Bug 164013
Summary: | smtpd_tls_auth_only = yes doesn't prevent auth in non-tls mode | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 4 | Reporter: | Harry Hoffman <hhoffman> |
Component: | postfix | Assignee: | Thomas Woerner <twoerner> |
Status: | CLOSED NOTABUG | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 4.0 | Keywords: | Security |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | i386 | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2007-07-25 10:52:25 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Harry Hoffman
2005-07-22 21:02:33 UTC
Can you please give an example for this? What exactly do you have configured in your main.cf for tls and sasl? smtpd_sasl_auth_enable = yes smtpd_sasl_security_options = noanonymous broken_sasl_auth_clients = yes smtpd_sasl_local_domain = smtpd_helo_restrictions = permit_sasl_authenticated, reject_unknown_hostname smtpd_recipient_restrictions = permit_sasl_authenticated, reject_invalid_hostname, reject_non_fqdn_hostname, reject_non_fqdn_sender, reject_non_fqdn_recipient, reject_unknown_sender_domain, reject_unknown_recipient_domain, permit_mynetworks, reject_unauth_destination, reject_unauth_pipelining, reject_rhsbl_client blackhole.securitysage.com, reject_rhsbl_sender blackhole.securitysage.com, reject_rbl_client sbl-xbl.spamhaus.org, permit smtpd_sender_login_maps = ldap:ldapsender smtpd_sender_restrictions = permit_mynetworks, reject_sender_login_mismatch smtpd_tls_cert_file = /etc/postfix/certs/cert.pem smtpd_tls_key_file = /etc/postfix/certs/key.pem smtpd_tls_CAfile = /etc/postfix/certs/cachain.pem smtp_tls_CApath = /etc/postfix/certs smtpd_use_tls = yes smtpd_tls_auth_only = yes smtpd_tls_loglevel = 0 smtpd_tls_received_header = yes Could you please verify, if the problem is also present with the FC-4 postfix package? Maybe you'd need to rebuild from the source package. There has been an update for postfix in U4 to version 2.2.10-1.RHEL4.2. Can you please verify if your problem still exists with the new version? This bug entry was in needinfo for some time. Closing due to user inactivity as "NOT A BUG". |