> Probably better is to only offer AUTH on submission port 587 with
> required encryption, and not offer AUTH at all on port 25.
That is exactly what I want to do. If I uncomment this in the master.cf does
it force TLS encryption on port 587 before authentication? If not, how would
I do that?
su
When I added "noplaintext" as a security option and because MD5 was in the
mech list SASL complained about no auth mechanism when it started. MD5 was
already in the mech list but never failed because auth never reached it in
the past, plain took precedence.
I removed "noplaintext" and removed eve
I apologize in advance for the long post. I started working for a small ISP
with around 3000 mailboxes and inherited a Postfix server that I've been
auditing. It's based on Ubuntu 8.04 LTS, Postfix 2.51, and runs Courier for
pop and imap authentication. It has encrypted passwords in a MySQL databa
