Thanks Wietse, On Tue, 5 Aug 2008 09:30:44 am Wietse Venema wrote: > Postfix passes the information in the SMTP client's AUTH command. > This is how I got the Dovecot extension from Timo. If someone is > willing to monitor his docs for changes,
it seems fairly stable. Going off the doc/auth-protocol.txt changelog Nov 12 2006 lport/rport was added. Aug 07 2005 changed valid-client-cert to ssl-valid-cert Oct 22 2004 original documentation Current implementation of the authentication server in dovecot seems to ignore parameters it doesn't understand. > then they are welcome to do so. I won't. On the basis of this apparent stability and compatibility would you consider accepting a patch? > > Is adding these parameters to postfix's sasl authentication a useful > > feature request? > > > > Should I be doing this another way? > > Just whitelist the client with: > good idea. Though by offering smtp services to users I don't think I can get away with something so simple. Strictly speaking don't need the web mail to authenticate though I like the added anti-spoofing protection it provides. I guess a password so long that it isn't realistically brute-forceable will do. -- Daniel Black -- Proudly a Gentoo Linux User. Gnu-PG/PGP signed and encrypted email preferred http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x76677097 GPG Signature D934 5397 A84A 6366 9687 9EB2 861A 4ABA 7667 7097
signature.asc
Description: This is a digitally signed message part.
