From b037e2bf5c65b97810d5e1565a97dd9e7990f925 Mon Sep 17 00:00:00 2001
From: Zhang Huangbin This tutorial is available in other languages English / Sin dalla versione 0.9.5 di iRedMail, l'autenticazione su porta 25 è disabilitata per default, tutti gli utenti sono costretti a mandare email attraverso la posta 587 (SMTP over TLS). Se avete la necessità di abilitare l'autenticazione insicura sulla porta 25, per qualsivoglia motivo, seguite i passi sotto elencati per abilitarla. Nota This tutorial is available in other languages Italiano / Since iRedMail-0.9.5, SMTP auth on port 25 is disabled by default, all end
users are forced to send email through port 587 (SMTP over TLS). If you need
to allow insecure SMTP auth on port 25 for some reason, please follow steps
@@ -58,6 +58,12 @@ smtpd_tls_security_level = may
Warning With That's all. This tutorial is available in other languages English / Sin dalla versione 0.9.5 di iRedMail, l'autenticazione su porta 25 è disabilitata per default, tutti gli utenti sono costretti a mandare email attraverso la posta 587 (SMTP over TLS). Se avete la necessità di abilitare l'autenticazione insicura sulla porta 25, per qualsivoglia motivo, seguite i passi sotto elencati per abilitarla. Nota Se avete la necessita di far usare solo ad un piccolo numero di utenti la porta 25m per esempio una stampante di rete o vecchi apparati di rete che non sopportano connessioni sicure, potete invece provare questo altro tutorial: Abilitare apparati interni di rete a mandare mail su connessione insicura Questo è tutto. This tutorial is available in other languages Italiano / Since iRedMail-0.9.5, SMTP auth on port 25 is disabled by default, all end
+users are forced to send email through port 587 (SMTP over TLS). If you need
+to allow insecure SMTP auth on port 25 for some reason, please follow steps
+below to enable it. Note If you have just few clients need to send email through port 25, e.g.
+network printer, old network devices which don't support secure
+connection, you may try another tutorial instead:
+Allow internal network devices to send email with insecure connection Warning With That's all.Abilitare servizio non protetto SMTP su porta 25
+ // Document IndexAbilitare servizio non protetto SMTP su porta 25
Enable insecure SMTP service on port 25
+Enable SMTP SASL AUTH on port 25
+smtpd_tls_auth_only = yes
, it requires clients to enable STARTTLS
+for secure connection, if you don't want this for some reason, please
+comment it out.Abilitare servizio non protetto SMTP su porta 25
+
+
+/etc/postfix/main.cf
(linux/OpenBDS) oppure /usr/local/etc/postfix/main.cf
per FreeBSD:
+
+#
+# Enable SASL authentication on port 25 and force TLS-encrypted SASL authentication.
+# WARNING: NOT RECOMMENDED to enable smtp auth on port 25, all end users should
+# be forced to submit email through port 587 instead.
+#
+#smtpd_sasl_auth_enable = yes
+#smtpd_tls_auth_only = yes
+#smtpd_sasl_security_options = noanonymous
+#smtpd_tls_security_level = may
+
+
+
+
+smtpd_sasl_auth_enable = yes
+smtpd_tls_auth_only = yes
+smtpd_sasl_security_options = noanonymous
+smtpd_tls_security_level = may
+
+
+Enable SMTP SASL AUTH on port 25
+
+
+/etc/postfix/main.cf
+ (Linux/OpenBSD) or /usr/local/etc/postfix/main.cf
(FreeBSD):
+
+#
+# Enable SASL authentication on port 25 and force TLS-encrypted SASL authentication.
+# WARNING: NOT RECOMMENDED to enable smtp auth on port 25, all end users should
+# be forced to submit email through port 587 instead.
+#
+#smtpd_sasl_auth_enable = yes
+#smtpd_tls_auth_only = yes
+#smtpd_sasl_security_options = noanonymous
+#smtpd_tls_security_level = may
+
+
+
+
+smtpd_sasl_auth_enable = yes
+smtpd_tls_auth_only = yes
+smtpd_sasl_security_options = noanonymous
+smtpd_tls_security_level = may
+
+
+smtpd_tls_auth_only = yes
, it requires clients to enable STARTTLS
+for secure connection, if you don't want this for some reason, please
+comment it out.
