Date: Wed, 27 Jan 1999 13:08:19 -0500 From: Chris Johnson <cjohnson@palomine.net> To: freebsd-questions@FreeBSD.ORG Subject: Re: PassWord For Out Going Mail Message-ID: <19990127130819.B2392@palomine.net>
next in thread | raw e-mail | index | archive | help
Please copy your responses back to freebsd-questions. You'll reach a much wider audience than this audience of one. On Tue, Jan 26, 1999 at 11:55:03AM -0800, List wrote: > In This Case I am unable to restrict by IP numbers since clients do not have > dedicated Connections and are using different Dial-Up providers. Then why don't they use their dial-up providers' SMTP servers to relay their mail? > I was always thought send mail delivered all outgoing mail to another > program and could be configured to use PROCMAil and similar. IS THIS RIGHT > and if it is dont you think a script that would compare USER/PASS to a Data > Base before sending out mail could do the job. No, this won't work. Procmail is invoked only for local deliveries, and you should be willing to accept SMTP mail for a local user from anyone (ignorning, for the purposes of this discussion, things like RBL). The users you're trying to authenticate are the ones trying to use your SMTP server to relay mail to non-local addresses, and procmail, or any other local delivery agent, doesn't enter the picture in this case. In any case, there's no mechanism in the SMTP protocol to collect a user name and password. > ALSO > If outgoing mail process was setup to run with the users permissions > wouldn't the system ask for passwd any ways (login). No. > JUST SOME THOUGHTS > > I would love to know if there is anyone out there with a way to authenticate > outgoing mail (not using IP), IF ANYONE KNOWS I would appreciate the INFO. There just isn't any provision in the SMTP protocol for password authentication. If you want to control relaying, it'll have to be based on IP address, one way or another (or, I suppose, on envelope sender, but this isn't very secure). Some people have implemented SMTP-after-POP, where a particular IP address will be allowed to relay for a short period of time after a user from that IP address has authenticated via POP, but this still amounts to controlling relaying by IP address. The best solution is for people not connected to your network to use the mail relays provided for their use by their ISPs. Chris > > Thank You > Kia > > > -----Original Message----- > From: Chris Johnson <cjohnson@palomine.net> > To: kia <kia@dsuweb.com> > Cc: questions@FreeBSD.ORG <questions@FreeBSD.ORG> > Date: Sunday, January 24, 1999 11:06 AM > Subject: Re: PassWord For Out Going Mail > > > >On Sun, Jan 24, 1999 at 12:32:17PM -0800, kia wrote: > >> I would like to setup secure password authentication on out going smtp > mail. > >> Can someone tell me how to configure my box to do this, please. > > > >I don't think there's anything in the SMTP protocol that allows for > password > >authentication, secure or otherwise. I notice that M$ Outlook Express has a > box > >you can check off to set up authentication with the SMTP server, but I > suspect > >that's some protocol Microsoft invented that works only with Exchange > Server, > >or some other MS product. > > > >If you want to restrict relaying, you'll have to do it using one of the > >conventional methods (typically by restricting which IP address can use you > as > >a relay). > > > >Chris > > > >To Unsubscribe: send mail to majordomo@FreeBSD.org > >with "unsubscribe freebsd-questions" in the body of the message > > > ----- End forwarded message ----- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990127130819.B2392>