As with the other check_* rulesets, all of the rulesets
below should resolve to the $#error mailer if the requested
action is to be denied.
check_etrn, check_expn, check_vrfy
- Limit access to
ETRN, EXPN, and
VRFY
- Previously could only turn it off for everyone or on for everyone using
PrivacyOptions (confPRIVACY_FLAGS)
- Given command parameter as input
check_eoh
- Called after all of the headers have been received from the remote site
- Might be used to tie together information gathered from various headers
tls_client and tls_server
- Control whether the current connection is usable with the given
authentication and encryption
- More details in Claus' presentation
trust_auth
- Decides whether the client's authentication identifier (authid) is
trusted to act as (proxy for) the requested authorization identity
(userid).
- Included ruleset allow authid to act for userid if both are identical
- Ruleset
Local_trust_auth can be used to provide further
tests
- More details in Claus' presentation