Selective relaying based on recipient?

Question...

I've got postfix configured and locked down. I created an alias, added
the external names that I'm allowing to use the alias to a sender_access
file, and they can send mail through my server to somealias@my.domain
successfully. All the users in the alias are external to my domain
(@hotmail, @comcast, @yahoo...) so my box relays it out again.
Providing they send mail to the alias from the address in my
sender_access file, it'll relay to the other members of the alias.

Now... is there a way I can leave "somealias" completely open (yes, an
open relay for that one address) so that ANYONE who emails
somealias@my.domain relays through? Basically, I'm looking for a way to
unprotect just that ONE alias to allow relay through my box to the
external recipients.

I haven't found anything on google yet, but I'm still looking. If anyone
thinks of something, please let me know. Thanks and have a great night...

--Dave

> Now... is there a way I can leave "somealias" completely open (yes, an
> open relay for that one address) so that ANYONE who emails
> somealias@my.domain relays through? Basically, I'm looking for a way to
> unprotect just that ONE alias to allow relay through my box to the
> external recipients.
Yes - there's a way! But if I was you, I wouldn't do that!!! It's
because spammers are not stupid - they also check that (I watch that
several times a week in my logfile) and would be able this way to do that!

So smtp-auth (at least realized with pop-before-smtp) is your first choice!

Dave Suse schrieb:

> Torsten Stauder wrote:
>
>>> Now... is there a way I can leave "somealias" completely open (yes,
>>> an open relay for that one address) so that ANYONE who emails
>>> somealias@my.domain relays through? Basically, I'm looking for a way
>>> to unprotect just that ONE alias to allow relay through my box to the
>>> external recipients.
>>
>>
>> Yes - there's a way! But if I was you, I wouldn't do that!!! It's
>> because spammers are not stupid - they also check that (I watch that
>> several times a week in my logfile) and would be able this way to do
>> that!
>>
>> So smtp-auth (at least realized with pop-before-smtp) is your first
>> choice!
>>
>
> Good call, that was my first thought also. I thought about it, but it's
> not the solution I'm looking for. I already implement pop-before-smtp on
> my box. Smtp-auth wouldn't work for this though, because I'd have to
> give out a password--even a generic one-- to everyone that wanted to
> send mail to/through that alias.
>
> I'm just looking for a solution to keep the rest of the box locked down,
> but permit users to relay "free of charge" to that one alias.

You aren't looking for a feature like the postmaster@some-doma.in
adress, where everyone, regardless of anti-spam features, is allowed to
write to, are you?

Regards,
Jan Gerle

Torsten Stauder wrote:
>> Now... is there a way I can leave "somealias" completely open (yes, an
>> open relay for that one address) so that ANYONE who emails
>> somealias@my.domain relays through? Basically, I'm looking for a way
>> to unprotect just that ONE alias to allow relay through my box to the
>> external recipients.
>
> Yes - there's a way! But if I was you, I wouldn't do that!!! It's
> because spammers are not stupid - they also check that (I watch that
> several times a week in my logfile) and would be able this way to do that!
>
> So smtp-auth (at least realized with pop-before-smtp) is your first choice!
>

Good call, that was my first thought also. I thought about it, but it's
not the solution I'm looking for. I already implement pop-before-smtp on
my box. Smtp-auth wouldn't work for this though, because I'd have to
give out a password--even a generic one-- to everyone that wanted to
send mail to/through that alias.

I'm just looking for a solution to keep the rest of the box locked down,
but permit users to relay "free of charge" to that one alias.

--Dave