sendmail with SMTP-Authentication for roaming users...
Hi! I´ve Suse 8.0, installed sendmail with TLS and Auth... this works fine... but my problem: I want to allow smtp-relaying only for authenticated users... (that have dynamic ip). I can´t find the right configuration or documentation to do this.... Can someone help me? another question: I where nice to have TLS on POP3 also... any suggestions about? greetings from vienna... André
Hey there, i had a similar situation about half y ear ago and solved it the following way: TLS on Pop : i used sTunnel (RPM version) for encryption with the following statement in my inetd.conf pop3s stream tcp nowait root /usr/sbin/stunnel ipop3d -p /usr/local/ssl/certs/mail.pem -l /usr/sbin/ipop3d ipop3d for the TLS sendmail. i have 8.11 tls version installed and modified my linux.mc file in /etc/mail with tthe following lines at the end TRUST_AUTH_MECH(`GSSAPI KERBEROS_V4 DIGEST-MD5 CRAM-MD5 LOGIN DPA NTLM') define(`confAUTH_MECHANISMS',`GSSAPI KERBEROS_V4 DIGEST-MD5 CRAM-MD5 LOGIN DPA NTLM') dnl define(`confDEF_AUTH_INFO', `/etc/mail/auth')dnl define(`confLOG_LEVEL',`10')dnl don't forget to run that m4 thingie again after modifying your mc file :) that solved it for me. and according to relay check with this method no relays are allowd unless you authetigicate yourself with your mail client. regards Evert Smit -----Original Message----- From: Info [mailto:info@ufo.at] Sent: Sunday, May 26, 2002 1:56 PM To: suse-security@suse.com Subject: [suse-security] sendmail with SMTP-Authentication for roaming users... Hi! I´ve Suse 8.0, installed sendmail with TLS and Auth... this works fine... but my problem: I want to allow smtp-relaying only for authenticated users... (that have dynamic ip). I can´t find the right configuration or documentation to do this.... Can someone help me? another question: I where nice to have TLS on POP3 also... any suggestions about? greetings from vienna... André -- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
On Sun, May 26, 2002 at 01:57:35PM +0200, Evert Smit wrote:
TLS on Pop : i used sTunnel (RPM version) for encryption with the following statement in my inetd.conf pop3s stream tcp nowait root /usr/sbin/stunnel ipop3d -p /usr/local/ssl/certs/mail.pem -l /usr/sbin/ipop3d ipop3d
no need for stunnel, at least in suse 7.3 using imap-2000c-139, which has support for ssl itself; NOTE: you have to install the cert in /usr/src/openssl-0.9.6/certs/ipop3d.pem in _contrast_ to what the docs say, probably a packaging error. inetd.conf: pop3s stream tcp nowait.100 root /usr/sbin/tcpd /usr/sbin/ipop3d cheers lars
participants (3)
-
Evert Smit
-
Info
-
l.g.e@web.de