Re: smtp_sasl_password_maps

• Previous message: Mike Morris: "[OT] Gmail Backscatter?"
• Maybe in reply to: Anne Wilson: "smtp_sasl_password_maps"
• Next in thread: Anne Wilson: "Re: smtp_sasl_password_maps"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Anne Wilson wrote:
> [snip]
> smtp_sasl_path = private/auth
> smtp_sasl_type = dovecot
> smtpd_sasl_local_domain = $myhostname
>

As Noel said, you mix smtp_ and smtpd_ parameters:

smtp_* paremeters are used when postfix sends mail to a remote system.
smtpd_* parameters (with a 'd' in smtpD) are used when postfix receives
mail.

It seems you want the latter, so remove the smtp_sasl_* parameters and
use these instead:

smtpd_sasl_auth_enable = yes
broken_sasl_auth_clients = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_authenticated_header = yes
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/dovecot-auth

check the SASL README (server side part, not client side) for more
information.

once you are confrtable, setup TLS and enforce it for mail submission,
so that passwords are not sent in the clear.

PS. dovecot only implements "server side sasl". it cannot be used with
smtp_sasl_* settings.

• Previous message: Mike Morris: "[OT] Gmail Backscatter?"
• Maybe in reply to: Anne Wilson: "smtp_sasl_password_maps"
• Next in thread: Anne Wilson: "Re: smtp_sasl_password_maps"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]