Fix $smtpd_sender_restrictions.

On the MDA the domain is our 'mda.fripost.org', there is no need to
perform an extra DNS lookup.

The MSA does not perform local or virtual delivery, but relays
everything to the outgoing SMTP proxy.

On the MX, there is no need to check for recipient validity as we are
the final destination; but unsure that the RCPT TO address is a valid
recipient before doing the greylisting.

1 files changed, 1 insertions, 1 deletions

diff --git a/roles/MSA/templates/etc/postfix/main.cf.j2 b/roles/MSA/templates/etc/postfix/main.cf.j2
index 36ec8d2..b23d6bb 100644
--- a/roles/MSA/templates/etc/postfix/main.cf.j2
+++ b/roles/MSA/templates/etc/postfix/main.cf.j2
@@ -101,26 +101,26 @@ disable_vrfy_command    = yes
 unknown_client_reject_code = 554
 
 smtpd_client_restrictions =
     permit_sasl_authenticated
     reject
 
 smtpd_helo_required     = yes
 smtpd_helo_restrictions =
     reject_invalid_helo_hostname
 
 smtpd_sender_restrictions =
     reject_non_fqdn_sender
     reject_unknown_sender_domain
 
 smtpd_recipient_restrictions =
     # RFC requirements
     reject_non_fqdn_recipient
     reject_unknown_recipient_domain
     permit_mynetworks
     permit_sasl_authenticated
-    reject_unauth_destination
+    reject
 
 smtpd_data_restrictions =
     reject_unauth_pipelining
 
 # vim: set filetype=pfmain :