John:
> I have submission sasl set as Venema suggests, should/would it a good
> idea to add "smtp_sasl_auth_enable=no" to the smtp entry in master.cf,
> or is the default "good enough".
If you're concerned that SASL will be enabled by accident, you could
set "smtp_sasl_auth_enable=no" in main.cf, and use
$ postconf -P | grep 'smtp_sasl_auth_enable = yes'
to identy the services that may have SASL enabled in master.cf.
(the postconf command does not know that smtp_sasl_auth_enable
has effect only on smtpd processes).
Wietse
