|
POSTFIX SASL 验证配置是可以的,经过测试
1)配置postfix配置文件
vi /etc/postfix/main.cf
文件内容如下
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_local_domain = $mydomain
smtpd_data_restrictions = reject_unauth_pipelining
smtpd_reject_unlisted_recipient = yes
smtpd_sender_restrictions = permit_mynetworks, permit_sasl_authenticated,reject_sender_login_mismatch
smtpd_reject_unlisted_sender = yes
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
broken_sasl_auth_clients = yes
message_size_limit = 15728640
2)添加邮件用户的账户
groudadd mailusers
useradd -g mailusers -s /sbin/nologin lisi
passwd lisi
使用telnet命令进行验证时需要输入加密的用户名和密码,加密字串的编码格式为BASE64。通过如下命令可以获得lisi的用户名和密码(123456)的加密字串:
printf "123456" |openssl base64
MTIzNDU2
printf "lisi" |openssl base64
bGlzaQ==
3)使用SMTP发信认证
telnet 自己的邮件服务器域名 25
AUTH LOGIN
334 VXNlcm5hbWU6
bGlzaQ==
334 UGFzc3dvcmQ6
MTIzNDU2
235 2.0.0 Authentication successful
mail from:lisi@yunwei2.uid5a.cn
250 2.1.0 Ok
rcpt to:2582606751@qq.com
250 2.1.5 Ok
data
354 End data with <CR><LF>.<CR><LF>
nihao
.
250 2.0.0 Ok: queued as 670F3C28233
注意要保证,所对应的邮件服务器相应的端口号要开放,如25端口号,53DNS端口号等。
今天参考了:http://www.iblue.cc/2012/06/postfix-%e9%82%ae%e4%bb%b6%e6%9c%8d%e5%8a%a1%e5%99%a8%e7%bb%88%e4%ba%8e%e9%85%8d%e5%a5%bd%e4%ba%86%e3%80%82/
刚开始会有错误,删除掉这一行smtpd_sasl_security_restrictions= permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination配置就可以了。
| 
转播
