From owner-freebsd-security Tue Sep 10 7:22:29 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 896FB37B400 for ; Tue, 10 Sep 2002 07:22:22 -0700 (PDT) Received: from antalya.lupe-christoph.de (pD9E88428.dip0.t-ipconnect.de [217.232.132.40]) by mx1.FreeBSD.org (Postfix) with ESMTP id CDC2D43E3B for ; Tue, 10 Sep 2002 07:22:20 -0700 (PDT) (envelope-from lupe@lupe-christoph.de) Received: by antalya.lupe-christoph.de (Postfix, from userid 1000) id 57FC85E9; Tue, 10 Sep 2002 16:22:18 +0200 (CEST) Date: Tue, 10 Sep 2002 16:22:18 +0200 To: Greg Panula Cc: freebsd-security@FreeBSD.ORG, Hans Zaunere Subject: Re: asmtp 587 - quickie faq submission Message-ID: <20020910142218.GF2306@lupe-christoph.de> References: <20020906230716.99501.qmail@web12808.mail.yahoo.com> <3D7DF985.5C41C075@dolaninformation.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3D7DF985.5C41C075@dolaninformation.com> User-Agent: Mutt/1.4i From: lupe@lupe-christoph.de (Lupe Christoph) Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Tuesday, 2002-09-10 at 08:54:13 -0500, Greg Panula wrote: > Hmm, this original email/question is a good example why a > security-questions@freebsd.org mail-list might be a good thing. > Anyways, to help balance this thread away from noise and towards > signal... here is a quickie faq submission for this thread. :) A few nitpicks, and one addition... > Q: What is ASMTP? > A: Authenicated SMTP, explained in RFC 2554 Authenticated > Q: What is ASMTP good for? > A: Allow the SMTP server to authenicate users before allowing them to authenticate > use the smtp service for sending mail. Useful if you have roaming users > that connect from foreign networks(e.g. hotel somewhere). > Q: How do I or my users make use of ASMTP? > A: The user's email client needs to be configured to authenicate > themselves to the smtp server. Earthlink has a FAQ section explaining itself > various email client configurations at > http://support.earthlink.net/mu/1/psc/img/walkthroughs/Help_FAQ/7280.psc.html Q: How do I implement ASMTP on my mailserver A: Depends on your MTA... Q: OK, how do I implement ASMTP in sendmail? A: (Dunfino, I haven't done this yet.) Q: OK, how do I implement ASMTP in postfix? A: Read this: http://www.mandrakesecure.net/en/docs/postfix-sasl.php > Q: Why does Sendmail listen on Port 587? > A: For compliance with RFC 2476 which states that seperating the > different parts of mail handling(submissions&transfers) is a good thing > and port 587 was deemed to be the port for handling submissions. > Sendmail 8.10.0 introduced DaemonPortOptions to support this. Checkout > http://www.sendmail.org/~gshapiro/8.10.Training/DaemonPortOptions.html > for some quick info about DaemonPortOptions. > Q: How do I turn off the Message Submission Agent aka stop listening on > port 587? > A: Add FEATURE(`no_default_msa') your cf.m4 config file and recreate > your sendmail.cf file. > Someone might want to verify the information above; I haven't done any > of it and stopped using&admin'ing sendmail a year or two ago. :) While referring a Mandrake doc may not be welcome in a FreeBSD FAQ, this is the same document http://www.postfix.org/docs.html refers to for "Postfix + SASL". HTH, Lupe Christoph -- | lupe@lupe-christoph.de | http://www.lupe-christoph.de/ | | Big Misunderstandings #6398: The Titanic was not supposed to be | | unsinkable. The designer had a speech impediment. He said: "I have | | thith great unthinkable conthept ..." | To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message