Additional SMTP port (465) for romaing users
Tarique Saleh Mahmud
Is there any way to open extra smtp port (465) for vpopmail roaming users,
instead of SSL I would like to use only smtp authentication to send mail
using this port. I followed bill's qmail toaster guide but submission port
is not working, SSL is giving error. Moreover we can't use 25 port for
roaming users, most of the ISP here block 25 port.
Thanks,
Tarique
Shane Chrisp
You will want something like this. Your settings will no doubt vary.
#!/bin/sh
QMAILDUID=`id -u vpopmail`
NOFILESGID=`id -g vpopmail`
MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`
HOSTNAME=`hostname -f`
QMAILQUEUE="/var/qmail/bin/simscan"
export QMAILQUEUE
exec /usr/local/bin/softlimit -m 40000000 \
/usr/local/bin/tcpserver -vRD -l $HOSTNAME -c 20 -x
/home/vpopmail/etc/tcp.smtp465.cdb -u "$QMAILDUID" -g "$NOFILESGID" 0
ssmtp \
/var/qmail/bin/qmail-smtpd /home/vpopmail/bin/vchkpw /bin/true 2>&1
Tonix (Antonio Nati)
Tonino
--
------------------------------------------------------------
Inter@zioni Interazioni di Antonio Nati
http://www.interazioni.it to...@interazioni.it
------------------------------------------------------------
Shane Chrisp
Yes, ssmtp is 465.
Tonix (Antonio Nati)
Port 465 must always have TLS on, while 587 can be with/without TLS.
Regards,
Tonino
On 15/11/10 14:02, Tarique Saleh Mahmud wrote:
>> Hi,
>>
>> Is there any way to open extra smtp port (465) for vpopmail roaming users,
>> instead of SSL I would like to use only smtp authentication to send mail
>> using this port. I followed bill's qmail toaster guide but submission port
>> is not working, SSL is giving error. Moreover we can't use 25 port for
>> roaming users, most of the ISP here block 25 port.
>>
>> Thanks,
>>
>> Tarique
>>
>>
Shane Chrisp
Like port 25, it does not "Have" to have tls/ssl. If you dont turn on tls
then it wont use it. Being authenticated users only, it makes no difference
what port is used. You could use port 65535 if you wanted to.
Tonix (Antonio Nati)
Some clients force TLS on 465, so it would be better to use 587, which
is made for this usage.
Of course, he can use whenever port, but with not standard ports a
roaming user could have troubles with protections found on various
networks he joins.
Regards,
Tonino
jeff...@intersessions.com
This is very interesting. What should this file be named and where does it
go? How does it get activated?
Jeff
Shane Chrisp
Jeff,
The simplest way to do it is to copy the existing qmail-smtpd/
directory to a new
name, say qmail-smtpd587/ and edit the run file and log/run in the new
copy and then symlink that to your service directory. If you followed
the old
toaster install, then the directory you want to copy is in
/var/qmail/supervise/.
Shane
--
Regards
Shane Chrisp
2000 Computers & Networks Pty Ltd
Suite 6, 49 Hay St, Subiaco, WA 6008
Ph 08 9382 1399 Fx 08 9382 1720
Mb 0412 409 856
Email sh...@2000cn.com.au
Web http://www.2000cn.com.au
Web http://www.ausmodchips.com.au
Jeff Koch
I'm trying to setup an authenticate only SMTP submission service on port 587 following your instructions below. I'm stuck on what to put into the tcp.smtp587 file. Right now I have:
:allow,QMAILQUEUE="/var/qmail/bin/simscan",NOP0FCHECK="1"
but I don't think that will enforce authentication.
My /var/qmail/supervise/qmail-smtpd587/run file looks like this:
#!/bin/sh
QMAILDUID=`id -u vpopmail`
NOFILESGID=`id -g vpopmail`
MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`
HOSTNAME=`hostname -f`
QMAILQUEUE="/var/qmail/bin/simscan"
export QMAILQUEUE
/usr/local/bin/tcpserver -v -H -R -D -l $HOSTNAME \
-x /home/vpopmail/etc/tcp.smtp587.cdb -c "$MAXSMTPD" \
-u "$QMAILDUID" -g "$NOFILESGID" 0 587 rblsmtpd \
-r xbl.dnsbl \
-r sbl.dnsbl \
/var/qmail/bin/qmail-smtpd \
/home/vpopmail/bin/vchkpw /bin/true 2>&1
Thanks, Jeff Koch
Tonix (Antonio Nati)
http://www.interazioni.it/opensource/chkuser/documentation/chkuser_settings.html#MustAuth
Regards,
Tonino