==== SMTPd- / SMTP-authentication ====

=== SMTPd-authentication ===
SASL must be configured! \\ 
in /etc/postfix/main.cf:
  smtpd_sasl_auth_enable = yes
  smtpd_sasl_security_options = noanonymous
  broken_sasl_auth_clients = yes
  smtpd_recipient_restrictions = ... permit_sasl_authenticated

== Testing ==
Code the username "larrylaffer" with the password "kensentme" for SMTP_AUTH in base64:
  station7:~ # perl -MMIME::Base64 -e 'print encode_base64("larrylaffer\0larrylaffer\0kensentme");'
  bGFycnlsYWZmZXIAbGFycnlsYWZmZXIAa2Vuc2VudG1l

Use the base64-output for a telnet session at port 25:
  station7:/etc/postfix # telnet localhost 25
  Trying 127.0.0.1...
  Connected to localhost.
  Escape character is '^]'.
  220 station7.example.com ESMTP Postfix
  ehlo station7.example.com
  250-station7.example.com
  250-PIPELINING
  250-SIZE 10240000
  250-VRFY
  250-ETRN
  250-AUTH LOGIN PLAIN
  250-AUTH=LOGIN PLAIN
  250 8BITMIME
  auth plain bGFycnlsYWZmZXIAbGFycnlsYWZmZXIAa2Vuc2VudG1l
  235 Authentication successful
  quit
  221 Bye
  Connection closed by foreign host

Test successful
\\ 
=== SMTP-authentication ===
SASL must be configured! \\ 
in /etc/postfix/main.cf:
  smtp_sasl_auth_enable = yes
Attention to the missing **d** - **NOT** smtp**d**_sasl_auth_enable, instead smtp_sasl_auth_enable

Create an additional email-account, e.g. "myauthaccount" with password "secretpassword"just for authentication.
Create in /etc/postfix/sasl_passwd separate lines for each mailserver you want to authenticate at:
E.g. 
  smtp.goneo.de myauthaccount:secretpassword
  smtp.1und1.de myauthaccount:secretpassword

After this you have to hash /etc/postfix/sasl_passwd:
  postmap /etc/postfix/sasl_passwd
\\ 
Also an useful guide is (in German): http://www.contentschmiede.de/archiv/2005/08/26/postfix_fuer_typo3_und_gmx_fit_machen/
\\ 
\\ 
<- [[linux:email:email|zurück]]