On 2/3/10 11:21 AM, Leland Jackson wrote: > Does anyone have any experience configuring Postfix, so it > would relay email from iPhones without becoming an open relay.
Yes. You need to set up smtp sasl authentication, and then set up the iPhone to log in to smtp securely using the ssl certificate. I've been logging in this way to my mail server for years, and have users on my mail server all over the world connecting in this fashion. I don't care if they are in a café, at home, at work, what their ip is, etc. I only care that they login securely, and provide their username and password over the encrypted channel. I've had my iPhone for a few months now and I believe it automatically configured itself to use this connection method. I think there was a couple minutes where it tried various connection options before finally deciding on the settings and prompting me for my username and password. Pretty slick. > Currently my email server, (eg Postfix) will only relay > email from local IP address within my local network. The > local computer's IP address must be included in the > /etc/mail/access.db with "RELAY" privileges before Postfix > will relay the mail. I could RELAY for all computers within > my smvfp.com domain, but the iPhone will generlly connect to > various domain other than the smvfp.com domain, and there is > no way to know beforehand the domain, network, or IP address > the iPhone will have. smtpd_sender_restrictions = permit_sasl_authenticated, permit_mynetworks, ... I've probably given you enough keywords for a google search... Paul _______________________________________________ Post Messages to: [email protected] Subscription Maintenance: http://leafe.com/mailman/listinfo/profox OT-free version of this list: http://leafe.com/mailman/listinfo/profoxtech Searchable Archive: http://leafe.com/archives/search/profox This message: http://leafe.com/archives/byMID/profox/[email protected] ** All postings, unless explicitly stated otherwise, are the opinions of the author, and do not constitute legal or medical advice. This statement is added to the messages for those lawyers who are too stupid to see the obvious.
