how allow only 2 sender lots of addresses
Hi,
my environment is Messaging Server 5.2 hf 2.06 and Directory Server 5.1 sp2.
my problem is: how I can limit the number of addesses to all the sender except for 2 specified sender? I mean: I limited the total number of addresses for all, but I need that 2 sender (internal mail address of the messaging server) can send an email to a dynamic mailing list that exceed this limit.
Thanks in advance for help
[434 byte] By [
m_mattau] at [2007-11-26 10:35:28]
# 1
More detail, please. What did you actually set, and what is it you're really trying to limit?When a user sends to a "mailing list", they are only sending to a single address. The server expands that.
# 2
Hi, thanks for attention.
I have the following definition for tcp_local
tcp_local smtp mailfromdnsverify disableetrn ... ... saslswitchchannel tcp_auth
tcp_auth ..... mustsaslserver .... holdlimit 500
so, if a messages coming in the channel results in more than the specified number of recipients could be a spam, and the Administrator of the messaging server decide if it can be sent or not.
The problem is that I need that only 2 user (internal user) can send email to a mailing list of 10.000 addresses. How I can do this? I have found on the documentation that I can define another channel with no limit (es: tcp_mailinglist) and associate this channel to those 2 user into the directory server profile (mailSMTPSubmitChannel=tcp_mailinglist). Is this the right way to do this?
If yes, how I have to define the new channel in a manner that there are no problems with so big mailing list? Do I have to modify other limits to receive from LDAP server 10.000 entries as result?
Thanks in advance.
# 3
The way you are currently set up, anything that comes in, and authenticates, will go to tcp_auth, and be limited to 500 messages. Those that come in, addressed to your users, that do not authenticate have no limit. Is that what you want?
Switching a channel, based on a "from" address is tricky at best, often fragile, and complex. Harder to do that worthwhile.
If what you're really trying to do, is to prevent spam/dos attacks, you're far better to use connection throttling. That turns must spammers off, and can be set to ignore your internal user mailing lists.
# 4
sorry but I don't understand your suggestion. Are you saying that is better to use transactionlimit keyword in the channel definition? how I can limit just some senders (authenticated or external), and unlimit other authenticated senders? could you give me an example?
Please, what about the other point about many ldap returned entries?
thanks for support
# 5
First, perhaps some definitions.. .
1. A mailing list is an ldap entry, that has a single address a user can send to, that the server itself expands.
This is something you set up on your server, for your users to use. A list can be "static", containing a list of mail addresses, or "dynamic", with a LDAP url that the server simply queries the LDAP server for.
My suggestion is that you:
1. Limit all users to a certain number of mail addresses per mail.
2. Create as many lists as your two users need on the server.
3. Restrict these lists so that they may only be sent to by the users autherized to send to them.
that's it.
# 6
Hi, sorry but I need some example to understand.
Please, could you give me an example of the parameters I have to use to:
- limit all the users to a certain number of mail
- how restrict the mailing list so that just authorized user can send mail to them?
I haven't understood how to implement the first point. To implement the second point in other cases I have inserted a filter into mappings file...is it right?
regards.
# 7
> Hi, sorry but I need some example to understand.
> Please, could you give me an example of the
> parameters I have to use to:
> - limit all the users to a certain number of mail
See the MTA documentation here:
http://docs.sun.com/app/docs/doc/819-2651/6n4u5ce7s?a=view
look for
ALLOW_RECIPIENTS_PER_TRANSACTION
create a tcp_local.opt file, and put this in there.
compile the configuration
restart the dispatcher
> - how restrict the mailing list so that just
> authorized user can send mail to them?
> I haven't understood how to implement the first
> point. To implement the second point in other cases I
> have inserted a filter into mappings file...is it
> right?
Not at all how I'd do it.
I wouild create actual mailing lists in the LDAP. There are ldap attributes such as, "msgrpallowedbroadcaster", where you put in who is allowed to send to the group.
> regards.
# 8
thanks very very mutch, I did all the tests and it is ok now.again, many thanks, and sorry if I ask more times because at the first I haven't understood well your suggestion.
