Menu
▾
▴
webadmin-list
|
From: <dhu...@we...> - 2004-04-14 22:21:12
|
Hi List! At the moment I'm in progress to setup a box for ~70 domains with Webmin/Virtualmin -- can anybody shed some light on me how to configure Postfix to accept delivery for 'foreign' domains??? (Every help is welcome! Even RTFM --> 1. ... 2. ... 3. ...) The situation is as follows: - 1 Server; SuSE9.0; Webmin; Virtualmin; BIND9.x; MySQL; Postfix; Courier-IMAP; ... - ~70 domains to setup with about ~300+ users - Webmin/Virtualmin are working (like always...) - DNS is working (TNX Jamie!!) - MySQL (seems to be) working -- I'll have to check it later... - Postfix/Courier-IMAP is working as it should (for incoming mails...) Problem is: - some users are sending their mails _directly_ (*@t-online.de / *.isp.tld / ...) - some users (have to / will ?) use *our* server for relaying - all users are 'dialin'-users (even those with 'non-permanent' xDSL-accounts) - POSTFIX isn't an 'OpenRelay' by default/design - Virtualmin is (only?) creating 'system-accounts', not any sort of *SQL (correct if I'm wrong) - nor is Virtualmin creating additionals 'sender-X-can-relay-to-world' files or databases Question(s): - did I overlook some 'basic'-configurations ? - how can we configure POSTFIX to authenticate allowed senders against the (by Virtualmin) created 'system-accounts' ? - is anyone using POSTFIX with SMTP-auth against /etc/passwd | /etc/shadow ? - is anyone willing to share the secrets with me on how to make it work ? TNX & have a nice day!! -- best greetings from Solingen -- GERMANY Dieter Hürten / Webmin-DE |
|
From: Bill J. <bub...@co...> - 2004-04-14 23:22:59
|
-----Original Message----- From: web...@li... [mailto:web...@li...] On Behalf Of Dieter H=FCrten Sent: Wednesday, April 14, 2004 6:21 PM To: web...@li... Subject: [webmin-l] Postfix-Configuration for 'road-warriors' Hi List! At the moment I'm in progress to setup a box for ~70 domains with Webmin/Virtualmin -- can anybody shed some light on me how to configure Postfix to accept delivery for 'foreign' domains??? (Every help is welcome! Even RTFM --> 1. ... 2. ... 3. ...) The situation is as follows: - 1 Server; SuSE9.0; Webmin; Virtualmin; BIND9.x; MySQL; Postfix; Courier-IMAP; ... - ~70 domains to setup with about ~300+ users - Webmin/Virtualmin are working (like always...) - DNS is working (TNX Jamie!!) - MySQL (seems to be) working -- I'll have to check it later... - Postfix/Courier-IMAP is working as it should (for incoming mails...) Problem is: - some users are sending their mails _directly_ (*@t-online.de / *.isp.tld / ...) - some users (have to / will ?) use *our* server for relaying - all users are 'dialin'-users (even those with 'non-permanent' xDSL-accounts) - POSTFIX isn't an 'OpenRelay' by default/design - Virtualmin is (only?) creating 'system-accounts', not any sort of *SQL (correct if I'm wrong) - nor is Virtualmin creating additionals 'sender-X-can-relay-to-world' files or databases Question(s): - did I overlook some 'basic'-configurations ? - how can we configure POSTFIX to authenticate allowed senders against the (by Virtualmin) created 'system-accounts' ? - is anyone using POSTFIX with SMTP-auth against /etc/passwd | /etc/shadow ? - is anyone willing to share the secrets with me on how to make it work ? TNX & have a nice day!! --=20 best greetings from Solingen -- GERMANY Dieter H=FCrten / Webmin-DE [Bill James] The first thing that comes to mind is pop-before-smtp (I use it for a small user base but a lot of road warriors) See this link for excellent help on setting Postfix for this plus many other ideas http://www.postfix.org/addon.html Check out the Postfix mailing list archives, this has been discussed there multiple times http://www.postfix.org/lists.html Bill James Things that I may babble about in my emails are strictly my opinions/views and are in=20 no way related to ICSA Labs |
|
From: Christophe C. <chr...@pu...> - 2004-04-15 16:02:32
|
Dieter H=FCrten a =E9crit :
> Problem is:
> - POSTFIX isn't an 'OpenRelay' by default/design
1. Simplest solution: dont relay, ask users to user to
Use the mailserver of the ISP
2. smtp auth another solution (but mail client support?)
