#1  
Old 12th June 2010, 06:35
MattJo. MattJo. is offline
Member
 
Join Date: May 2010
Posts: 40
Thanks: 16
Thanked 0 Times in 0 Posts
Default Postfix behind NAT router woes

Hi,

So, things "work" so-to-speak, but I have read that because my server is behind a NAT router postfix will function as an open relay. I think I have verified that it is with an e-mail test, but how can I confirm this and more importantly--how can I fix it.

Also, how can I ensure that authorization is always encrypted (Postfix running on Perfect Server setup: Lucid with ISPConfig3).

thanks,

Matt
Reply With Quote
Sponsored Links
  #2  
Old 12th June 2010, 23:12
MattJo. MattJo. is offline
Member
 
Join Date: May 2010
Posts: 40
Thanks: 16
Thanked 0 Times in 0 Posts
Default Encrypted Authentication, Port 587, and a Noob

So forget the part about the server behind a NAT--that was me being dense.

I was going to ask all sorts of specific questions, but it occurs to me that my basic understanding of the mailing mechanisms security are flawed: What level of security does the default installation of Perfect Server with ISPConfig3 give with respect to e-mail security? Does it encrypt my username and password? Does it encrypt all of a message or only part of it? How can I implement them if it doesn't? Additionally, how can I harden the SMTP security?

I have spent a great deal of time trying to implement some of the things I have read in Faq Forge and the Postfix site. Additionally Mark_NL has been very helpful, but I think I am missing something. Any help is much appreciated.

thanks,

Matt
Reply With Quote
  #3  
Old 13th June 2010, 09:26
Toucan Toucan is offline
Senior Member
 
Join Date: Dec 2009
Posts: 479
Thanks: 78
Thanked 40 Times in 34 Posts
Default

When you followed the guide it talked you through creating security certificates in this section:
Code:
mkimapdcert
mkpop3dcert
When you connect to postfix via a client such as outlook it will ask you if you wish to connect via a secure connection. Although the standard certificate security will fail as it is self signed, you are still connected securely

Everything between you and the server then is secure. Beyond that point I believe is much more difficult to control.
Reply With Quote
The Following User Says Thank You to Toucan For This Useful Post:
MattJo. (14th June 2010)
  #4  
Old 16th June 2010, 11:52
admins admins is offline
Senior Member
 
Join Date: Apr 2009
Location: Switzerland
Posts: 210
Thanks: 6
Thanked 6 Times in 3 Posts
 
Default

Read more about SMTP authentification, TLS and more
If you don't send authentificated your password will be send over the internet clearly.
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
ERROR: Connection dropped by IMAP server. [Centos 5.4, courier imap,squirrel, etc] darevil HOWTO-Related Questions 7 9th June 2010 14:49
Postfix not responding to telnet CarbonCopy Server Operation 6 8th May 2009 05:39
localhost postfix/master: fatal: bind 127.0.0.1 port 125: Permission denied g18c Installation/Configuration 4 24th March 2009 17:39
Centos 4.4 32bit Hangs, High Server load 3cwired_com Server Operation 11 16th November 2006 15:47
Verify email setup meekish Installation/Configuration 28 27th October 2006 15:36


All times are GMT +2. The time now is 18:16.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.