The idea did pop up in an earlier message, here is a summary for comments: Currently, our ACL are evaluated after the RCPT stage, except when the delayedreject option is used. In that situation, they are evaluated after the DATA stage. The change: we make the acl and delayedreject statement deprecated (as usual: not documented anymore, but still supported for backward compatibility), and we ndreplace them by racl and dacl racl statements would be ACL evaluated at the RCPT stage. dacl statements would be ACL evaluated at the DATA stage. A few points: 1) The delayedreject feature could be configured as a racl/dacl mix: racl whitelist from <> dacl greylist from <> delay 15m 2) The rcpt clause would be forbidden in dacl statements (it would mean nothing in a multi-recipient message) 3) dacl statement could include new clauses to filter the message body: len_less value match if message len is lower than value len_more value match if message len is bigger than value body "string" match if a line in body contains string body /regexp/ match if a line in body match regexp of course such clauses would be forbidden in racl statements -- Emmanuel Dreyfus manu@...
Message
[RFC] RCPT stage ACL and DATA stage ACL
2006-11-23 by Emmanuel Dreyfus