Exim acl to require auth on connections trying to use local domains

NetVicious · Oct 18, 2019

Hi!
I read some threads related to this. But they're trying to block this instead of requiring authentication on the server.

The problem it's the SMTP Server (exim) allows to receive external connections spoofing local domain addresses.

The domain has perfect SPF, DKIM and DMARC registers. That kind of messages are not banned by these technologies because the sender it's not another email server. These are direct connections to the SMTP server like a legal user/owner of an email address managed by that server.

You can test it within a simple telnet to the port 25 on your server running these commands:

Code:

helo yourdomain.gld<intro>
mail from:<[email protected]><intro>
rcpt to:<[email protected]><intro>
data<intro>
Subject: Spoof test<intro>
Some text here<intro>
.<intro>
<intro>

I see on stackoverflow a little acl for Exim, but I don't know where I should place it and if it's ok.

Exim: Force email auth for users of local domains

I'm configuring exim4 for virtual users with dovecot and postgresql and I got a problem I cannot resolve, the situation is this: I need that when a 'localdomain' user tries to send a email to anot...

serverfault.com

Code:

accept
   message = must auth
   domains = +local_domains : +relay_to_domains
   senders = : regex-expresion

I know this kind of acls should break mails received FROM mailing list. Because SPF and other technologies leave this little hole to continue allow receiving spoofed emails from mailing lists to know which was the real sender of the email sent to the mailing list.

cPanelLauren · Oct 18, 2019

You can add custom ACL's for exim at WHM>>Service Configuration>>Exim Configuration -> Advanced Editor or alternatively they can be added to /etc/exim.conf.local

The exim configuration manager documentation may be useful for you as well: Exim Configuration Manager - Version 84 Documentation - cPanel Documentation

NetVicious · Oct 30, 2019

Hi! Thanks for answer.
Yes I know it, but I don't know where to place that code (function or section I see on the advanced editor).

cPanelLauren · Oct 30, 2019

Hello,

The documentation here should be helpful:

Exim Configuration Manager - Version 84 Documentation - cPanel Documentation

documentation.cpanel.net

How to Edit the exim.conf File - cPanel Knowledge Base - cPanel Documentation

documentation.cpanel.net

Thread starter	Similar threads	Forum	Replies	Date
H	ACL/Exim Retry rule for 550 error	E-mail Discussion	3	May 6, 2017
	Exim Acls	E-mail Discussion	1	Nov 23, 2016
T	Exim acl to drop remote mail from local configured domain	E-mail Discussion	1	May 11, 2016
E	Exim: create an ACL for destination mails	E-mail Discussion	0	Jul 6, 2015
J	Is there an ACL for exim for rejecting SMTP connects from certain countries?	E-mail Discussion	3	Jun 7, 2014

Search

Search

Exim acl to require auth on connections trying to use local domains

NetVicious

Member

Exim: Force email auth for users of local domains

cPanelLauren

Forums Analyst II