# Accept if the source is local SMTP (i.e. not over TCP/IP).
# We do this by testing for an empty sending host field.
- accept hosts = :
+ accept hosts = : 127.0.0.1
# Defer after too many bad RCPT TO's. Legit MTAs will retry later.
# This is a rough pass at preventing addres harvesting or other mail blasts.
ratelimit = 5 / 60m / per_rcpt / $sender_host_address
message = sorry, only 5 reports per hour for submission
+ accept domains = +localhost
+ endpass
+ message = unknown user
+ verify = recipient
+
+ accept domains = +mailhubdomains
+ endpass
+ message = unknown user
+ verify = recipient/callout=30s,defer_ok,use_sender,no_cache
+
accept domains = +submission_domains
endpass
message = unknown user
accept domains = +mailhubdomains
endpass
message = unknown user
- verify = recipient/callout,defer_ok
+ verify = recipient/callout=30s,defer_ok,use_sender,no_cache
accept domains = +handled_domains
endpass