On Wed, Sep 09, 2009 at 03:19:11PM -0400, Gerard wrote:
> I use fetchmail to harvest mail from a couple of accounts. I added this
> to the main.cf file and fetchmail stopped delivering mail.
>
> smtpd_tls_security_level = encrypt
This requires all clients to use SSL/TLS.
> I then added this to the main.cf file:
>
> smtpd_sasl_exceptions_networks = localhost
This suppresses SASL authentication for local hosts, but SASL is not SSL.
> I thought that would correct the problem; however, it doesn't. Mail
> from the regular users on the network is delivered to the server's IP:
> 192.168.1.103
>
> Is there any way I can get this to work?
Try:
smtpd_tls_security_level = may
and if you want to insist that some clients use SSL/TLS, do so via
"reject_plaintext_session" after permitting clients that don't need
to use SSL/TLS:
http://www.postfix.org/postconf.5.html#reject_plaintext_session
For example:
smtpd_client_restrictions =
permit_inet_interfaces,
reject_plaintext_session
--
Viktor.
Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.
To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:
<mailto:majord...@postfix.org?body=unsubscribe%20postfix-users>
If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.
