> Hello people, > > I'm new Here, and I have a lot of questions for you, thanks in advance :) > > > I'm configuring a postfix 2.3 server in a debian etch, I'ts my first > time so I would like to do a simple configuration. > > I've been reading de documentation of postfix.org, believe me. > > That is what I've done > > 1- Installed Postfix > > that's my main.cf file (I'm following the Postfix virtual MAILBOX > example: separate domains, non-UNIX accountsconf from postfix.org, so > I added some things) > > smtpd_sasl_path = smtpd > smtpd_sasl_auth_enable = yes > smtpd_sasl_security_options = noanonymous > smtpd_sasl_local_domain = $myhostname > broken_sasl_auth_clients = yes > smtpd_recipient_restrictions = permit_mynetworks, > permit_sasl_authenticated, check_relay_domains > > myhostname = orion.ballano.net > alias_maps = hash:/etc/aliases > alias_database = hash:/etc/aliases > myorigin = /etc/mailname > mydestination = ballano.net, orion.ballano.net, localhost.ballano.net, > localhost > relayhost = > mynetworks = 127.0.0.0/8 > mailbox_size_limit = 0 > recipient_delimiter = + > inet_interfaces = all > > virtual_mailbox_domains = ballano.net > virtual_mailbox_base = /var/mail/vhosts > virtual_mailbox_maps = hash:/etc/postfix/vmailbox > > virtual_minimun_uid = 100 > virtual_uid_maps = static:5000 > virtual_gid_maps = static:5000 > > > My questions are, how can I secure the access to the smtp? I've been > reading abous sasl2 so I Installed sasl2 and saslauth demon, (is in > the same packet I think ??) > > saslauth is running > ps wax | grep saslauthd > 19707 ? Ss 0:00 /usr/sbin/saslauthd -a pam -c -n 5 > 19708 ? S 0:00 /usr/sbin/saslauthd -a pam -c -n 5 > 19709 ? S 0:00 /usr/sbin/saslauthd -a pam -c -n 5 > 19710 ? S 0:00 /usr/sbin/saslauthd -a pam -c -n 5 > > auth with pam?? I'dont wont to creat UNIX users.
Show output # saslauthd -v > "/usr/local/lib/sasl2/smtpd.conf" > pwcheck_method: auxprop > auxprop_plugin: sasldb > mech_list: PLAIN LOGIN CRAM-MD5 DIGEST-MD5 > > I also create a sasldb2 database but I don't know how to paste the > whole thing... # cat /usr/lib/sasl2/smtpd.conf pwcheck_method: auxprop auxprop_plugin: sasldb mech_list: plain login > I want to autenticate my client with a secure layer, you know I don't > want to send the pass and user in plain text. and the problem is that > I'm not sure if this is the correct way to do it. Use ssl/tls http://www.postfix.org/TLS_README.html
