BTW does it unsure my server if i comment out this like " -o smtpd_tls_security_level=encrypt'
On Sun, Apr 5, 2015 at 1:54 AM, Muhammad Yousuf Khan <sir...@gmail.com> wrote: > Thanks Mathias Jeschke and Petrick. > > Issue is resolved as i commented out the said line. > > Thanks, > yousuf > > On Sun, Apr 5, 2015 at 1:30 AM, Mathias Jeschke <postfix-us...@0xaffe.de> > wrote: > >> Hi, >> >> On 2015-04-0 at 22:17 Muhammad Yousuf Khan wrote: >> >> smtp inet n - - - - smtpd >>> #smtp inet n - - - 1 postscreen >>> #smtpd pass - - - - - smtpd >>> #dnsblog unix - - - - 0 dnsblog >>> #tlsproxy unix - - - - 0 tlsproxy >>> #submission inet n - - - - smtpd >>> -o syslog_name=postfix/submission >>> -o smtpd_tls_security_level=encrypt >>> -o smtpd_sasl_auth_enable=yes >>> # -o smtpd_client_restrictions=permit_sasl_authenticated,reject >>> -o milter_macro_daemon_name=ORIGINATING >>> >> >> Here you go - due to the way how you commented out options you have set >> smtpd_tls_security_level=encrypt for smtpd (port 25), thus all clients >> on that port have to use STARTTLS to deliver mail. >> >> Typically admins tend to configure options in main.cf that are common >> for all postfix daemons and then override some options in master.cf. >> >> For example, in most setups no encryption is enforced on port 25 and >> enforce it for submission (or smtps). >> >> I recommend to comment again the lines below submission and reload >> postfix. >> >> Cheers, >> Mathias >> >> >
