Client SMTP Authorization

2005-03-07 22:36
fanf: (Default)
[personal profile] fanf
So while the rest of the team are having a knees-up at the 62nd IETF in Minneapolis, I'm quietly implementing CSA for Exim. There's about 450 lines of reasonably straightforward new code to do this. You can now say something like the following in an ACL to reject any hosts which are not authorized.
      require verify = csa

In addition to that, the dnsdb lookup type will also handle CSA records. A straight SRV lookup isn't enough because CSA also involves a search for a site policy record. The dnsdb CSA lookup also does some extra checking and pretty-prints the contents of the CSA record for extra friendliness.

There are a few more details to the implementation which I will be writing down tomorrow when I get stuck into the documentation. That will be after the code has been tested (as opposed to just compiled).
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Date: 2005-03-08 11:22 (UTC)
From: [identity profile] korenwolf.livejournal.com
Ohh... when's this likely to hit a released version?

Date: 2005-03-08 11:28 (UTC)
fanf: (Default)
From: [personal profile] fanf
I'll post a patch on the -dev list (and a few other places) when it's done, which should be tomorrow. I decided overnight that some parts of the implementation can be improved (er, by going back to an earlier draft of the code), and of course testing and documentation is SUCH FUN.
  • Add Memory
  • Share This Entry
Flat | Top-Level Comments Only

Profile

fanf: (Default)
fanf
dotat.at

December 2025

S M T W T F S
 123456
78910111213
14151617181920
21222324 252627
28293031   

Most Popular Tags

Page Summary

Style Credit

Expand Cut Tags

No cut tags
Page generated 2025-12-30 17:56
Powered by Dreamwidth Studios