Just FTR: if I set smtp_tls_security_level = none I get Diagnostic-Code: smtp; 530 5.7.0 Must issue a STARTTLS command first
Playing with several combination of the parameters suggested by Wietse doesn't seem to make any difference. Below is the last combination that I have tried. the lines starting with # were part of the previous line, but the result is always an error message in the logs identical to the one already posted, with the obvious exception of timestamps and msgids :-( smtp_sasl_auth_enable = yes smtp_sasl_mechanism_filter = #plain,login smtp_sasl_password_maps = hash:/etc/postfix/mymaps/sasl_passwd smtp_sasl_security_options = noanonymous smtp_sasl_type = cyrus smtp_sender_dependent_authentication = yes smtp_tls_auth_only = yes smtp_tls_security_level = may smtp_sasl_tls_security_options = noanonymous #, noplaintext 2015-02-24 18:22 GMT+01:00 Wietse Venema <wie...@porcupine.org>: > Marco Fioretti: > > 2015-02-24 13:44 GMT+01:00 Marco Fioretti <marco.fiore...@gmail.com>: > > > > > Hi Wietse! > > > > > > indeed, judging from this howto I found thanks to your pointer: > > > > > > http://kostja-osipov.livejournal.com/32518.html > > > > > > *sender_dependent_relayhost_maps *seems exactly what I need, > > > > > > > Does your system have "relay" permissions at the other domain's mai > > > > server? You may have to configure SASL auth and > > > > "smtp_sender_dependent_authentication = yes". > > > > > > that's likely the next step, now I know where to go, thanks. > > > > > > Marco > > > > > > > Hi, > > after reading some more documntation and tutorials online, I have added > the > > following section to my main.cf, postmapped and restarted postfix: > > > > smtp_sender_dependent_authentication = yes > > smtp_sasl_auth_enable = yes > > smtp_sasl_password_maps = > hash:/etc/postfix/mymaps/sasl_passwd > > smtp_tls_security_level = may > > This table is searched with the sender address first, and if no match > is found, it is searched as usual with server or destination. > > > smtp_sasl_mechanism_filter = plain, login > ... > > postfix/smtp[11856]: certificate verification failed for > > self-signed certificate > > postfix/smtp[11856]: warning: SASL authentication failure: No worthy > mechs > > found > > Did you set smtp_sasl_tls_security_options? The default does not > allow plaintext authentication. > > Wietse >
