From 199a909669e821c05d85172b4645e0c46dc1cff4 Mon Sep 17 00:00:00 2001
From: Guilhem Moulin <guilhem@fripost.org>
Date: Thu, 10 Jul 2014 01:21:34 +0200
Subject: Fix $smtpd_sender_restrictions.

On the MDA the domain is our 'mda.fripost.org', there is no need to
perform an extra DNS lookup.

The MSA does not perform local or virtual delivery, but relays
everything to the outgoing SMTP proxy.

On the MX, there is no need to check for recipient validity as we are
the final destination; but unsure that the RCPT TO address is a valid
recipient before doing the greylisting.
---
 roles/MSA/templates/etc/postfix/main.cf.j2 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'roles/MSA/templates/etc/postfix/main.cf.j2')

diff --git a/roles/MSA/templates/etc/postfix/main.cf.j2 b/roles/MSA/templates/etc/postfix/main.cf.j2
index 36ec8d2..b23d6bb 100644
--- a/roles/MSA/templates/etc/postfix/main.cf.j2
+++ b/roles/MSA/templates/etc/postfix/main.cf.j2
@@ -118,7 +118,7 @@ smtpd_recipient_restrictions =
     reject_unknown_recipient_domain
     permit_mynetworks
     permit_sasl_authenticated
-    reject_unauth_destination
+    reject
 
 smtpd_data_restrictions =
     reject_unauth_pipelining
-- 
cgit v1.2.3