I have an OS10.3.8 server that I currently run smtp for local host
only. I
want the ability to give my roaming laptop users a dedicated smtp
server for
when they travel.
Well sorry to p!ss on your parade but you have an issue to solve here
first, namely most wifi hotspots in traveler locations block the SMTP
port. So they're not likely to be able to talk SMTP to your server.
Tunnel time! or VPN or a SSLed webmail.
Is cram-md5 a secure enough method for
users to authenticate to my server?
Depends on who you ask.
How hard is someone trying to steal your passwords?
Some users will be using their account
passwords that they use to log into my lab machines.
Such passwords are used by cram-md5, et al, to authorize and
authenticate.
Just make sure they are all PWS accounts, or MD5 won't work.
Additionally is their a way to allow the local host to relay without
authentication but allow others to only send if authenticated? Please
note
that the server does not host imap or pop services.
Yes, you generally define which CIDR blocks can relay w/o restriction.
Bleh. I always restrict relay eveywhere to the localhost. Protects
against all sorts of nastiness.