/usr/local/etc/amavisd.conf
./etc/amavisd.conf
.# Custom short log template (at log_level 0), add SpamAssassin testing result (Tests: [xxx])
-#
-# Note: You can find the original log template at the bottom of
-# /usr/sbin/amavisd-new.
-$log_templ = '
-[?%#D|#|Passed #
-[? [:ccat|major] |#
-OTHER|CLEAN|MTA-BLOCKED|OVERSIZED|BAD-HEADER-[:ccat|minor]|SPAMMY|SPAM|\
-UNCHECKED[?[:ccat|minor]||-ENCRYPTED|]|BANNED (%F)|INFECTED (%V)]#
- {[:actions_performed]}#
-,[?%p|| %p][?%a||[?%l|| LOCAL] [:client_addr_port]][?%e|| \[%e\]] [:mail_addr_decode_octets|%s] -> [%D|[:mail_addr_decode_octets|%D]|,]#
-[? %q ||, quarantine: %q]#
-[? %Q ||, Queue-ID: %Q]#
-[? %m ||, Message-ID: [:mail_addr_decode_octets|%m]]#
-[? %r ||, Resent-Message-ID: [:mail_addr_decode_octets|%r]]#
-[? %i ||, mail_id: %i]#
-, Hits: [:SCORE]#
-, size: %z#
-[? [:partition_tag] ||, pt: [:partition_tag]]#
-[~[:remote_mta_smtp_response]|["^$"]||[", queued_as: "]]\
-[remote_mta_smtp_response|[~%x|["queued as ([0-9A-Za-z]+)$"]|["%1"]|["%0"]]|/]#
-#, Subject: [:dquote|[:mime2utf8|[:header_field_octets|Subject]|100|1]]#
-#, From: [:uquote|[:mail_addr_decode_octets|[:rfc2822_from]]]#
-[? [:dkim|sig_sd] ||, dkim_sd=[:dkim|sig_sd]]#
-[? [:dkim|newsig_sd] ||, dkim_new=[:dkim|newsig_sd]]#
-, %y ms#
-[? %#T ||, Tests: \[[%T|,]\]]#
-]
-[?%#O|#|Blocked #
-[? [:ccat|major|blocking] |#
-OTHER|CLEAN|MTA-BLOCKED|OVERSIZED|BAD-HEADER-[:ccat|minor]|SPAMMY|SPAM|\
-UNCHECKED[?[:ccat|minor]||-ENCRYPTED|]|BANNED (%F)|INFECTED (%V)]#
- {[:actions_performed]}#
-,[?%p|| %p][?%a||[?%l|| LOCAL] [:client_addr_port]][?%e|| \[%e\]] [:mail_addr_decode_octets|%s] -> [%O|[:mail_addr_decode_octets|%O]|,]#
-[? %q ||, quarantine: %q]#
-[? %Q ||, Queue-ID: %Q]#
-[? %m ||, Message-ID: [:mail_addr_decode_octets|%m]]#
-[? %r ||, Resent-Message-ID: [:mail_addr_decode_octets|%r]]#
-[? %i ||, mail_id: %i]#
-, Hits: [:SCORE]#
-, size: %z#
-[? [:partition_tag] ||, pt: [:partition_tag]]#
-#, Subject: [:dquote|[:mime2utf8|[:header_field_octets|Subject]|100|1]]#
-#, From: [:uquote|[:mail_addr_decode_octets|[:rfc2822_from]]]#
-[? [:dkim|sig_sd] ||, dkim_sd=[:dkim|sig_sd]]#
-[? [:dkim|newsig_sd] ||, dkim_new=[:dkim|newsig_sd]]#
-, %y ms#
-[? %#T ||, Tests: \[[%T|,]\]]#
-]';
+# Always log verbose info of processed mail, including subject, SpamAssassin
+# testing results, etc, useful for troubleshooting..
+$log_templ = $log_verbose_templ;
Restarting Amavisd service is required.
diff --git a/it_IT/howto/1-enable.insecure.smtp.md b/it_IT/howto/1-enable.smtp.auth.on.port.25.md
similarity index 100%
rename from it_IT/howto/1-enable.insecure.smtp.md
rename to it_IT/howto/1-enable.smtp.auth.on.port.25.md