Re: SASL per user or per host disable and, use of trace, strace
> Wietse Venema: >> Joe Acquisto-j4: >> > For version 3.7.4, is there a means of disabling for smtp per user, >> > per domain, per IP, when "smtp_sender_dependent_authentication = >> > yes"? >> >> Postfix will search smtp_sasl_password_maps by sender first, and >> if that is not found, then by destination. >> >> If you don't want Postfix to authenticate to a specific destination, >> then don't list that destination in smtp_sasl_password_maps. Ah, but that seem to be the case now. I do not have the destination for that user in "smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd" yet it attempts to deliver to the correct destination and attempts to authenticate. yet when "smtp_sender_dependent_authentication = no" it makes no attempt to authenticate to the very same target server. > > It is possible to separate the per-sender and other email streams, > but that is a bit more complicated, because most people don't have > your requireents. > > This uses sender_dependent_default_transport_maps, where all > per-sender default transports share a customized Postfix SMTP cient > with its own smtp_sasl_passwd_maps setting in master.cf, which has > all the per-sender entries. > > The other email streams use the 'normal' Postfix SMTP client with > only per-destination entries in smtp_sasl_passwd_maps. > > Wietse This does look a bit complicated and I hesitate to hack at it without further eyeballing. Not sure I see how this helps "coax" postfix to not authenticate on this one inbound user. Perhaps I just need to think about it more. joe a.
Re: SASL per user or per host disable and, use of trace, strace
> Wietse Venema: >> Joe Acquisto-j4: >> > For version 3.7.4, is there a means of disabling for smtp per user, >> > per domain, per IP, when "smtp_sender_dependent_authentication = >> > yes"? >> >> Postfix will search smtp_sasl_password_maps by sender first, and >> if that is not found, then by destination. >> >> If you don't want Postfix to authenticate to a specific destination, >> then don't list that destination in smtp_sasl_password_maps. > > It is possible to separate the per-sender and other email streams, > but that is a bit more complicated, because most people don't have > your requireents. > > This uses sender_dependent_default_transport_maps, where all > per-sender default transports share a customized Postfix SMTP cient > with its own smtp_sasl_passwd_maps setting in master.cf, which has > all the per-sender entries. > > The other email streams use the 'normal' Postfix SMTP client with > only per-destination entries in smtp_sasl_passwd_maps. > > Wietse Thanks much. I'll go searching for details/examples in a bit. joe a.
Re: SASL per user or per host disable and, use of trace, strace
Wietse Venema: > Joe Acquisto-j4: > > For version 3.7.4, is there a means of disabling for smtp per user, > > per domain, per IP, when "smtp_sender_dependent_authentication = > > yes"? > > Postfix will search smtp_sasl_password_maps by sender first, and > if that is not found, then by destination. > > If you don't want Postfix to authenticate to a specific destination, > then don't list that destination in smtp_sasl_password_maps. It is possible to separate the per-sender and other email streams, but that is a bit more complicated, because most people don't have your requireents. This uses sender_dependent_default_transport_maps, where all per-sender default transports share a customized Postfix SMTP cient with its own smtp_sasl_passwd_maps setting in master.cf, which has all the per-sender entries. The other email streams use the 'normal' Postfix SMTP client with only per-destination entries in smtp_sasl_passwd_maps. Wietse
Re: SASL per user or per host disable and, use of trace, strace
Joe Acquisto-j4: > For version 3.7.4, is there a means of disabling for smtp per user, > per domain, per IP, when "smtp_sender_dependent_authentication = > yes"? Postfix will search smtp_sasl_password_maps by sender first, and if that is not found, then by destination. If you don't want Postfix to authenticate to a specific destination, then don't list that destination in smtp_sasl_password_maps. Wietse
SASL per user or per host disable and, use of trace, strace
For version 3.7.4, is there a means of disabling for smtp per user, per domain, per IP, when "smtp_sender_dependent_authentication = yes"? Docs/supplements seem say some roughly analogous settings were available pre V 3.x, but are now deprecated. I've not found any current setting while flailing about in the deep ethereal seas. Essentially, looking for a means to tell postfix specifically (the little dickens) to not attempt to authenticate to a specific host, by user, or hostname/IP.. By domain would seem unlikely to help resolve an annoying oddity, described in another post. Any assistance in adding trace or strace. explicit or referral to recent (and reachable) docs would be appreciated. The two referenced programs are all that are natively available in this distribution. Thanks in advance. joe a