Univention Bugzilla – Bug 29615
postfix listfilter.py prüft (NUR) die Absender-Adresse nicht den Login-Namen
Last modified: 2017-06-12 12:20:53 CEST
listfilter.py prüft Nur die Absender-Adresse einer Mail um zu prüfen, ob der Sender berechtigt ist. Die Absender-Adresse ist aber keine hinreichende Info um den Absender zu prüfen. Vielmehr müsste man in listfilter.py auf "sasl_username" prüfen. Dann kann wird der SASL Loginname geprüft.
It is possible to use the following mail/postfix/smtpd/restrictions/recipient/* variables ucr set mail/postfix/smtpd/restrictions/recipient/45=reject_sender_login_mismatch or ucr set mail/postfix/smtpd/restrictions/recipient/20=reject_unlisted_sender more informations can be found at http://www.postfix.org/postconf.5.html#check_sender_access
listfilter.py should check "sasl_username" by default. And it should be possible to switch to the old behaviour (check of "sender") via UCR.
Mailinglist/mail groups filter now checks sasl_username instead of sender address by default. With a new UCRV the behavior can be switched back: mail/postfix/policy/listfilter/use_sasl_username Commit: 66856 YAML: 66857
OK: code change OK: functional test Tested without restrictions and with user, group and both restrictions. OK: YAML
<http://errata.software-univention.de/ucs/4.1/87.html>