ACLs

[Ken Murchison]

Joseph Brennan wrote:
> 
> Ken Murchison <murch at andrew.cmu.edu> wrote:
> 
>>> I know I had to give "anyone" "p" on shared folders. I tried giving "p"
>>> to user "cyrus", but it somehow did not work, not sure why. Delivery is
>>> done from Sendmail via LMTP and I did setup auth-info, so Sendmail
>>> should have authenticated itself as user "cyrus". Is that the right way?
>>
>> The MTA needs to use the AUTH=<authid> keyword with the MAIL FROM
>> command.  It is this authid which is used when checking the ACL.
> 
> 
> Yes yes, but that is the trick!  Suppose one's sendmail smtp server has
> authenticated a sender, and we find that the the message should relay
> to our Cyrus server, how do we tell Cyrus it was auth'd as that user?
> We'd welcome reference to any document on the subject.

I'm not a Sendmail expert, but I believe you must compile Sendmail with 
-D_FFR_AUTH_PASSING=1

-- 
Kenneth Murchison
Systems Programmer
Carnegie Mellon University