Another mail server question... sorry 
I've configured Postfix to use Dovecot SASL for my mail server.
I'm checking users against the PAM database, which works fine. The problem is, once I have authenticated as ANY user, I can send mail as EVERY user
.
Here's an example, logging in as a temporary user that I created for testing, sending email from a different account:
Is there a way to make sure that you can only send mail as the user you authenticated as?
Feathers
I've configured Postfix to use Dovecot SASL for my mail server.
I'm checking users against the PAM database, which works fine. The problem is, once I have authenticated as ANY user, I can send mail as EVERY user
.Here's an example, logging in as a temporary user that I created for testing, sending email from a different account:
Code:
telnet localhost 25
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 samhobbs ESMTP Postfix (Debian/GNU)
ehlo samhobbs.co.uk
250-samhobbs
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-AUTH PLAIN LOGIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
AUTH PLAIN AHRlc3RtYWlsAHRlc3QxMjM0
235 2.7.0 Authentication successful
mail from:admin
250 2.1.0 Ok
rcpt to:{my external email address}
250 2.1.5 Ok
data
354 End data with <CR><LF>.<CR><LF>
Subject: This is my first email that has been authenticated with Dovecot SASL
Woop woop
.
250 2.0.0 Ok: queued as B87133F768
quit
221 2.0.0 Bye
Connection closed by foreign host.
Feathers