On Wed, 2003-08-27 at 11:52, Andreas Winkelmann wrote:
Tom Nielsen wrote:
8.2
In 8.2 Postfix and SASL are already installed. It is configured to use your shadow accounts. This means, you could only use mechs as plain or login. The big disadvantage is, the passwords are send in cleartext over the line. Better is to switch to sasldb. It's all installed, but you have something to reconfigure.
First create a Useraccount:
# saslpasswd2 -c username -u mailserver
I already have one. (I'm at home right now, but set one up for me while I was at work. I'm working at accessing my work info)
Behind -u should be a realm, maybe to start it is the best to let "mailserver".
Check this with
# sasldblistusers2
Configure SASL:
Edit /usr/lib/sasl2/smtpd.conf :
pwcheck_method: auxprop mech_list: DIGEST-MD5 CRAM-MD5
Will the above have any effect to those currently connected? I'm assuming a yes answer and that everyone that sends email must first submit a password, correct?
Configure Postfix:
Edit /etc/postfix/main.cf :
broken_sasl_auth_clients = yes smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, permit_auth_destination, reject smtpd_sasl_auth_enable = yes smtpd_sasl_local_domain = mailserver smtpd_sasl_security_options = noanonymous, noplaintext
Restart Postfix:
# rcpostfix restart
Test it with your client.
I hope this is all. If this is not working, send an output from "postconf -n" and the part from /var/log/mail.
-- Andreas
- - - - - - - - - - - - - - - - - - Tom Nielsen Neuro Logic Systems, Inc. 805.389.5435 x18 www.neuro-logic.com