Re: Question getting Mail.app working with PostFix SMTP

Sat, 21 Sep 2019 23:16:51 -0700 

On Sep 21, 2019, at 10:32 PM, Viktor Dukhovni <postfix-us...@dukhovni.org> 
wrote:
> Most likely because it sees no SASL support announced.  Perhaps it is 
> connecting
> to port 25 and not 587.  You should consider (if not the case already) adding:
> 
>       -o syslog_name=postfix/submission

This is what I have own master.cf and it works perfectly with iOS, iPadOS, and 
macOS Mail.

submission inet  n       -       n       -       -       smtpd
    -o smtpd_tls_security_level =encrypt
    -o smtpd_sasl_auth_enable=yes
    -o smtpd_sasl_type=dovecot
    -o smtpd_sasl_security_options=noanonymous
    -o smtpd_sasl_path=private/auth
    -o smtpd_milters=
    -o milter_connect_macros=
    -o milter_macro_daemon_name=ORIGINATING
    -o syslog_name=postfix/submit
    -o smtpd_client_restrictions=permit_sasl_authenticated,reject
    -o smtpd_data_restrictions=
    -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
    -o smtpd_helo_restrictions=
    -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject
smtps      inet  n       -       n       -       -       smtpd
    -o smtpd_tls_wrappermode =yes
    -o smtpd_sasl_auth_enable=yes
    -o smtpd_sasl_type=dovecot
    -o smtpd_milters=
    -o milter_connect_macros=
    -o milter_macro_daemon_name=ORIGINATING
    -o smtpd_sasl_security_options=noanonymous
    -o smtpd_sasl_path=private/auth
    -o smtpd_data_restrictions=
    -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
    -o smtpd_helo_restrictions=
    -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject
    -o syslog_name=postfix/smtps
    -o smtpd_tls_wrappermode=yes

I leave mail settings at “Automatically manage connection settings” and Robert 
is your father’s simian brother.

The keys are that submission uses smtpd_tls_security_level and smpts uses 
smtpd_tls_wrappermode

Also, as Viktor eluded to, you should not be using port 25 for accepting mail 
from MUAs.

Though I enabled smtps a while back, I am not sure the anyone is actually using 
it. I certainly haven’t seen it in the logs, but I do not keep mail/log for 
very long and I don’t check for smtps in it often enough to be sure. Still, it 
dodoesn’t hurt having it, and it may help at some point.


-- 
She'd always tried to face towards the light. But the harder you stared into
the brightness the harsher it burned into you until, at last, the temptation
picked you up and bid you turn around to see how long, rich, strong and dark,
streaming away behind you, your shadow had become- --Carpe Jugulum

Reply via email to