On Tue, Jul 16, 2013 at 11:06:47PM +0200, Vincent Pelletier wrote:
> Following pointers and advice from pj and adaptr on freenode, I've
> setup postfix on my box to send mail through the mail accounts I have
> (including the one I'm sending from now). The problem is, some of my
> account providers do not support TLS, so I have to use stunnel. Then,
> postfix logs
> warning: SASL authentication failure: No worthy mechs found
> thanks to
> smtp_sasl_security_options = noanonymous, noplaintext
> and queues the message for retry.
>
> How can I tell postfix that plaintext auth mechanisms should be allowed
> when sending to a specific ip (and maybe port) ?
> Of course, I would like to keep plaintext auth disallowed anywhere else.
Separate destinations with incompatible SASL requirements by
transport (clone smtp/unix under additional names). Configure
each transport's SASL settings via:
master.cf:
mumble unix ... smtp
-o smtp_sasl_security_options=$mumble_sasl_security_options
main.cf:
mumble_sasl_security_options = ...
transport:
example.com mumble:[mail.example.com]:587
And similarly from sender_dependent_default_transport_maps, ...
--
Viktor.
