Timothy Murphy wrote:
Steve Searle wrote:
Do you actually have any evidence that the configuration supplied is
causing users to make mistakes and set up mail servers that do act as
spam relays? Or is it all just a pet theory?
How do you avoid this mistake, as a matter of interest?
The /etc/mail/access file controls what network addresses are permitted
to relay mail though the server. As you can easily note, you aren't
going to relay for anyone else with the default access file even if you
accept mail over the network. In that case you would accept messages
addressed to your host (or other names you've added to
/etc/mail/local-host-names where there is a matching user and reject all
others. A more modern way to control relaying is to permit it where
login/password authentication has been done over an ssl connection, but
the distribution leaves this as an exercise for the user, even though
most current mail clients have fill-in-the-form settings for it.