On 8/31/2013 6:40 PM, LuKreme wrote: > >> >> When you change your main.cf so that AUTH is not allowed on port 25, >> then additional settings are required in master.cf/submission to >> insure you don't reject AUTH users. > > Ah... um.. let me see if I have this straight then. I do not have sasl > settings like smtpd_sasl_auth_enable = yes in my postconf, so sasl and auth > are NOT available on port25, but I still have > > smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated > smtpd_relay_restrictions = permit_mynetworks permit_sasl_authenticated > reject_unauth_destination > > in main.conf. > > In several places in main.cf I have permit_sasl_authenticated. Should I only > have that in master.cf under submission? >
Since you don't have AUTH enabled on port 25, permit_sasl_authenticated is basically a no-op there. Postfix will check to see if the "authenticated" flag is set, and it will always be false. Other than using an insignificant amount of processing time, there will be no other effect. Take it out if you're sure you've covered in the master.cf/submission entry. But it really doesn't make much difference. -- Noel Jones
