On Mon, Dec 09, 2019 at 06:15:16AM -0700, @lbutlr wrote:
> > On 09 Dec 2019, at 00:17, Felix Rubio <fe...@kngnt.org> wrote:
> >
> > Allow unencrypted/unauthenticated users to submit mail from local
> > (127.0.0.x) connections
Whether or not one is willing (or needs) to allow unauthenticated connections
from 127.0.0.1, TLS encryption is certainly futile on the loopback interface.
> There is no need for this, and it is dangerous. Just because a connection is
> local doesn’t mean it is trustworthy.
Perhaps not, but for many Postfix users it is entirely reasonable to permit
loopback traffic without SASL or TLS auth.
SMTP content filters generally run on loopback interfaces, and don't require
authentication on either side.
> I didn’t look any further because until you close this security hole, none of
> the rest of your settings matter.
Please don't impute false crises. There is no "security hole", though the
configuration is a mess, unauthenticated loopback (and other "mynetworks")
traffic is normal.
--
Viktor.
