Securing postfix to dovecot (SASL) auth
Thomas Bauer
thomas.bauer at fem.tu-ilmenau.de
Wed Sep 27 10:35:46 EEST 2017
Hi,
Am 27.09.2017 um 01:07 schrieb Raymond Sellars:
> Is it possible to secure the Dovecot SASL auth provider for postfix?
>
I'm using this configuration, which you've suggested.
> Has anyone managed to implement a secure internal approach they can share? I'm wondering if Postfix with Cyrus against IMAP using STARTTLS is my best alternative.
>
My config is:
On the dovecot server:
service auth {
inet_listener{
address=192.0.0.1
port=10001
ssl=yes
}
}
On the postfix server in master.cf:
submission inet n - - - - smtpd
...
-o smtpd_sasl_path=inet:192.0.0.1:10001
...
And in main.cf:
### SASL via dovecot ###
smtpd_sasl_auth_enable = yes
smtpd_sasl_path = inet:192.0.0.1:10001
smtpd_sasl_type = dovecot
> Thanks
> Raymond
>
Greetings
Thomas
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <https://dovecot.org/pipermail/dovecot/attachments/20170927/a72efc97/attachment-0001.sig>
More information about the dovecot
mailing list