From owner-freebsd-security Wed Sep 11 5:30:48 2002 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9D2BE37B400 for ; Wed, 11 Sep 2002 05:30:36 -0700 (PDT) Received: from host185.dolanmedia.com (host185.dolanmedia.com [209.98.197.185]) by mx1.FreeBSD.org (Postfix) with SMTP id BE97643E77 for ; Wed, 11 Sep 2002 05:30:17 -0700 (PDT) (envelope-from greg.panula@dolaninformation.com) Received: (qmail 87341 invoked by uid 0); 11 Sep 2002 12:29:28 -0000 Received: from greg.panula@dolaninformation.com by proxy with qmail-scanner-0.96 (. Clean. Processed in 0.488015 secs); 11 Sep 2002 12:29:28 -0000 X-Qmail-Scanner-Mail-From: greg.panula@dolaninformation.com via proxy X-Qmail-Scanner-Rcpt-To: freebsd-security@freebsd.org X-Qmail-Scanner: 0.96 (No viruses found. Processed in 0.488015 secs) Received: from unknown (HELO mail.dolanmedia.com) (10.1.1.23) by host185.dolanmedia.com with SMTP; 11 Sep 2002 12:29:27 -0000 Received: from dolaninformation.com (10.1.1.135) by mail.dolanmedia.com (Worldmail 1.3.167) for freebsd-security@freebsd.org; 11 Sep 2002 07:29:27 -0500 Message-ID: <3D7F3726.958781C8@dolaninformation.com> Date: Wed, 11 Sep 2002 07:29:26 -0500 From: Greg Panula Reply-To: greg.panula@dolaninformation.com Organization: Dolan Information Center Inc X-Mailer: Mozilla 4.76 [en] (X11; U; Linux 2.2.12 i386) X-Accept-Language: en MIME-Version: 1.0 To: freebsd-security@freebsd.org Subject: Re: asmtp 587 - quickie faq submission References: <002b01c25930$f4627270$0100a8c0@soap> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Ok, here is the cleaned-up faq submission for asmtp & port 587. Q: What is ASMTP? A: Authenticated SMTP, explained in RFC 2554 Q: What is ASMTP good for? A: Allow the SMTP server to authenicate users before allowing them to use the smtp service for sending mail. Useful if you have roaming users that connect from foreign networks(e.g. hotel somewhere). Q: How do I or my users make use of ASMTP? A: The user's email client needs to be configured to authenicate themselves to the smtp server. Earthlink has a FAQ section explaining various email client configurations at http://support.earthlink.net/mu/1/psc/img/walkthroughs/Help_FAQ/7280.psc.html Q: How do I implement ASMTP on my mailserver? A: Depends on your MTA. For information about configuring ASMTP&Postfix checkout: http://howto.state-of-mind.de/ Q: Why does Sendmail listen on Port 587? A: For compliance with RFC 2476 which states that seperating the different parts of mail handling(submissions&transfers) is a good thing and port 587 was deemed to be the port for handling submissions. Sendmail 8.10.0 introduced DaemonPortOptions to support this. Checkout http://www.sendmail.org/~gshapiro/8.10.Training/DaemonPortOptions.html for some quick info about DaemonPortOptions. Q: How do I turn off the Message Submission Agent aka stop Sendmail from listening on port 587? A: Add FEATURE(`no_default_msa') your config.mc config file and recreate your sendmail.cf file. Brief example of recreating your sendmail.cf can be found at: http://www.sendmail.org/m4/intro.html -- Greg "George F. Costanzo" wrote: > > >Q: OK, how do I implement ASMTP in postfix? > >A: Read this: http://www.mandrakesecure.net/en/docs/postfix-sasl.php > ... > >While referring a Mandrake doc may not be welcome in a FreeBSD FAQ, > this > >is the same document http://www.postfix.org/docs.html refers to for > >"Postfix + SASL". > > I'd recommend pointing them to http://howto.state-of-mind.de/ instead of > the mandrake one. It explains how to generically setup SASL (ASMTP), > along with the wise option of also setting up TLS. > > -- > George F. Costanzo > PGP Fingerprint: 1E4F 09F2 D637 B917 8D61 0413 4FBC 7DB0 1407 2B6D To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message