Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
[suse-security] postfix, cyrus, saslauthd -> pam auth mechanism questions
From: Markus Feilner (listsfeilner-it.net)
Date: Mon Apr 05 2004 - 07:50:48 CDT
First of all thanks to all the helpful people out there!
I have postfix, cyrus and saslauthd running on a suse 9.0 box.
postfix and cyrus use tls and sslauthd to authenticate users against
pam. In my /etc/pam.d/smtp and imap files i have working definitions
for active directory/samba3/winbind, so that both local linux users and
windows users can access the mailserver.
With this combination, only few possibilities are left for encryption:
- imap is sort of ok (I hope), since this is manged over ssl, however I
would prefer cramd or digest encryption additionally. But I was told:
this does not work not with saslauthd and pam. Why?
- If I activate tls in postfix, local delivery to cyrus fails with the
message: MUST ISSUE A STARTTLS COMMAND.
So my questions are:
1) How can I make my setup more secure?
2) How can I setup postfix with cyrus and tls and working local
I can send relevant config files, if you wish.
Mit freundlichen Grüßen
Linux Solutions, Training, Seminare und Workshops - auch Inhouse
Feilner IT Linux & GIS Erlangerstr. 2 93059 Regensburg
fon: +49 941 70 65 23 - mobil: +49 170 302 709 2
web: http://feilner-it.net mail: mfeilnerfeilner-it.net
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-helpsuse.com
Security-related bug reports go to securitysuse.de, not here