, I know, there are security concerns... But technically, is it
possible with OpenSMTPD?
--
Selmeci Tamás
http://www.486.hu/
--
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
intext channels.
>
> it is not an SMTP limitation, it is a decision we made years ago and you
> will not have a work-around for this.
That's the answer to my question. So there's no easy way for me to
force plain text auth with OpenSMTPD. I'll consider setting up at least
self-signed certificates et
relay via
> > tls+auth://t-onl...@mail.t-online.hu auth
>
> accept from local for any relay via \
> tls+auth://t-onl...@mail.t-online.hu auth
>
>
> That should stop the visitors for now.
Yeah, but I can't send mails from my domain to other than 486.hu...
--
Selm
cation, see 'cred' file.
accept from any for ! domain 486.hu relay via
tls+auth://t-onl...@mail.t-online.hu auth
-
/etc/smtpd/cred (for smarthost authentication):
t-onlineusern...@t-online.hu:VERY_SECURE_PASSWORD
--
Selmeci Tamás
http:
on a separate port (usually
> the submission port, 587) for users to authenticate.
Sounds good, but unauthenticated relaying still works with this...
--
Selmeci Tamás
http://www.486.hu/
ion to send email to my gmail address -
at it worked all the time.
Maybe something went wrong during ./configure?
The /var/log/messages logs are attached in a file.
Regards,
--
Selmeci Tamás
Aug 21 09:11:37 486 mail.info smtpd[13132]: 242a473f710cb686 smtp
event=connected address=217.150.134.30 h
> That last rule is essentially "accept from any for (pretty much) any" so
> you have created an open relay.
>
> Replace the "from any" with "from local" so the rule reads as:
>
>accept from local for ! domain 486.hu relay via
> tls+auth://t-onl...@mail.t-online.hu
Hello!
In brief: STARTTLS is enabled, there is a self-signed certificate for
encryption (better than nothing), smarthost is used to send mails from
my domain. My problem is that it still accepts SMTP connections (over
TLS) without authentication. What I want:
- anybody can send email to my email