1. Forum
  2. Usenet
  3. COMP.MAIL.SENDMAIL

  • Checking auth user against ldap query

    From None@21:1/5 to All on Wed Jan 11 17:57:13 2023
    Reading this tread about the smart host wanting authinfo matching from.
    I was wondering what options I have to quickly/easily increase security
    a bit.
    One thing I could think of, is comparing if the auth user uses the $f
    that has been assigned to him. However I am using accounts != email
    addresses, and these are stored in ldap.

    Is such a thing possible in sendmail?

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Claus =?iso-8859-1?Q?A=DFmann?= @21:1/5 to None on Wed Jan 11 12:50:33 2023
    None wrote:

    One thing I could think of, is comparing if the auth user uses the $f
    that has been assigned to him. However I am using accounts != email addresses, and these are stored in ldap.

    You can use a custom ruleset
    LOCAL_RULESETS
    SLocal_check_mail
    in which you can access the macro ${auth_authen}
    and an LDAP map to perform whatever tests you want.

    Maybe you can find existing examples online.

    --
    Note: please read the netiquette before posting. I will almost never
    reply to top-postings which include a full copy of the previous
    article(s) at the end because it's annoying, shows that the poster
    is too lazy to trim his article, and it's wasting the time of all readers.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)