Postfix SASL authentication with SMTP port 465:


 

By default postfix SMTP works on 25 port.  You can check this by following command with the output below:

#netstat -nat

tcp        0      0 0.0.0.0:25             0.0.0.0:*               LISTEN   


Here we will change the port to 465 with SASL authentication. It is useful technique to fight against spam. Users those travel here and there with their laptops need not to change their e-mail client software settings also.


Here is how we can do it.
 

Step 1. Edit the file /etc/dovecot.conf and make sure your auth default section has the lines below.

auth default {
socket listen {
  client {
  path = /var/spool/postfix/private/auth
  mode = 0660
  user = postfix
  group = postfix
    }
  }
  mechanisms = plain login
}


Step 2. Edit /etc/postfix/main.cf, find the keys below and change its values as follows or add it at the bottom of the file if the key (the word before the = sign) cannot be found.

mynetworks = 127.0.0.0/8
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
smtpd_sasl_auth_enable = yes
smtpd_recipient_restrictions =  permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
broken_sasl_auth_clients = yes
smtpd_sender_restrictions = permit_sasl_authenticated

 

Step 3. Edit /etc/postfix/master.cf

Put hash before the following line.

#smtp      inet  n       -       -       -       -       smtpd

Remove hash from the following lines.


smtps     inet  n       -       -       -       -       smtpd
-o smtpd_sasl_auth_enable=yes

-o smtpd_client_restrictions=permit_sasl_authenticated,reject

Step 4. /etc/init.d/postfix restart

 
Step 5. /etc/init.d/dovecot restart



Now check the port again with the command:

#netstat -nat

tcp        0      0 0.0.0.0:465             0.0.0.0:*               LISTEN

 

Check more with telnet:
 
#telnet localhost 465

Comments

Post a Comment

Popular posts from this blog

Squid Configuration

#apt-get install squid Minimum Configuration:                    edit      http_port 8080   acl localhost src 127.0.0.1/32 acl to_localhost dst 127.0.0.0/8 add      acl our_network src 192.168.200.0/24   In the part “ # Recommended minimum configuration:”   add       http_access allow our_network http_access deny all   save & exit (Esc+Shift+:wq!) # /etc/init.d/squid restart
Read more

Squint Configure

1.       Download actual version of squint and extract it: http://www.ledge.co.za/software/squint/ wget www.ledge.co.za/software/squint/squint-0.3.18.tar.gz 2.       tar – zxvf squint-0.3.18.tar.gz         3.        cd squint-0.3.18            ##To see installation steps --- more INSTALL   ### 4.       cp squint.pl squint.cron.sh /usr/local/bin/ 5.         cd /usr/local/bin# restart squint.pl squint.cron.sh squint.cron.sh init 6.       squint.cron.sh all 7.       squint.cron.sh regen 8.       Now Edit BASEDIR=”/var/www/localhost/htdocs/squint”          ### unhash this Line and Changed to >     ...
Read more

How to Change the Logo from Zimbra Admin Console

Image
To get a professional look, most of Mail Server Administrator wants to change the default Zimbra logo. Today I am going to show how to replace the Zimbra logo with  your own company logo.   Step:1 Firstly, logo size has to change as specified here, otherwise the image may not display correctly. ·          300x48 pixels (Login screen) ·          200x28 pixels (Zimbra interface, top left corner) Step: 2 Rename the logos as follows. LoginBanner_white.png AppBanner_white.png Step:3 Go to the Logo directory on zimbra and rename the existing default logos as backup: root@hmail:~# su zimbra zimbra@hmail:~$ /opt/zimbra/jetty_base/webapps/zimbra/skins/_base/logos$   LoginBanner_white_back.png AppBanner_white_back.png Step:4 Upload your own company images on Logo Directory and change the ownership permission of the images zimbra@hmail:~$ chown zimbra:zimbra LoginBan...
Read more