Review order of RCPT-ACLs

[Udera]

Changes:

• accept authenticated senders before checking blacklists
• put everything optional into vexim-acl-check-rcpt

[Udera]

Moved the relay-host block upwards. Only thing I'm not sure about, how does exim get the hostname? If it is just taken from the EHLO during the SMTP session, this value is not trustworthy. You could guess relay hosts. We should verify this to avoid someone becoming an open relay.

[rimas-kudelis]

DNS, I would guess?

[Udera]

Yes, perhaps. A reverse DNS lookup on the IP address. Or query the DNS name and check if one of the IPs is identical with the sender. Perhaps exim is already handling this, but we should check this.