79 lines
3.5 KiB
HTML
79 lines
3.5 KiB
HTML
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
|
|
<title>Enable SMTP SASL AUTH on port 25</title>
|
|
<link rel="stylesheet" type="text/css" href="./css/markdown.css" />
|
|
</head>
|
|
<body>
|
|
|
|
<div id="navigation">
|
|
<a href="/index.html" target="_blank">
|
|
<img alt="iRedMail web site"
|
|
src="./images/logo-iredmail.png"
|
|
style="vertical-align: middle; height: 30px;"
|
|
/>
|
|
<span>iRedMail</span>
|
|
</a>
|
|
// <a href="./index.html">Document Index</a></div><div class="admonition note">
|
|
<p class="admonition-title">This tutorial is available in other languages</p>
|
|
<p><a href="./enable.smtp.auth.on.port.25-it_IT.html">Italiano</a> /</p>
|
|
</div>
|
|
<h1 id="enable-smtp-sasl-auth-on-port-25">Enable SMTP SASL AUTH on port 25</h1>
|
|
<p>Since iRedMail-0.9.5, SMTP auth on port 25 is disabled by default, all end
|
|
users are forced to send email through port 587 (SMTP over TLS). If you need
|
|
to allow insecure SMTP auth on port 25 for some reason, please follow steps
|
|
below to enable it.</p>
|
|
<div class="admonition note">
|
|
<p class="admonition-title">Note</p>
|
|
<p>If you have just few clients need to send email through port 25, e.g.
|
|
network printer, old network devices which don't support secure
|
|
connection, you may try another tutorial instead:
|
|
<a href="./additional.smtp.port.html">Allow internal network devices to send email with insecure connection</a></p>
|
|
</div>
|
|
<ul>
|
|
<li>Find comment out settings in Postfix config file <code>/etc/postfix/main.cf</code>
|
|
(Linux/OpenBSD) or <code>/usr/local/etc/postfix/main.cf</code> (FreeBSD):</li>
|
|
</ul>
|
|
<pre><code>#
|
|
# Enable SASL authentication on port 25 and force TLS-encrypted SASL authentication.
|
|
# WARNING: NOT RECOMMENDED to enable smtp auth on port 25, all end users should
|
|
# be forced to submit email through port 587 instead.
|
|
#
|
|
#smtpd_sasl_auth_enable = yes
|
|
#smtpd_tls_auth_only = yes
|
|
#smtpd_sasl_security_options = noanonymous
|
|
#smtpd_tls_security_level = may
|
|
</code></pre>
|
|
|
|
<div class="admonition note">
|
|
<p class="admonition-title">Note</p>
|
|
<p>With <code>smtpd_tls_auth_only = yes</code>, it requires clients to enable STARTTLS
|
|
for secure connection, if you don't want this for some reason, please
|
|
comment it out.</p>
|
|
</div>
|
|
<ul>
|
|
<li>uncomment the last 4 lines:</li>
|
|
</ul>
|
|
<pre><code>smtpd_sasl_auth_enable = yes
|
|
smtpd_tls_auth_only = yes
|
|
smtpd_sasl_security_options = noanonymous
|
|
smtpd_tls_security_level = may
|
|
</code></pre>
|
|
|
|
<ul>
|
|
<li>Restart or reload Postfix service.</li>
|
|
</ul>
|
|
<p>That's all.</p><div class="footer">
|
|
<p style="text-align: center; color: grey;">All documents are available in <a href="https://bitbucket.org/zhb/iredmail-docs/src">BitBucket repository</a>, and published under <a href="http://creativecommons.org/licenses/by-nd/3.0/us/" target="_blank">Creative Commons</a> license. You can <a href="https://bitbucket.org/zhb/iredmail-docs/get/tip.tar.bz2">download the latest version</a> for offline reading. If you found something wrong, please do <a href="http://www.iredmail.org/contact.html">contact us</a> to fix it.</p>
|
|
</div>
|
|
<script type="text/javascript">
|
|
(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
|
|
(i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
|
|
m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
|
|
})(window,document,'script','//www.google-analytics.com/analytics.js','ga');
|
|
|
|
ga('create', 'UA-3293801-21', 'auto');
|
|
ga('send', 'pageview');
|
|
</script>
|
|
</body></html> |