Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 3 Jun 2003 14:13:27 -0800
From:      "admin" <admin2@enabled.com>
To:        Charles Swiger <cswiger@mac.com>, freebsd-questions@freebsd.org
Subject:   Re: secure SMTP and cygnus-sasl handling
Message-ID:  <20030603221208.M76057@enabled.com>
In-Reply-To: <AB5043AA-960A-11D7-8522-003065ABFD92@mac.com>
References:  <20030603210515.M35572@enabled.com> <AB5043AA-960A-11D7-8522-003065ABFD92@mac.com>

next in thread | previous in thread | raw e-mail | index | archive | help

Hi,

also instead of cyrus-sasl I am now using DRACd.  so I placed the IP address
of 255.255.255.255 127.0.0.1 in the /etc/mail/dracd.allow file.

> Have a firewall block port 25 to this mail server, and only permit 
> the users to talk to 465.  Of course, you are running stunnel on the 
> mail server or it's local network, right?


okay this is a public port 25.

> 
> > are there other applications that I need to consider here?
> 
> Sendmail will do STARTTLS if both sides support it, and you can even 
> configure things to not permit plain text authentication (AUTH LOGIN)
>  unless TLS/SSL has been negotiated.


this is the answer.  can you point me to someplace on how to do this?

- Noah



> 
> -- 
> -chuck
> 
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030603221208.M76057>