conf.d/acl/20_exim4-config_whitelist_local_deny

   1
   2 ### acl/20_exim4-config_whitelist_local_deny
   3 #################################
   4
   5 # This is used to determine whitelisted senders and hosts.
   6 # It checks for CONFDIR/local_host_whitelist and
   7 # CONFDIR/local_sender_whitelist.
   8 #
   9 # It is meant to be used from some other acl entry.
  10 #
  11 # For example,
  12 # deny
  13 #   message = local blacklist example
  14 #   !acl = acl_whitelist
  15 #   dnslist = some.dns.list.example
  16 # will allow messages with envelope sender listed in local_sender_whitelist
  17 # or messages coming in from hosts listed in local_host_whitelist to be
  18 # accepted even if the delivering host is listed in the dns list.
  19 #
  20 # Whitelisting can also be configured by including negative items in the
  21 # black list. See /usr/share/doc/exim4-config/default_acl for details.
  22 #
  23 # If the files do not exist, the white list never matches, which is
  24 # the desired behaviour.
  25
  26 acl_whitelist_local_deny:
  27   accept
  28     hosts = ${if exists{CONFDIR/local_host_whitelist}\
  29                  {CONFDIR/local_host_whitelist}\
  30                  {}}
  31   accept
  32     senders = ${if exists{CONFDIR/local_sender_whitelist}\
  33                    {CONFDIR/local_sender_whitelist}\
  34                    {}}
  35
  36   # This hook allows you to hook in your own ACLs without having to
  37   # modify this file. If you do it like we suggest, you'll end up with
  38   # a small performance penalty since there is an additional file being
  39   # accessed. This doesn't happen if you leave the macro unset.
  40   .ifdef WHITELIST_LOCAL_DENY_LOCAL_ACL_FILE
  41   .include WHITELIST_LOCAL_DENY_LOCAL_ACL_FILE
  42   .endif