Viktor Dukhovni:
> On Fri, Jul 05, 2013 at 04:00:44PM -0400, Wietse Venema wrote:
> > Viktor Dukhovni:
> > > On Fri, Jul 05, 2013 at 03:46:46PM -0400, Wietse Venema wrote:
> > >
> > > > To clone the submission service and set "smtpd_tls_auth_only=no"
> > > > for connections to 127.0.0.1:
> > > >
> > > > /etc/postfix/master.cf
> > > > 127.0.0.1:submission ...same stuff as ordinary submission service...
> > > > ... same stuff as ordinary submission service...
> > > > -o smtpd_tls_auth_only=no
> > >
> > > One may then need to make the default submission entry also specify a
> > > specific IP address, as listeners on 0.0.0.0:port exclude listeners on
> > > specific addresses on most systems.
> >
> > That is not needed. The more specific binding to 127.0.0.1 takes
> > precedence over the unspecific binding to 0.0.0.0.
>
> Linux forbids bindings to 127.0.0.1 when a wildcard binding exists,
> you're probably testing on a FreeBSD system.
I know that this behavior (a specific bind prevails over a wild-card
bind for all interface addresses) pre-dates FreeBSD by many years.
I see the same behavior on Solaris:
UID PID PPID C STIME TTY TIME CMD
...
postfix 1249 352 0 18:16:56 ? 0:00 smtpd -n 127.0.0.1:smtp ...
postfix 1254 352 0 18:17:03 ? 0:00 smtpd -n smtp ...
Ditto for other interface addresses.
Wietse
