Allow overriding HELO checks
Bug #2019263 reported by
Haw Loeung
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
SMTP Relay Charm |
Triaged
|
Wishlist
|
Unassigned |
Bug Description
Hi,
When reject on HELO checks are enabled (such as reject_
Changed in smtp-relay-charm: | |
importance: | Undecided → Wishlist |
status: | New → Triaged |
To post a comment you must log in.
Did some reading before I realised we had a bug for this, saved some links that might be useful to us:
https:/ /serverfault. com/questions/ 202978/ can-i-make- an-exception- to-reject- unknown- client- hostname# 203021
https:/ /serverfault. com/questions/ 1123359/ postfix- white-listing- a-badly- configured- server- not-working- helo-command- reject
https:/ /serverfault. com/questions/ 527541/ postfix- whitelist- host-for- specific- sender
----
I'm sure we'd be better off applying exclusions in "smtpd_ helo_restrictio ns" if possible to limit the scope of the checks we're affecting, but we could consider editing "smtpd_ recipient_ restrictions" to move "reject_ non_fqdn_ helo_hostname, reject_ unknown_ helo_hostname" to the back of the list, behind "check_ sender_ access" .
That check leverages `/etc/postfix/ access` which is charm managed, which may be an avenue we could use to implement this feature.