LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Software (https://www.linuxquestions.org/questions/linux-software-2/)
-   -   login without authorization - Postfix/SASL master.cf (https://www.linuxquestions.org/questions/linux-software-2/login-without-authorization-postfix-sasl-master-cf-4175582162/)

brandon65 06-13-2016 09:11 AM
login without authorization - Postfix/SASL master.cf
 
I have a problem with logging without authentication on the port SMTPS (465) postfix, because
because security is not working
In master.cf configuration I have:

Code:
smtps    inet  n      -      n      -      1      postscreen
 -o smtpd_tls_wrappermode=yes
 -o smtpd_sasl_auth_enable=yes
 -o content_filter=smtps
 -o smtpd_client_restrictions=permit_sasl_authenticated,reject
 -o smtpd_sender_restrictions=reject_unknown_sender_domain,permit_sasl_authenticated
 -o smtpd_recipient_restrictions=permit_sasl_authenticated
 -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
On port 25 and 587 is OK, ie. not logged without authorization, in my configurations have:

Code:
smtp      inet  n      -      -      -      -      smtpd
 -o smtpd_client_restrictions=permit_sasl_authenticated,reject_unauth_destination
 -o smtpd_sender_restrictions=reject_unknown_sender_domain,permit_sasl_authenticated,reject
 -o smtpd_sasl_auth_enable=yes
 -o smtpd_recipient_restrictions=permit_sasl_authenticated
 -o smtpd_tls_security_level=encrypt
Does anyone know how to just block port 465?
any ideas?

Upuetz 06-28-2016 06:30 PM
Uh - blocking 465 is rather easy: simply comment out (write # as the first letter in the rows) for the smtps ... part
The "smtps" -> 465 mapping comes from the file /etc/services - take a look.
HTH
Upuetz


All times are GMT -5. The time now is 03:06 AM.