Is it a wide open relay....I just ran some network tests and it appears this server allows relaying. How do I stop that.
By default it does not allow anybody not from your local network to send email messages to outside recipients. Look for mynetworks parameter in /etc/postfix/main.cf . Check also smtpd_recipient_restrictions parameter. - Alexey.
Well, actually that is what DRAC is for... it's supposed to allow user who authenticate via pop or imap to send smtp... but I've never been able to get it to work and have to mod mynetworks. - Herman Alexey Solofnenko wrote:
By default it does not allow anybody not from your local network to send email messages to outside recipients. Look for mynetworks parameter in /etc/postfix/main.cf . Check also smtpd_recipient_restrictions parameter.
- Alexey.
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq and the archives at http://lists.suse.com
On Wednesday 20 March 2002 08:56 pm, you wrote: Well, actually that is what DRAC is for... it's supposed to allow user who authenticate via pop or imap to send smtp... but I've never been able to get it to work and have to mod mynetworks. - Herman Herman, Not sure if you started this thread, but here is some Postfix information. I have used DRAC with Postfix and the Cyrus IMAP server on SuSE 7.2 (compiled from source(s)) and currently on 7.3 using the default SuSE RPMS. In my case DRAC was needed for users from a virtual domain to send mail through the server. Users are getting mail via squirrelmail & Cyrus IMAP. If Configured - the login to the IMAP server triggers DRAC. I have also used this with people on dialup connections whose ISP blocks port 25 at their gateways. (Client uses pop before smtp with their MUA) If using virtual domains you need to create the postfix virtual 'alias' file - postfix creates the virtual.db file - you can name the file as desired. Format of the virtual file: virtualdomain.com virtual user@virtualdomain.com user_name webmaster@virtualdomain.com user_name virtual.user@virtualdomain.com user@yahoo.com See the file 'virtual' in /etc/postfix/ - should have more examples. In main.cf you need the follwing lines: (either add or uncomment) virtual_maps = hash:/etc/postfix/mydomain.virtual hash:/etc/postfix/mydomain.virtual mailbox_transport = cyrus mailbox_transport = lmtp:unix:public/lmtp smtpd_recipient_restrictions = permit_mynetworks, check_client_access btree:/etc/postfix/dracd, check_relay_domains In master.cf (make sure the cyrus line is un-commented) In /etc/cyrus.conf make sure the the 'lmtp' lines are un-commented (see cyrus documentation for more info.) In /etc/imapd.conf make sure that the following lines exist: dracinterval: 5 drachost: localhost This allows 5 minute relay interval / localhost DRAC also requires / uses portmapper, as the above style of configuration uses localhost - I block port 111 to the outside at my firewall, DRAC typically listens on a port in the 900's (also not open to the external / outside world) I'm not sure what the EMAIL Server III is running on, in 7.3 the following are in /etc/rc.config START_PORTMAP="yes" START_CYRUS="yes" START_DRACD="yes" DRACD_RELAYTIME="5" DRACD_DRACDB="/etc/postfix/dracd.db" Also after you modify the postfix main.cf file, either back it up / make copy, or in YAST2 use the rc.config editor and tell SuSEconfig not to automatically write the main.cf file when SuSEconfig runs. Hope this helps, George
Alexey Solofnenko wrote:
By default it does not allow anybody not from your local network to send email messages to outside recipients. Look for mynetworks parameter in /etc/postfix/main.cf . Check also smtpd_recipient_restrictions parameter.
- Alexey.
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq and the archives at http://lists.suse.com
-- George Auch SuSE Pro 7.3 gwauch@auchnet.net Linux ns1 2.4.18 #1 Sat Mar 2 08:38:16 EST 2002 i686 unknown
Hi George, No, I didn't start it, but this is great info. I'm actually using SuSE's eMail Server III at present, which is builkt on postfix, cyrus and incorporates dracd, yet VPN user's cannot send mail unless I mod mynetwork in main.cf... I'll double check the setup from SuSE against your info... just to see if anything differs. - Herman George Auch wrote:
On Wednesday 20 March 2002 08:56 pm, you wrote:
Well, actually that is what DRAC is for... it's supposed to allow user who authenticate via pop or imap to send smtp... but I've never been able to get it to work and have to mod mynetworks.
- Herman
Herman,
Not sure if you started this thread, but here is some Postfix information.
I have used DRAC with Postfix and the Cyrus IMAP server on SuSE 7.2 (compiled from source(s)) and currently on 7.3 using the default SuSE RPMS.
In my case DRAC was needed for users from a virtual domain to send mail through the server. Users are getting mail via squirrelmail & Cyrus IMAP. If Configured - the login to the IMAP server triggers DRAC. I have also used this with people on dialup connections whose ISP blocks port 25 at their gateways. (Client uses pop before smtp with their MUA)
If using virtual domains you need to create the postfix virtual 'alias' file - postfix creates the virtual.db file - you can name the file as desired.
