[POSTFIX]SMTP AUTH werkt, maar anoniem inloggen kan ook - Linux en overige clients

woensdag 19 oktober 2011 13:26

Acties:

0 Henk 'm!

van.der.schulting

Topicstarter

Zoals de titel zegt heb ik SMTP AUTH werkend op mijn Postfix server (SASL via Berkeley DB), maar ik kan nog steeds anoniem mail versturen. Dit is mijn config file

code:

# See /usr/share/postfix/main.cf.dist for a commented, more complete version


# Debian specific:  Specifying a file name will cause the first
# line of that file to be used as the name.  The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname

smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

readme_directory = no

# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.

myhostname = dev01
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
mydestination = 
relayhost = 
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = no 
smtpd_tls_auth_only = yes
relay_domains = mijndomein.nl
smtpd_recipient_restrictions = reject_unauth_destination, permit_sasl_authenticated
mailbox_command = procmail -a "$EXTENSION"
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all

Op internet kom je veelal tegen dat je deze setting moet hebben:

code:

1	smtpd_sasl_security_options = noanonymous

Dat werkt dus niet... helaas
Ik kom er niet echt meer uit... iemand enig idee wat ik fout doe?

woensdag 19 oktober 2011 13:32

Acties:

0 Henk 'm!

begintmeta

Moderator General Chat

smtpd_sasl_tls_security_options

woensdag 19 oktober 2011 14:07

Acties:

0 Henk 'm!

van.der.schulting

Topicstarter

Opgelost

Ik snap niet precies waarom ,maar nu werkt de server ALLEEN als ik inlog

Config:

code:

# See /usr/share/postfix/main.cf.dist for a commented, more complete version


# Debian specific:  Specifying a file name will cause the first
# line of that file to be used as the name.  The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname

smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

readme_directory = no

# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.

myhostname = dev01
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
mynetworks = 127.0.0.1
relayhost = 
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = no 
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
mailbox_command = procmail -a "$EXTENSION"
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all

woensdag 19 oktober 2011 21:26

Acties:

0 Henk 'm!

Kees

Serveradmin / BOFH / DoC

mijn smtpd_recipient_restrictions zijn:

            permit_sasl_authenticated,
            permit_mynetworks,
            reject_unknown_sender_domain,
            reject_unknown_recipient_domain,
            reject_unauth_destination,
            reject

Dat zou moeten werken.

"Een serveradmin, voluit een serveradministrator, is dan weer een slavenbeheerder oftewel een slavendrijver" - Rataplan