Dear Postfix-users! Over the last weekend i've setup a mail-environment for my personal use with a remote Postfix and Dovecot SASL/IMAP and locally mutt with Postfix as MTA. To be able to authenticate SMTP to the remote Postfix, i'm currently using smtp_sasl_password_maps, as described in http://www.postfix.org/SASL_README.html#client_sasl
However, i'm not very happy with this approach and i wonder if there are alternatives. Since i'm using PAM for authentication on the remote system, my main mailuser is my system-user at the same time. I don't feel too confident saving a plaintext-password on a laptop, where root-only permissions wouldn't help much when someone gains physical access to the harddisk. Maybe i'm missing something, but this doesn't seem to be a very sane way to work with passwords - especially when everything else is properly encrypted and authenticated. So i guess there must be some other way to do it?! The docs linked above also state: "saslauthd can verify the SMTP client credentials by using them to log into an IMAP server." Is there any mechanism to make this work with a remote IMAP and a local MTA? Is it still only possible with Cyrus? How do other people run the setup above, with a local mutt(=no built-in SMTP) on a mobile machine? Please bear with me if my questions are naive, i don't have too much experience yet with non-monolithic and non-trivial mailserver-configurations. Best regards, Christian -- Central Asia by bike, starting May 2013 - http://poab.org