Format of the virtual file:
virtualdomain.com virtual user@virtualdomain.com user_name webmaster@virtualdomain.com user_name virtual.user@virtualdomain.com user@yahoo.com
See the file 'virtual' in /etc/postfix/ - should have more examples.
In main.cf you need the follwing lines: (either add or uncomment)
virtual_maps = hash:/etc/postfix/mydomain.virtual hash:/etc/postfix/mydomain.virtual
mailbox_transport = cyrus mailbox_transport = lmtp:unix:public/lmtp
smtpd_recipient_restrictions = permit_mynetworks, check_client_access btree:/etc/postfix/dracd, check_relay_domains
In master.cf (make sure the cyrus line is un-commented)
In /etc/cyrus.conf
make sure the the 'lmtp' lines are un-commented (see cyrus documentation for more info.)
In /etc/imapd.conf
make sure that the following lines exist:
dracinterval: 5 drachost: localhost
This allows 5 minute relay interval / localhost
DRAC also requires / uses portmapper, as the above style of configuration uses localhost - I block port 111 to the outside at my firewall, DRAC typically listens on a port in the 900's (also not open to the external / outside world)
I'm not sure what the EMAIL Server III is running on, in 7.3 the following are in /etc/rc.config
START_PORTMAP="yes" START_CYRUS="yes" START_DRACD="yes" DRACD_RELAYTIME="5" DRACD_DRACDB="/etc/postfix/dracd.db"
Also after you modify the postfix main.cf file, either back it up / make copy, or in YAST2 use the rc.config editor and tell SuSEconfig not to automatically write the main.cf file when SuSEconfig runs.
Hope this helps,
George
Alexey Solofnenko wrote:
By default it does not allow anybody not from your local network to send email messages to outside recipients. Look for mynetworks parameter in /etc/postfix/main.cf . Check also smtpd_recipient_restrictions parameter.
- Alexey.
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq and the archives at http://lists.suse.com
-- George Auch SuSE Pro 7.3 gwauch@auchnet.net Linux ns1 2.4.18 #1 Sat Mar 2 08:38:16 EST 2002 i686 unknown
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq and the archives at http://lists.suse.com
Postfix supports SMTP authentication. Why do you need DRAC? - Alexey. _____ < http://trelony.cjb.net/ > Alexey N. Solofnenko < http://www.inventigo.com/ > Inventigo LLC Pleasant Hill, CA (GMT-8 usually) -----Original Message----- From: herman@knief.net [mailto:herman@knief.net] Sent: Wednesday, March 20, 2002 5:57 PM To: Alexey Solofnenko Cc: suse-linux-e@suse.com Subject: Re: [SLE] Email server III Well, actually that is what DRAC is for... it's supposed to allow user who authenticate via pop or imap to send smtp... but I've never been able to get it to work and have to mod mynetworks. - Herman
On Thursday 21 March 2002 12:01 am, you wrote:
Postfix supports SMTP authentication. Why do you need DRAC?
- Alexey.
Alexey, Here's a situation where SMTP AUTH will not work, Lets say you are hosting a web site for someone and offering email service for their domain. These users connect to the internet from their home or office - via dial-up or cable, with an ISP such as prodigy, earthlink, etc. (ISP's who block port 25 at their mail gateway - blocked unless the mail originates from their domain) and want to send mail using their domain. Your hosted user completes an email using eudora or outlook, outlook express, etc. and attempts to send it with the sending/return address being user@hosted_domain. This mail will never make it to your server, their ISP blocks the mail, and the user receives a unable to connect to server, host unknown, or similar message. Using a web-mail / IMAP server combination allows the client to send mail via the web-mail program (port 80) which will never be blocked by their ISP. SMTP AUTH would be great in a corporate setting where it would be easy to control - all users would have the same MUA, etc - and, they have to use it... George
_____
< http://trelony.cjb.net/ > Alexey N. Solofnenko < http://www.inventigo.com/ > Inventigo LLC Pleasant Hill, CA (GMT-8 usually)
-----Original Message----- From: herman@knief.net [mailto:herman@knief.net] Sent: Wednesday, March 20, 2002 5:57 PM To: Alexey Solofnenko Cc: suse-linux-e@suse.com Subject: Re: [SLE] Email server III
Well, actually that is what DRAC is for... it's supposed to allow user who authenticate via pop or imap to send smtp... but I've never been able to get it to work and have to mod mynetworks.
- Herman
-- George Auch SuSE Pro 7.3 gwauch@auchnet.net Linux ns1 2.4.18 #1 Sat Mar 2 08:38:16 EST 2002 i686 unknown
participants (4)
-
Alexey Solofnenko
-
George Auch
-
Herman Knief
-
Michael Garabedian