Differences

This shows you the differences between two versions of the page.

--- exim4:stop_exim_being_an_open_relay [2016/11/01 12:31] – created peter
+++ exim4:stop_exim_being_an_open_relay [2020/07/15 09:30] (current) – external edit 127.0.0.1
@@ Line 1: / Line 1: @@
 ===== Exim4 - Stop Exim being an open relay =====
-Adjusting the **acl_smtp_rcpt** ACL.
+Stop Exim being an open relay by adjusting the **acl_smtp_rcpt** ACL.
@@ Line 52: / Line 52: @@
 <file>
 accept
+</file>
+===== Using acl_rcpt_to =====
+A sample statement in the **acl_rcpt_to** ACL above may look like this:
+<file>
+  deny
+    message  = relay not permitted
+    !hosts   = +relay_from_hosts
+    !domains = +local_domains : +relay_to_domains
+    delay    = 1m
+</file>
+This statement will reject the **RCPT TO:** command if it was not delivered by a host in the "**+relay_from_hosts**" host list, and the recipient domain is not in the "**+local_domains**" or "**+relay_to_domains**" domain lists.  However, before issuing the "550" SMTP response to this command, the server will wait for one minute.
+To evaluate a particular ACL at a given stage of the message transaction, you need to point one of Exim's policy controls to that ACL.  For instance, to use the **acl_rcpt_to** ACL mentioned above to evaluate the RCPT TO:, the main section of your Exim configuration file (before any begin keywords) should include:
+<file>
+acl_smtp_rcpt = acl_rcpt_to
 </file>