On Mon, Dec 09, 2019 at 07:17:46AM +, Felix Rubio wrote:
> My requirements are:
> - Require encrypted and authenticated user to submit mail from non-local
> (other than 127.0.0.x) connections
> - Allow unencrypted/unauthenticated users to submit mail from local
> (127.0.0.x) connections
>
Hi all,
I have been running a postfix server for a while. Though I think I
have come with a sensible configuration, I have not been able to check
if it is really sound. Can somebody give it a look, security-wise?
My requirements are:
- Require encrypted and authenticated user to submit
* Gerard E. Seibert :
> Thank you for that quick and accurate answer. I was just wondering, is
> this a bug in 'libsasl' or is it due to a change in Outlook? My setup
> had been working for years without any errors.
It's very likely not a bug, but simply how SASL works. Unless configured
Wietse:
>According to posttls-finger (below my signature), they support two
>SASL authentication methods: LOGIN and XOAUTH2.
>
>Let's get rid of XOAUTH2:
>
># postconf -e "smtp_sasl_mechanism_filter = login"
># postfix reload
>
>and see if that makes a difference.
Gerard E. Seibert:
>
On Sun, 8 Dec 2019 10:30:33 -0500 (EST), Wietse Venema stated:
>Gerard E. Seibert:
>> Dec 8 09:42:30 scorpio postfix/smtp[87448]: 47W8Dj4Q1jz1xx1: SASL
>> authentication failed; cannot authenticate to server
>> smtp.office365.com[52.96.58.98]: invalid parameter supplied
>
>The "invalid
Gerard E. Seibert:
> Dec 8 09:42:30 scorpio postfix/smtp[87448]: 47W8Dj4Q1jz1xx1: SASL
> authentication failed; cannot authenticate to server
> smtp.office365.com[52.96.58.98]: invalid parameter supplied
The "invalid parameter supplied" is a libsasl error message.
According to posttls-finger
I use Postfix with "sender_dependent_relayhost_maps". Up until
yesterday, it had been working flawlessly for years. Now, I am
suddenly unable to send mail using "smtp.office365.com". This is the
latest log entries for the last attempt.
Dec 8 09:42:30 scorpio postfix/smtp[87448]: Trusted TLS