From owner-freebsd-questions@freebsd.org  Mon Aug  7 16:32:05 2017
Return-Path: <owner-freebsd-questions@freebsd.org>
Delivered-To: freebsd-questions@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 3831BDB4E68
 for <freebsd-questions@mailman.ysv.freebsd.org>;
 Mon,  7 Aug 2017 16:32:05 +0000 (UTC)
 (envelope-from edgar@pettijohn-web.com)
Received: from mail.pettijohn-web.com (pettijohn-web.com [108.61.222.55])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client CN "mail.pettijohn-web.com",
 Issuer "Let's Encrypt Authority X3" (not verified))
 by mx1.freebsd.org (Postfix) with ESMTPS id 0749573671;
 Mon,  7 Aug 2017 16:32:04 +0000 (UTC)
 (envelope-from edgar@pettijohn-web.com)
Received: from [10.94.245.53] (mobile-107-107-186-253.mycingular.net
 [107.107.186.253]) (authenticated bits=0)
 by mail.pettijohn-web.com (8.15.2/8.15.2) with ESMTPSA id v77GVspi020341
 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT);
 Mon, 7 Aug 2017 11:31:55 -0500 (CDT)
 (envelope-from edgar@pettijohn-web.com)
Date: Mon, 7 Aug 2017 11:31:50 -0500
From: edgar <edgar@pettijohn-web.com>
To: Matthew Seaman <matthew@FreeBSD.org>, freebsd-questions
 <freebsd-questions@freebsd.org>
Message-ID: <4f930ec8-d4f7-4ed4-b0ae-1ad607bd3e27@localhost>
In-Reply-To: <44ca8ebf-b1b2-93b4-943c-83d185952613@FreeBSD.org>
 <20170806152213.GB29094@FreeBSD>
References: <20170806152213.GB29094@FreeBSD>
Subject: Re: Re: sendmail seperate mta/msa processes
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-Content-Filtered-By: Mailman/MimeDel 2.1.23
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Aug 2017 16:32:05 -0000

 
 

 
 
 

 
 
 
 
>  
> On Aug 7, 2017 at 3:30 AM,  <Matthew Seaman>  wrote:
>  
>  
>  On 06/08/2017 16:22, Edgar Pettijohn wrote:  >  Currently my mail server is working well enough. However, I would  >  like to try setting up multiple sendmail processses with their own  >  configurations. So I can have one running on port 25 with spam  >  milters, no relays allowed, and deliver mail to dovecot lmtp. Then  >  have a seperate process with its own config running on port 587 that  >  requires tls+auth before it relays.  >   >  Is this something people do regularly and is easy to implement? Or is  >  it one of those things that after I begin I will wish I had never  >  attempted. Having a separate port 587 listener that requires STARTTLS and authentication is a pretty standard configuration. Typically you wouldn't run two separate sendmail processes for that though. I dropped sendmail in favour of postfix some time ago, but as I recall, the essential parts of the configuration were: FEATURE(`no_default_msa') and then defining a series of DAEMON_OPTIONS(...) de!
 fining wh
ere sendmail would open listening sockets and the various flags to require things like authentication after STARTTLS. You also need a MAILER(...) definition to configure delivery via LMTP. However, my advice would be to forget trying to do this with sendmail and install a different MTA. I prefer postfix because it combines speed and security with a rally quite readable configuration syntax. Cheers, Matthew 
>    
>  
>  
>    
> I agree postfix is probably the better choice.
 
>
 
> Separate processes I think will be better due to milters not being controllable. Don't really want to greylist authenticated relay mail. However, after you get the hang of it. Send mail is fairly easy to configure. I also solved the pidfile problem with an undocumented  
 
>
 
> -OPidFile=/path
 
>
 
> Command line option.
 
>
 
> Edgar
 
>  
>  
>    
>
   
From owner-freebsd-questions@freebsd.org  Tue Aug  8 11:40:03 2017
Return-Path: <owner-freebsd-questions@freebsd.org>
Delivered-To: freebsd-questions@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id E30D8DD62A7
 for <freebsd-questions@mailman.ysv.freebsd.org>;
 Tue,  8 Aug 2017 11:40:03 +0000 (UTC)
 (envelope-from chiu@e1.lincogndesign.com)
Received: from na89.mxout.mta4.net (na89.mxout.mta4.net [104.243.65.89])
 (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id A7CC4825E2
 for <freebsd-questions@freebsd.org>; Tue,  8 Aug 2017 11:40:03 +0000 (UTC)
 (envelope-from chiu@e1.lincogndesign.com)
DKIM-Signature: v=1; a=rsa-sha256; d=e1.lincogndesign.com; s=api;
 c=relaxed/simple; t=1502192398;
 h=from:date:subject:reply-to:to:list-unsubscribe:mime-version;
 bh=6odjnKS4dWRQ4vwsFJd4H3oeIVFyJ+/PYhcvssECakE=;
 b=mUVvBJV9YoWbTOa6Yf/MK2Df+/57nPE4f6LY/1c1KNlowtr6yNlYI7VTgY79EzZkEeSgiJ5yv8n
 TgkSh6n+d/exJqSBZxcFmhNS/t+za5fbQfU1xvcwvl7Ryq/s6JKzmFHXXc/ixJAPm/PoaD6NF8nXh
 WgxRCcpW441SaU8pAqU=
DKIM-Signature: v=1; a=rsa-sha256; d=elasticemail.com; s=api;
 c=relaxed/simple; t=1502192398;
 h=from:date:subject:reply-to:to:list-unsubscribe;
 bh=6odjnKS4dWRQ4vwsFJd4H3oeIVFyJ+/PYhcvssECakE=;
 b=hRF22KWV+tlVF5MyjNnWjO0K440UC+kI1tT5fhbfFm7Gs56h6pxXBoBOnALygwMgIRvRTUQ0h+V
 ZJnC6fmaS6K5P6syTz82Towa77Y6Vl5p3pyffLPEZwMSh3VmeYV+2jSnwYPqP8QI8WbIcTQJZLg4b
 2epN3DRorgtmYuGZfO4=
From: isaac Chiu <chiu@e1.lincogndesign.com>
Date: Tue, 08 Aug 2017 08:02:13 +0000
Subject: Lincogn System helps you manage websites and edit content easily!
Message-Id: <4u2137n0k3fv.vM3iyn9PZx23aGiBxfstLQ2@tracking.e1.lincogndesign.com>
Reply-To: chiu@e1.lincogndesign.com
Sender: isaac Chiu <chiu@e1.lincogndesign.com>
To: <freebsd-questions@freebsd.org>
X-Msg-EID: vM3iyn9PZx23aGiBxfstLQ2
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: base64
X-Content-Filtered-By: Mailman/MimeDel 2.1.23
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Aug 2017 11:40:04 -0000
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