Rich Winkel wrote:
I have postfix-2.5.4 and dovecot-1.1.2. I'd like to use:
smtpd_sasl_security_options = noplaintext
It barfs on this with:
fatal: no SASL authentication mechanisms
and smtpd doesn't start.
Of course I don't want people sending their passwords in plaintext
over the net. Am I missing something?
Thanks,
Rich
Most folks use
smtpd_tls_auth_only = yes
to require STARTTLS before AUTH since some popular mail
clients only support plaintext methods (plain and/or login),
rather than disabling plaintext.
Anyway, you need to enable something besides "plain" and
"login" in your dovecot.conf if you want to disable plaintext
in postfix.
# dovecot.conf snippit
auth default {
# Space separated list of wanted authentication mechanisms:
# plain login digest-md5 cram-md5 ntlm rpa apop anonymous
mechanisms = login plain digest-md5 cram-md5
--
Noel Jones
