thanks for the promt reply. I guess I might have not expressed myself clear
enough, since what I want to achieve makes perfect sense.
let's assume that I control the @example.com domain. So I want to enforce that
every message that originates from @example.com domain has to be authenticated.
It doesn't matter whether the RCPT TO: would be someotherdomain.com or
example.com domain, if it has MAIL FROM: @example.com it has to be
authenticated, otherwise reject.
So I want to enforce authentication for all the MTA/MUA's that send mail from
example.com domain. as at the moment, the acl that says, if the RCPT TO has @example.com accept no matter whether the authentication is turned on or not.
Since at the moment, some spammers set their FROM address in @example.com to
send the messages to @example.com. This is annoying. I can enforce SPF policy,
but that's not the point. I have addedd extra RBLs, pyzor, razor2 etc.
in the SA.
I hope its clearer now
