Best security answer I can think of is using something like the SuSE email server. Inside users straight forward enough. Outside users are via a web interface which can have SSL, Certificates etc. Worth a look. Sendmail has alot of configuration for anti spam and anti relay which in later versions are on by default and actually difficult to disable if you need too. PAM on any later version of Linux is going to raise it's head for the auth side of things. Get a latest version of PAM which is more straight forward to work with. Also look at installing Webmin on the Unix box which will greatly ease the configuration of all of the above.
Good Luck Trevor -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: 10 March 2002 02:08 To: [EMAIL PROTECTED] Subject: smtp auth doubts Importance: High -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 hi list, i am setting up a smtp server ( freebsd & qmail or sendmail ) for our organisation which will also be the domain mail server for the internet. we have users who are on both sides of the firewall ( inside the org as well as outside on the internet ) to pervent this server becoming a open relay we are planning to implement smtp auth before sending email. can anyone please who has done this sort of thing before elaborate more on pros and cons also can please send the snippet of actual code ( c, perl or any lang welcome ) that gets executed on client side while the smtp auth (plain) ( just trying to gauge the security impact of this kind of auth ) many thanks in advance, Regards, Aditya -----BEGIN PGP SIGNATURE----- Version: PGP 7.1 Comment: PGP ID: BDE6 89FE 90AE BF0B 9E48 0183 F1DD 813E 6EE0 0231 iQA/AwUBPIY9OPHdgT5u4AIxEQKdbgCeL+Ri/fhYNm+ZCIbXvnfQZAo61AYAn2sc ojYRTWnzAukyslV8yMGWMfAg =qRrK -----END PGP SIGNATURE----- ________________________________________________________________________ Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com) ****************************************************************************** This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this message in error please notify SYSNET Ltd., at telephone no: +353-1-2983000 or [EMAIL PROTECTED] ******************************************************************************
