Re: postfix and sasl

To: debian-user@lists.debian.org
Subject: Re: postfix and sasl
From: Stan Hoeppner <stan@hardwarefreak.com>
Date: Fri, 13 Nov 2009 11:57:55 -0600
Message-id: <[🔎] 4AFD9E23.6000601@hardwarefreak.com>
In-reply-to: <[🔎] 1258121145.3049.17.camel@sr3.softel.cu>
References: <[🔎] 20091111225844.GU5934@penguin.codegnome.org> <[🔎] 4AFBC28B.40403@googlemail.com> <[🔎] 4AFC1203.6070504@orange.fr> <[🔎] 1258121145.3049.17.camel@sr3.softel.cu>

You should probably ask this question on postfix-users@postfix.org

--
Stan


Leonardo Cuyar Morales put forth on 11/13/2009 8:05 AM:
> I'm having problem authenticating users in postfix through sasl, this is
> the main.cf part settings I make:
> 
> *****************************************************************************************************
> myhostname = $mydomain
> alias_maps = hash:/etc/aliases
> alias_database = hash:/etc/aliases
> mydestination = $mydomain, localhost.$mydomain
> relayhost =
> mynetworks = 127.0.0.0/8
> mailbox_command = procmail -a "$EXTENSION"
> mailbox_size_limit = 0
> recipient_delimiter = +
> inet_interfaces = all
> mydomain = localdomain
> myorigin = $mydomain
> 
> smtp_sasl_auth_enabled = yes
> smtp_sender_login_maps = hash:/etc/postfix/sasl_senders
> smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
> smtp_sender_dependent_authentication = yes
> 
> smtpd_sasl_auth_enabled = yes
> smtpd_sasl_security_options = noanonymous
> smtpd_sasl_local_domain = $mydomain
> broken_sasl_auth_clients = yes
> smtpd_sender_login_maps = hash:/etc/postfix/sasl_senders
> 
> #medidas anti UCE
> smtpd_delay_reject = no
> smtpd_helo_required = yes
> smtpd_client_restrictions = check_client_access
> pcre:/etc/postfix/client_checks.pcre
> smtpd_helo_restrictions = check_helo_access
> pcre:/etc/postfix/helo_checks.pcre
> smtpd_sender_restrictions = check_sender_access
> pcre:/etc/postfix/sender_checks.pcre
> 
> smtpd_recipient_restrictions = permit_sasl_authenticated
> mail_spool_directory = /var/spool/mail/
> ***********************************************************************************************************
> 
> and the master.cf part concerning the smtp client:
> 
> ***********************************************************************************************************
> smtp      inet  n       -       -       -       -       smtpd -v
> #submission inet n       -       -       -       -       smtpd
> #  -o smtpd_enforce_tls=yes
>    -o smtpd_sasl_auth_enable=yes
>    -o smtpd_client_restrictions=permit_sasl_authenticated
> ***********************************************************************************************************
> 
> this above means I only can send mails if I'm authenticated first, but
> when I connect to the server with telnet to test, I can send mails
> without the need of authentication, is there something misconfigured here?
> 
> 
> Ing. Leonardo Cuyar Morales
> Grupo de Infraestructura Softel
>

Reply to:

References:
- sun-java6-plugin on amd64
  - From: "Todd A. Jacobs" <nospam@codegnome.org>
- Re: sun-java6-plugin on amd64
  - From: "tv.debian@googlemail.com" <tv.debian@googlemail.com>
- Re: sun-java6-plugin on amd64
  - From: mess-mate <mess-mate@orange.fr>
- postfix and sasl
  - From: Leonardo Cuyar Morales <leonardo@softel.cu>

Prev by Date: Re: Ctrl Alt F11 gives me trouble
Next by Date: Redundant scrips in /etc/init.d?
Previous by thread: postfix and sasl
Next by thread: radeon/radeonhd issues with xen domU
Index(es):
- Date
- Thread