Mailinglist Archive: opensuse (2731 mails)
| < Previous | Next > |
Re: [SLE] remote smtp using postfix question
- From: Tom Nielsen <tom@xxxxxxxxxxxxxxx>
- Date: Wed, 27 Aug 2003 12:01:51 -0700
- Message-id: <1062010909.5722.141.camel@xxxxxxxxxxx>
On Wed, 2003-08-27 at 11:52, Andreas Winkelmann wrote:
> Tom Nielsen wrote:
>
> > 8.2
>
> In 8.2 Postfix and SASL are already installed. It is configured to use
> your shadow accounts. This means, you could only use mechs as plain or
> login. The big disadvantage is, the passwords are send in cleartext over
> the line. Better is to switch to sasldb. It's all installed, but you
> have something to reconfigure.
>
> First create a Useraccount:
>
> # saslpasswd2 -c username -u mailserver
I already have one. (I'm at home right now, but set one up for me while
I was at work. I'm working at accessing my work info)
>
> Behind -u should be a realm, maybe to start it is the best to let
> "mailserver".
>
> Check this with
>
> # sasldblistusers2
>
> Configure SASL:
>
> Edit /usr/lib/sasl2/smtpd.conf :
>
> pwcheck_method: auxprop
> mech_list: DIGEST-MD5 CRAM-MD5
Will the above have any effect to those currently connected? I'm
assuming a yes answer and that everyone that sends email must first
submit a password, correct?
>
> Configure Postfix:
>
> Edit /etc/postfix/main.cf :
>
> broken_sasl_auth_clients = yes
> smtpd_recipient_restrictions = permit_mynetworks,
> permit_sasl_authenticated,
> permit_auth_destination,
> reject
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_local_domain = mailserver
> smtpd_sasl_security_options = noanonymous, noplaintext
>
> Restart Postfix:
>
> # rcpostfix restart
>
> Test it with your client.
>
> I hope this is all. If this is not working, send an output from
> "postconf -n" and the part from /var/log/mail.
>
> --
> Andreas
- - - - - - - - - - - - - - - - - -
Tom Nielsen
Neuro Logic Systems, Inc.
805.389.5435 x18
www.neuro-logic.com
> Tom Nielsen wrote:
>
> > 8.2
>
> In 8.2 Postfix and SASL are already installed. It is configured to use
> your shadow accounts. This means, you could only use mechs as plain or
> login. The big disadvantage is, the passwords are send in cleartext over
> the line. Better is to switch to sasldb. It's all installed, but you
> have something to reconfigure.
>
> First create a Useraccount:
>
> # saslpasswd2 -c username -u mailserver
I already have one. (I'm at home right now, but set one up for me while
I was at work. I'm working at accessing my work info)
>
> Behind -u should be a realm, maybe to start it is the best to let
> "mailserver".
>
> Check this with
>
> # sasldblistusers2
>
> Configure SASL:
>
> Edit /usr/lib/sasl2/smtpd.conf :
>
> pwcheck_method: auxprop
> mech_list: DIGEST-MD5 CRAM-MD5
Will the above have any effect to those currently connected? I'm
assuming a yes answer and that everyone that sends email must first
submit a password, correct?
>
> Configure Postfix:
>
> Edit /etc/postfix/main.cf :
>
> broken_sasl_auth_clients = yes
> smtpd_recipient_restrictions = permit_mynetworks,
> permit_sasl_authenticated,
> permit_auth_destination,
> reject
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_local_domain = mailserver
> smtpd_sasl_security_options = noanonymous, noplaintext
>
> Restart Postfix:
>
> # rcpostfix restart
>
> Test it with your client.
>
> I hope this is all. If this is not working, send an output from
> "postconf -n" and the part from /var/log/mail.
>
> --
> Andreas
- - - - - - - - - - - - - - - - - -
Tom Nielsen
Neuro Logic Systems, Inc.
805.389.5435 x18
www.neuro-logic.com
| < Previous | Next > |