```python
|
||||
plugins = ['reject_sender_login_mismatch', ...]
|
||||
```
|
||||
|
||||
* List senders who are allowed to send email as different users in iRedAPD
|
||||
config file `/opt/iredapd/settings.py`, in parameter
|
||||
`ALLOWED_LOGIN_MISMATCH_SENDERS`. For example:
|
||||
|
||||
```python
|
||||
ALLOWED_LOGIN_MISMATCH_SENDERS = ['user1@here.com', 'user2@here.com']
|
||||
```
|
||||
|
||||
NOTE: this parameter does not present by default, please add it manually.
|
||||
|
||||
Restart iRedAPD service. That's all.
|
|
@ -0,0 +1,64 @@
|
|||
<html>
|
||||
<head>
|
||||
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
|
||||
<title>Allow some users to send email as another user</title>
|
||||
<link href="./css/markdown.css" rel="stylesheet"></head>
|
||||
</head>
|
||||
<body>
|
||||
|
||||
<div id="navigation">
|
||||
<a href="http://www.iredmail.org" target="_blank">iRedMail web site</a>
|
||||
|
||||
// <a href="./index.html">Document Index</a>
|
||||
</div><h1 id="allow-some-users-to-send-email-as-another-user">Allow some users to send email as another user</h1>
|
||||
<p>iRedMail configures Postfix to
|
||||
reject the request when sender specifies an owner for the MAIL FROM address
|
||||
(<code>From:</code> header), but the client is not (SASL) logged in as that MAIL FROM
|
||||
address owner; or when the client is (SASL) logged in, but the client login
|
||||
name doesn't own the MAIL FROM address.</p>
|
||||
<p>Sometimes we do need to send email as another user, this tutorial describes
|
||||
how to allow certain users to do this with iRedAPD plugin
|
||||
<code>reject_sender_login_mismatch</code>.</p>
|
||||
<ul>
|
||||
<li>
|
||||
<p>Remove <code>reject_sender_login_mismatch</code> restriction rule in Postfix
|
||||
setting <code>smtpd_sender_restrictions</code> (<code>/etc/postfix/main.cf</code>). Out iRedAPD
|
||||
plugin will do the same restriction for you.</p>
|
||||
<p>After removed <code>reject_sender_login_mismatch</code>, Postfix setting looks like
|
||||
below:</p>
|
||||
</li>
|
||||
</ul>
|
||||
<pre><code>smtpd_sender_restrictions = permit_mynetworks, permit_sasl_authenticated
|
||||
</code></pre>
|
||||
|
||||
<ul>
|
||||
<li>Enable plugin <code>reject_sender_login_mismatch</code> in iRedAPD config file
|
||||
<code>/opt/iredapd/settings.py</code>:</li>
|
||||
</ul>
|
||||
<pre><code class="python">plugins = ['reject_sender_login_mismatch', ...]
|
||||
</code></pre>
|
||||
|
||||
<ul>
|
||||
<li>List senders who are allowed to send email as different users in iRedAPD
|
||||
config file <code>/opt/iredapd/settings.py</code>, in parameter
|
||||
<code>ALLOWED_LOGIN_MISMATCH_SENDERS</code>. For example:</li>
|
||||
</ul>
|
||||
<pre><code class="python">ALLOWED_LOGIN_MISMATCH_SENDERS = ['user1@here.com', 'user2@here.com']
|
||||
</code></pre>
|
||||
|
||||
<pre><code>NOTE: this parameter does not present by default, please add it manually.
|
||||
</code></pre>
|
||||
<p>Restart iRedAPD service. That's all.</p><br /><p style="text-align: center;">If you found something wrong
|
||||
in this document, please do
|
||||
<a href="http://www.iredmail.org/contact.html">contact us</a> to fix it.</p><p style="text-align: center; color: grey;">This tutorial is published under a <a href="http://creativecommons.org/licenses/by-nd/3.0/us/" target="_blank">CC BY-ND 3.0</a> license.<!-- Google Analytics -->
|
||||
<script type="text/javascript">
|
||||
var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");
|
||||
document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));
|
||||
</script>
|
||||
<script type="text/javascript">
|
||||
try {
|
||||
var pageTracker = _gat._getTracker("UA-3293801-14");
|
||||
pageTracker._trackPageview();
|
||||
} catch(err) {}
|
||||
</script>
|
||||
</body></html>
|
|
@ -22,6 +22,7 @@
|
|||
</ul>
|
||||
<h3 id="how-to">How to</h3>
|
||||
<ul>
|
||||
<li><a href="allow.certain.users.to.send.email.as.different.user.html">Allow some users to send email as another user</a></li>
|
||||
<li><a href="change.mail.attachment.size.html">Change mail attachment size</a></li>
|
||||
<li><a href="completely.disable.amavisd.clamav.spamassassin.html">Completely disable Amavisd + ClamAV + SpamAssassin</a></li>
|
||||
<li><a href="enable.smtps.html">Enable SMTPS service (SMTP over SSL, port 465)</a></li>
|
||||
|
|
Loading…
Reference in New Issue