Ex Debian Linux : postfix-tls
3. pop-before-smtp is an answer (smtp auth another one)
Relaying is ok if IP has done a valid POP auth in the
previous 30 min
Postfix Frequently Asked Questions
http://www.postfix.org/faq.html#virtual_relay
Dynamic Relay Authorization Control written by Gary Mills
http://mail.cc.umanitoba.ca/drac/index.html
POP3-Authenticated Relaying written by Curt Sampson
http://poprelay.sourceforge.net/
Debian packages for 3 : pop-before-smtp or drac
Christophe
|
|
From: Martin M. <mm...@me...> - 2004-04-15 20:03:57
|
Hi Dieter, it's always nice to hear from you :-) Am Donnerstag, 15. April 2004 00:20 schrieb Dieter H=FCrten: > can anybody shed some light on me how to configure Postfix to accept > delivery for 'foreign' domains??? (Every help is welcome! Even RTFM --> > 1. ... 2. ... 3. ...) Ok, as you are begging for it ;-) RTFM - Now ! But now back to topics ... > - 1 Server; SuSE9.0; Webmin; Virtualmin; BIND9.x; MySQL; Postfix; > Courier-IMAP; ... - ~70 domains to setup with about ~300+ users > - Webmin/Virtualmin are working (like always...) > - DNS is working (TNX Jamie!!) > - MySQL (seems to be) working -- I'll have to check it later... > - Postfix/Courier-IMAP is working as it should (for incoming mails...) So far I see no problem with this. Except SuSE-Linux, but that's another=20 point and offtopic in this thread and on this list as well. > Problem is: > - some users are sending their mails _directly_ (*@t-online.de / > *.isp.tld / ...) - some users (have to / will ?) use *our* server for > relaying In general there's no problem in setting up postfix to be smtp-auth-ready i= n=20 general. Good point seems to me, that SuSE has a nice HOWTO on their pages= =20 according to SMTP-AUTH on postfix either way. A good start would be: http://sdb.suse.de/sdb/de/html/fhassel_slox_saslonly.html I cannot be more of help, because I generally use sendmail ;-) [...] > - Virtualmin is (only?) creating 'system-accounts', not any sort of *SQL > (correct if I'm wrong) Jupp, this is false ... Virtualmin Virtual Servers -> Module Config -> MySQL setup and configuration enabled? -> Yes Means: If a Virtual Server is created a MySQL-DB will be created with the=20 name of the domain you setup. Username and Password to connect to the=20 MySQL-DB is the Username/Password-Pair from the main Webmin-User who is=20 responsible for this contact. Just to be clear this pair comes from Virtualmin Virtual Servers -> Add a new virtual server -> Domain name -> Unix username -> Unix user's password > - nor is Virtualmin creating additionals 'sender-X-can-relay-to-world' > files or databases What does that mean? Is this postfix-related? > Question(s): > - did I overlook some 'basic'-configurations ? see above > - how can we configure POSTFIX to authenticate allowed senders against > the (by Virtualmin) created 'system-accounts' ? see above > - is anyone using POSTFIX with SMTP-auth against /etc/passwd | > /etc/shadow ? - is anyone willing to share the secrets with me on how to > make it work ? Surely, but ... see my sendmail-note above ;-) hth Martin =2D-=20 Proud Member of the Forte Agent Beta Team http://www.forteinc.com/ |
