postfix-users October 2010 archive
Main Archive Page > Month Archives  > postfix-users archives
postfix-users: Re: AUTH on port 587

Re: AUTH on port 587

From: mouss <mouss_at_nospam>
Date: Sun Oct 31 2010 - 16:53:17 GMT
To: Postfix users <postfix-users@postfix.org>

Le 31/10/2010 13:20, Janos Dohanics a écrit :
> In master.cf I have enabled port 587:
>
> submission inet n - n - - smtpd
> -o smtpd_tls_security_level=encrypt
> -o smtpd_sasl_auth_enable=yes
> -o
> smtpd_client_restrictions=permit_sasl_authenticated,permit_mynetworks,reject
>
> However, when I telnet, AUTH does not seem to be offered:
>
> # telnet mail.example.com 587
> Trying xxx.xxx.xxx.xxx...
> Connected to mail.example.com.
> Escape character is '^]'.
> 220 mail.example.com ESMTP Postfix
> ehlo me
> 250-mail.example.com
> 250-PIPELINING
> 250-SIZE 49152000
> 250-ETRN
> 250-STARTTLS
> 250-ENHANCEDSTATUSCODES
> 250-8BITMIME
> 250 DSN
> ^]
>
> Still, when I submit mail with Thunderbird, it asks for
> username/password, and if correct, the message is accepted.
>
> Postfix is configured to listen also on port 25 and port 2525. When I
> telnet to either one of these ports, Postfix announces AUTH:
>
> # telnet mail.example.com 2525
> Trying xxx.xxx.xxx.xxx...
> Connected to mail.example.com.
> Escape character is '^]'.
> 220 mail.example.com ESMTP Postfix
> ehlo me
> 250-mail.example.com
> 250-PIPELINING
> 250-SIZE 49152000
> 250-ETRN
> 250-STARTTLS
> 250-AUTH NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
> 250-AUTH=NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
> 250-ENHANCEDSTATUSCODES
> 250-8BITMIME
> 250 DSN
> ^]
>
> Would you please explain this? I have postfix-2.7.1,1 on FreeBSD
> 7.3-STABLE
>

don't use telnet. use openssl:

$ openssl s_client -starttls smtp -connect mail.example.com:587
...
EHLO host.example.org
...
QUIT
...