ietf-smtp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ietf-smtp] FYI: Postfix rationale for delaying various policy checks to RCPT TO

2019-12-15 23:45:42
from [Viktor Dukhovni] [Permanent Link] 
On Sun, Dec 15, 2019 at 11:12:21PM -0500, John C Klensin wrote:

[ On the ietf general list ]


[...] and, while the specification arguably permits it, accepting the
EHLO and then rejecting the mail transaction only after processing the
MAIL and at least one RCPT command is probably at least in bad taste.


FWIW, that particular feature has some careful reasoning behind it:

    http://www.postfix.org/postconf.5.html#smtpd_delay_reject

    smtpd_delay_reject (default: yes)

        Wait until the RCPT TO command before evaluating
        $smtpd_client_restrictions, $smtpd_helo_restrictions and
        $smtpd_sender_restrictions, or wait until the ETRN command
        before evaluating $smtpd_client_restrictions and
        $smtpd_helo_restrictions.

        This feature is turned on by default because some clients
        apparently mis-behave when the Postfix SMTP server rejects
        commands before RCPT TO.

        The default setting has one major benefit: it allows Postfix to
        log recipient address information when rejecting a client
        name/address or sender address, so that it is possible to find
        out whose mail is being rejected.

When an SMTP server returns 5XX in either the greeting or in response to
EHLO, some clients treat that as a connection setup failure, not a
permanent message delivery failure, and move on to the next MX host, and
perhaps ultimately defer and retry the message:

    smtp_skip_5xx_greeting (default: yes)

        Skip remote SMTP servers that greet with a 5XX status code.

        By default, the Postfix SMTP client moves on the next mail
        exchanger. Specify "smtp_skip_5xx_greeting = no" if Postfix
        should bounce the mail immediately.

The reason for that was that at least at the time, various Microsoft
SMTP servers woul return 5XX greetings under transient high load.
Consequently, Postfix itself is one of the clients that treats
5XX as temporary failures in greetings (though not in EHLO).

Thus client-IP access control rules that would naïvely run at "CONNECT",
are by default deferred to RCPT TO, along with the rules that restrict
"EHLO" and "MAIL".

-- 
    Viktor.

_______________________________________________
ietf-smtp mailing list
ietf-smtp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/ietf-smtp
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-smtp] Obsoleting RFC5321 552 -> 452 workaround (was: draft-klensin-rfc5321bis-01), John C Klensin
Next by Date:  Re: [ietf-smtp] Reducing minimum recipient limit?, Viktor Dukhovni
Previous by Thread:  [ietf-smtp] FWD: IETF Policy on dogfood consumption or avoidance - SMTP version, John C Klensin
Next by Thread:  [ietf-smtp] Semantics of 554 greeting? (Clarify in 5321bis?), Viktor Dukhovni
Indexes:  [Date] [Thread] [Top] [All Lists]