diff options
| author | Micah Anderson <micah@leap.se> | 2013-09-03 10:22:40 -0400 |
|---|---|---|
| committer | Micah Anderson <micah@leap.se> | 2013-09-03 10:22:40 -0400 |
| commit | 8d69a43fe97079f9595ed460bfa36c4bfd6cb0a8 (patch) | |
| tree | 25a703d9c539672bb285079cfcaccdad660b5ea1 | |
| parent | 822f92c3ff3fb8ef640b7e1c10819f367014f8d1 (diff) | |
Without smtpd_helo_required, the helo restrictions are easily bypassed by not sending a HELO (#3693)
Change-Id: I6a7338136a53e16962a070826493139fa3307df7
| -rw-r--r-- | puppet/modules/site_postfix/manifests/mx/smtpd_checks.pp | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/puppet/modules/site_postfix/manifests/mx/smtpd_checks.pp b/puppet/modules/site_postfix/manifests/mx/smtpd_checks.pp index 7ade8588..34cffb0d 100644 --- a/puppet/modules/site_postfix/manifests/mx/smtpd_checks.pp +++ b/puppet/modules/site_postfix/manifests/mx/smtpd_checks.pp @@ -1,6 +1,8 @@ class site_postfix::mx::smtpd_checks { postfix::config { + 'smtpd_helo_required': + value => 'yes'; 'smtpd_client_restrictions': value => 'permit_mynetworks,permit'; 'smtpd_data_restrictions': |