Date: Mon, 7 Aug 2017 09:30:47 +0100 From: Matthew Seaman <matthew@FreeBSD.org> To: freebsd-questions@freebsd.org Subject: Re: sendmail seperate mta/msa processes Message-ID: <44ca8ebf-b1b2-93b4-943c-83d185952613@FreeBSD.org> In-Reply-To: <20170806152213.GB29094@FreeBSD> References: <20170806152213.GB29094@FreeBSD>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --BhqivHSexJs6GBAo89E7vkmhCJxKqaufc Content-Type: multipart/mixed; boundary="SlAuhVNOisuxu657dFFIaSbWkXwqpQSt6"; protected-headers="v1" From: Matthew Seaman <matthew@FreeBSD.org> To: freebsd-questions@freebsd.org Message-ID: <44ca8ebf-b1b2-93b4-943c-83d185952613@FreeBSD.org> Subject: Re: sendmail seperate mta/msa processes References: <20170806152213.GB29094@FreeBSD> In-Reply-To: <20170806152213.GB29094@FreeBSD> --SlAuhVNOisuxu657dFFIaSbWkXwqpQSt6 Content-Type: text/plain; charset=utf-8 Content-Language: en-GB Content-Transfer-Encoding: quoted-printable On 06/08/2017 16:22, Edgar Pettijohn wrote: > Currently my mail server is working well enough. However, I would > like to try setting up multiple sendmail processses with their own > configurations. So I can have one running on port 25 with spam > milters, no relays allowed, and deliver mail to dovecot lmtp. Then > have a seperate process with its own config running on port 587 that > requires tls+auth before it relays. >=20 > Is this something people do regularly and is easy to implement? Or is > it one of those things that after I begin I will wish I had never > attempted. Having a separate port 587 listener that requires STARTTLS and authentication is a pretty standard configuration. Typically you wouldn't run two separate sendmail processes for that though. I dropped sendmail in favour of postfix some time ago, but as I recall, the essential parts of the configuration were: FEATURE(`no_default_msa') and then defining a series of DAEMON_OPTIONS(...) defining where sendmail would open listening sockets and the various flags to require things like authentication after STARTTLS. You also need a MAILER(...) definition to configure delivery via LMTP. However, my advice would be to forget trying to do this with sendmail and install a different MTA. I prefer postfix because it combines speed and security with a rally quite readable configuration syntax. Cheers, Matthew --SlAuhVNOisuxu657dFFIaSbWkXwqpQSt6-- --BhqivHSexJs6GBAo89E7vkmhCJxKqaufc Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- iQJ8BAEBCgBmBQJZiCU9XxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQ2NTNBNjhCOTEzQTRFNkNGM0UxRTEzMjZC QjIzQUY1MThFMUE0MDEzAAoJELsjr1GOGkATYLcQAIb4zaE6Qg4hRMovxryIU+6m O07ScyFfmAcMZ3aKoathcLMeedyWO0HJUyhK125jIcd5+HPUXxHEs6J4SPbAOcbU 84L6hUX/7b2HGoVexHEsw4eUmkb0vMCzaPXl9QtTZkUUbTdPiVAjEXVXDJRjnm15 dXbHO3lCwuD2bH3yrHWmLoVi323zcEa/Oo7mKeb9dsl+0kMLAuxDF+cgMlAqCPYu JD8MC9SYjz5Z6440g6+swbqbPqSa5X9dw/fauAHD35ajKOMdCQruNVOBQMpWem3v qcebNSqnoaq/Nlm0y9Jwu5xmIFDKpSp8Obhs2yemYnfe5t2E9bl+TjrJiiM/chZu 0/0AzjMsnGTImOGN1vFKE/SKFoWx6fhAmb7EH56vWsVXfvXHWkwF0jQBpQJmFgsn NoyjQSywedMaTI9exXwYagFQic5kLaMEoOuoR3fZLUgPvE1GPi4AHoaIrMT+9sWq 38Eu3omOY8tipqy4hHqDHMubSbl3hO9B21bMySXSVTaswrTQ4aYK6lKRq140Nb7J yGIkLzVZx10ksLyQMpZdqW2VdAixGQvJN4XTUji8Qn/CLtocKWHZZ76mFhB11ShJ qCZdMD/TKFofzPMZqYsBWv4m4FiIL5g+YIEMej5E4NyjHsS3CoL6r7i6v3qGVNHI U9iWN8KCQxOFfjgffeTg =y49J -----END PGP SIGNATURE----- --BhqivHSexJs6GBAo89E7vkmhCJxKqaufc--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44ca8ebf-b1b2-93b4-943c-83d185952613>