I installed ispconfig under the perfect setup instructions but my SMTP server is not authenticating outbound e-mail against user credentials, only against domain name. Can you tell me where I can change this setting in ISPConfig so that outbound messages require user/passwd to be relayed?
SMTP Authentication is always enabled when you follow the perfect setup guide. Please compare your postfix setup with the perfect setup instructions. Be aware that SMTP authentication is never needed for any local domain names, otherwise your server wont be able to receive any email for local mailboxes.
So you're saying that in the perfect setup it's supposed to allow anyone using a pop email client such as entourage or outlook to be able to claim to have an email address that resides within my domain and send outbound mail, even if there is no such user or address in the ispconfig list? This is what is happening. that doesn't seem right... In MS Exchange server, I am able to configure the server such that the username and password are required from the email client in order to send outbound mail. How can I do that in the perfect setup/ispconfig?
No, I dont have said this, I told you the opposite. I said that you must authenticate with username and password and that the requirement to authenticate is configured in the perfect setup.
But does the above mean that local domain users, or those impersonating local domain users, do not have to authenticate?
No. The above statement is about receiving emails, not sending. If you send a email to a local account, there is never a authentication needed as otherwise your mailserver wont be able to receive emails at all. Thats the case for any linux and windows mailserver in general. But some poeple mix these things up and try to do a realay test against a local domain, which is useless.
gotcha - sorry for the confusion. my users are able to send email without turning authentication on in their mail clients. I want to force their user ids and passwords to be required. how can I do this? I followed the "perfect setup" instructions...
Anyone? Essentially, I can send mail by configuring my e-mail client with a made up e-mail address that uses my valid domain name. No password required. And yes, I'm testing from outside of my local network... Here's my main.cf file: and here are the results when I connect to the SMTP port via SSH on my local machine: I really don't want to be a spam source. Can anybody out there help?
What is defined as mynetworks? more /etc/postfix/main.cf | grep mynetworks looks almost the same as mine, which does require outgoing auth from clients. As for the second part, that just tells you tls is working.
Is this supposed to be defined in the same main.cf document? If so, I'm missing that piece. (I posted the entire contents of the main.cf file above) How do I specify mynetworks to allow the machines on my network (192.168.1.x) to allow SMTP relay? Thanks!
mynetworks = 127.0.0.0/8 192.168.1.0/24 I didn't include the second part on mine b/c I wanted everyone to used outgoing auth. even my computers. Might be a good idea to leave off for testing then add after you know relaying is blocked
Now we're getting somewhere! Good idea. So what I did was change: to to force outbound authentication for all e-mail clients. So far, so good. Thanks for your help!
Your mynetworks setting is commented out. If you want that it is used by postfix, you will have to remove the "#" in front of the line and restart postfix.
It is always better to specify the exact IP addresses and ranges to be sure that the settings are correct instead of hoping thet postfix guessses the settings correctly by reading your network configuration. Of yourse you will ahve to comment out the mynetworks_style line.
