Hi,
Our outbound SMTP server allows any authenticated user to send for any domain. (locking this down isn't a option) However, for our roundcube instance we want all mail to only be able to come from our domain. We recently discovered that that users can login with their username and whatever domain they want after the @, i.e
[email protected]. How do we make sure that all mail sent using roundcube comes only from a single domain?
Any help is appreciated,
Ire
I think the only way you could do that would be to make a plugin that would strip the domain at login. Also make sure you lock down the identities.