The mailing list for listmasters using Sympa

[Dick Visser <address@concealed>]

Hi guys

Our current list manager is running on our SMTP server.
It has a feature (hack) that allows SASL authenticated users to send
mail to all lists.
I know that this is bad practise but at the time it looked like a Cool 
Feature™.
I don't use it myself and actually forgot about his feature, but I
found that some users do seem to use it, so I'm looking for an
alternative.

Since the all of my users sign their messages with S/MIME, I thought
this would be a candidate.
Looking at 
https://www.sympa.org/manual/x509#configuration_to_recognize_smime_signatures,
I see that Sympa does support S/MIME. But from the example I can't
really see how this authorisation would work.

Ideally, I'd like to authorise on a combination of the Issuer and the Subject.
In our case, the scenario would be:

1) Check SMTP FRom header to post to a list (members)
2) allow S/MIME signed messages, but only if the Issuer is "C=NL,
O=TERENA, CN=TERENA Personal CA", and the subject has "C=NL,
O=TERENA".


Would such a thing be possible?


Many tahnks!!


-- 
Dick Visser
System & Networking Engineer
TERENA Secretariat
Singel 468 D, 1017 AW Amsterdam
The Netherlands