Discussion:
smtpd_use_tls and smtp_use_tls ?
(too old to reply)
Frank Bonnet
2012-10-11 08:40:55 UTC
Permalink
hello

I would like to set up a small auxiliary mail server.

I would like it use STARTTLS + SASL AUTH to send
and SMTP without STARTTLS to receive emails.

Do I have to use

smtp_use_tls = yes

and

smtpd_use_tls = no


to be able to configure this ?

thank you
Frank Bonnet
2012-10-11 08:47:27 UTC
Permalink
Post by Frank Bonnet
hello
I would like to set up a small auxiliary mail server.
I would like it use STARTTLS + SASL AUTH to send
and SMTP without STARTTLS to receive emails.
Do I have to use
smtp_use_tls = yes
and
smtpd_use_tls = no
to be able to configure this ?
thank you
I forgot to write I would like to
use the submission port to send
Reindl Harald
2012-10-11 08:53:09 UTC
Permalink
Post by Frank Bonnet
hello
I would like to set up a small auxiliary mail server.
I would like it use STARTTLS + SASL AUTH to send
and SMTP without STARTTLS to receive emails.
Do I have to use
smtp_use_tls = yes
and
smtpd_use_tls = no
smtp_* is always the smtp-client of your server
delivering messages to MX of the RCPT

smtpd_* is your smtpd
Frank Bonnet
2012-10-11 09:22:22 UTC
Permalink
Post by Reindl Harald
Post by Frank Bonnet
hello
I would like to set up a small auxiliary mail server.
I would like it use STARTTLS + SASL AUTH to send
and SMTP without STARTTLS to receive emails.
Do I have to use
smtp_use_tls = yes
and
smtpd_use_tls = no
smtp_* is always the smtp-client of your server
delivering messages to MX of the RCPT
smtpd_* is your smtpd
you mean ?

smtp_use_tls = no

smtpd_use_tls = yes
Reindl Harald
2012-10-11 09:26:14 UTC
Permalink
Post by Frank Bonnet
Post by Reindl Harald
Post by Frank Bonnet
hello
I would like to set up a small auxiliary mail server.
I would like it use STARTTLS + SASL AUTH to send
and SMTP without STARTTLS to receive emails.
Do I have to use
smtp_use_tls = yes
and
smtpd_use_tls = no
smtp_* is always the smtp-client of your server
delivering messages to MX of the RCPT
smtpd_* is your smtpd
you mean ?
smtp_use_tls = no
smtpd_use_tls = yes
your decision

in my opinion it is pretty useless to receive messages ecnrypted
via smtpd and deliver unencrypted to the final RCPT, so both

i only explained the difference between smtpd_* and smtp_*
Frank Bonnet
2012-10-11 09:28:09 UTC
Permalink
Post by Reindl Harald
Post by Frank Bonnet
Post by Reindl Harald
Post by Frank Bonnet
hello
I would like to set up a small auxiliary mail server.
I would like it use STARTTLS + SASL AUTH to send
and SMTP without STARTTLS to receive emails.
Do I have to use
smtp_use_tls = yes
and
smtpd_use_tls = no
smtp_* is always the smtp-client of your server
delivering messages to MX of the RCPT
smtpd_* is your smtpd
you mean ?
smtp_use_tls = no
smtpd_use_tls = yes
your decision
in my opinion it is pretty useless to receive messages ecnrypted
via smtpd and deliver unencrypted to the final RCPT, so both
i only explained the difference between smtpd_* and smtp_*
OK thank you
/dev/rob0
2012-10-11 13:53:31 UTC
Permalink
Post by Reindl Harald
Post by Frank Bonnet
I would like to set up a small auxiliary mail server.
I would like it use STARTTLS + SASL AUTH to send
and SMTP without STARTTLS to receive emails.
Do I have to use
smtp_use_tls = yes
and
smtpd_use_tls = no
smtp_* is always the smtp-client of your server
delivering messages to MX of the RCPT
smtpd_* is your smtpd
And both of those are deprecated. smtp_use_tls is replaced by
smtp_tls_security_level, and smtpd_tls_security_level replaced
smtpd_use_tls.

http://www.postfix.org/TLS_README.html

As for the real question, the OP has not adequately described the
problem and goal, so we can't help with that.
--
http://rob0.nodns4.us/ -- system administration and consulting
Offlist GMX mail is seen only if "/dev/rob0" is in the Subject:
Wietse Venema
2012-10-11 14:01:52 UTC
Permalink
Frank Bonnet:
[ Charset ISO-8859-1 unsupported, converting... ]
Post by Frank Bonnet
Post by Frank Bonnet
hello
I would like to set up a small auxiliary mail server.
I would like it use STARTTLS + SASL AUTH to send
and SMTP without STARTTLS to receive emails.
Do I have to use
smtp_use_tls = yes
and
smtpd_use_tls = no
to be able to configure this ?
thank you
I forgot to write I would like to
use the submission port to send
The _use_tls paremeters are obsolete.

To turn on SASL for sending mail:
http://www.postfix.org/SASL_README.html#client_sasl_enable

To turn on TLS for sending mail:
http://www.postfix.org/TLS_README.html#client_tls

To turn on TLS for receiving mail:
http://www.postfix.org/TLS_README.html#server_tls

If there's information missing it can be fixed.

Wietse



Wietse
Frank Bonnet
2012-10-11 14:13:27 UTC
Permalink
Post by Wietse Venema
[ Charset ISO-8859-1 unsupported, converting... ]
Post by Frank Bonnet
Post by Frank Bonnet
hello
I would like to set up a small auxiliary mail server.
I would like it use STARTTLS + SASL AUTH to send
and SMTP without STARTTLS to receive emails.
Do I have to use
smtp_use_tls = yes
and
smtpd_use_tls = no
to be able to configure this ?
thank you
I forgot to write I would like to
use the submission port to send
The _use_tls paremeters are obsolete.
http://www.postfix.org/SASL_README.html#client_sasl_enable
http://www.postfix.org/TLS_README.html#client_tls
http://www.postfix.org/TLS_README.html#server_tls
If there's information missing it can be fixed.
Wietse
Wietse
Thank you !

Loading...