NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Postfix Discussion> 2000-09

Subject: Re: Roaming Users
From: Lutz Jaenicke (Lutz.Jaenickeaet.TU-Cottbus.DE)
Date: Tue Sep 26 2000 - 12:36:07 CDT

Next message: Wietse Venema: "Re: Strange address formatting not accepted by Postfix"
Previous message: Brad Knowles: "Re: ETRN too fast!"
In reply to: Ron 'The InSaNe One' Rosson: "Roaming Users"
Next in thread: Darron Froese: "Re: Roaming Users"
Reply: Lutz Jaenicke: "Re: Roaming Users"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Sep 26, 2000 at 09:22:58AM -0700, Ron 'The InSaNe One' Rosson wrote:
> I am currently running Postfix 19991231.08 from the FreeBSD ports tree
> on my mail server for the SMTP chores. I enclose my IMAP and POP users
> that are outside my internal network with stunnel (also from the FreeBSD
> ports) to try and keep the passowrds in the clear as little as possible.
> Lately I have been getting request from my userbase if they can do some
> sort of AUTH so they can use my SMTP server.
>
> Well since my POP and IMAP services are enlosed in STUNNEL
> POP-BEFORE-SMTP only sees localhost (which does my users no good) Does
> anyone have any ideas on how I can accomplish some sort of
> AUTHENTICATION to allow my roaming userbase to use my SMTP Server.
>
> TIA
>
> I looked at CYRUS but that causes 2 issues for me:
> 1. Cyrus was designed for REMOTE read mail only. I have users
> that read it from the shell and from remote.
>
> 2. I already have those services in place (POP, IMAP)

You have quite some choices. If you have people using unix mbox format,
you are probably running UofW imap. The latest version imap-2000 has SSL
support built in, so the "localhost" problem I know too well is gone.
(Actual versions of cyrus and other imap-servers also tend to offer SSL.)

And then there is the native postfix support of SASL (as of snapshot-20000531)
and TLS (get my patchkit from my homepage, see my .signature).
Please check out the mailing list archive for discussions about problems
and drawbacks (and advantages) of the different solutions.

Best regards,
Lutz

-- 
Lutz Jaenicke                             Lutz.Jaenickeaet.TU-Cottbus.DE
BTU Cottbus               http://www.aet.TU-Cottbus.DE/personen/jaenicke/
Lehrstuhl Allgemeine Elektrotechnik                  Tel. +49 355 69-4129
Universitaetsplatz 3-4, D-03044 Cottbus              Fax. +49 355 69-4153

Next message: Wietse Venema: "Re: Strange address formatting not accepted by Postfix"
Previous message: Brad Knowles: "Re: ETRN too fast!"
In reply to: Ron 'The InSaNe One' Rosson: "Roaming Users"
Next in thread: Darron Froese: "Re: Roaming Users"
Reply: Lutz Jaenicke: "Re: Roaming Users"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]