Results 1 to 1 of 1
hi guys,
i'm trying to configure Postfix to allow only authenticated users to send emails.
But still users without authentication can send emails too. What did i wrong. i'll try ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
- 02-24-2009 #1Just Joined!
- Join Date
- Feb 2009
- Posts
- 3
Configure Postfix smtp authentication
hi guys,
i'm trying to configure Postfix to allow only authenticated users to send emails.
But still users without authentication can send emails too. What did i wrong. i'll try to post my main.cf
I added this part of code in my main.cfCode:# See /usr/share/postfix/main.cf.dist for a commented, more complete version # Debian specific: Specifying a file name will cause the first # line of that file to be used as the name. The Debian default # is /etc/mailname. #myorigin = /etc/mailname smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu) biff = no # appending .domain is the MUA's job. append_dot_mydomain = no # Uncomment the next line to generate "delayed mail" warnings #delay_warning_time = 4h readme_directory = no # TLS parameters smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key smtpd_use_tls=yes smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache # SASL SUPPORT FOR CLIENTS # The following options set parameters needed by Postfix to enable # Cyrus-SASL support for authentication of mail clients. # smtpd_sasl_auth_enable = yes smtpd_sasl_security_options = noanonymous smtpd_sasl_local_domain = $myhostname broken_sasl_auth_clients = yes smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, check_relay_domains # See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for # information on enabling SSL in the smtp client. alias_maps = hash:/etc/aliases alias_database = hash:/etc/aliases myorigin = /etc/mailname mydestination = mail.myfirstdomain.lt, localhost.localdomain, localhost, myfirstdomain.lt relayhost = mynetworks = 127.0.0.0/8, 192.168.1.0/24 mailbox_size_limit = 50000000 recipient_delimiter = + inet_protocols = all home_mailbox = Maildir/ mailbox_command = virtual_alias_domains = myfirstdomain.lt myseconddomain.ru mythirddomain.lt virtual_alias_maps = hash:/etc/postfix/virtual canonical_maps = hash:/etc/postfix/canonical
when i try to telnet i see aded these two new lines:Code:# SASL SUPPORT FOR CLIENTS # The following options set parameters needed by Postfix to enable # Cyrus-SASL support for authentication of mail clients. # smtpd_sasl_auth_enable = yes smtpd_sasl_security_options = noanonymous smtpd_sasl_local_domain = $myhostname broken_sasl_auth_clients = yes smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, check_relay_domains
But still users can login and send mail without secure password authentication.Code:220 myfirstdomain.lt ESMTP Postfix (Ubuntu) ehlo myfirstdomain.lt 250-myfirstdomain.lt 250-PIPELINING 250-SIZE 10240000 250-VRFY 250-ETRN 250-AUTH PLAIN DIGEST-MD5 LOGIN NTLM CRAM-MD5 250-AUTH=PLAIN DIGEST-MD5 LOGIN NTLM CRAM-MD5 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN
What is wrong ?
Thanx for your answers
Reply With Quote 
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
