Hello All,
Since all my users are not very computer savy I will have eliminate vpn or
ssh tunnels. Most likely I will just run smtp on a different port and have
them use md-5 passwords. All my users have pws accounts and I have tested
that the md-5 authentication works. If there is a wifi spot blocking smtp
then they will just have to deal with it. But I have yet to run across one
yet that blocked me from using my own smtp server. Note I do not mean my
laptop running as an smtp server but connecting to a dedicate server with a
correct reverse record. My main concern is sending their passwords over the
internet.
Thanks for all the great help and ideas
marc
--
Marc Ray
Senior Computer Support Specialist
FSU Dance
email@hidden
850-645-1996 Office
850-645-1900 Dance Computer Lab
850-644-1277 Fax
> From: Dan Shoop <email@hidden>
> Date: Mon, 28 Feb 2005 21:06:07 -0500
> To: Josh Wisenbaker <email@hidden>, Marc Ray <email@hidden>
> Cc: OS X Server <email@hidden>
> Subject: Re: Smtp authentication
>
> At 7:03 PM -0500 2/28/05, Josh Wisenbaker wrote:
>> On Feb 28, 2005, at 6:25 PM, Dan Shoop wrote:
>>
>>> At 4:23 PM -0500 2/28/05, Marc Ray wrote:
>>>> Hello All,
>>>>
>>>> I have an OS10.3.8 server that I currently run smtp for local host only. I
>>>> want the ability to give my roaming laptop users a dedicated smtp server
>>>> for
>>>> when they travel.
>>>
>>> Well sorry to p!ss on your parade but you have an issue to solve
>>> here first, namely most wifi hotspots in traveler locations block
>>> the SMTP port. So they're not likely to be able to talk SMTP to
>>> your server.
>>
>> Tunnel time! or VPN or a SSLed webmail.
>
> Or the always ubiquitous ssh.
>
> Or run the MTA on a non-standard port for this, like the already
> defined for it port 26.
>
>>>> Additionally is their a way to allow the local host to relay without
>>>> authentication but allow others to only send if authenticated? Please note
>>>> that the server does not host imap or pop services.
>>>
>>> Yes, you generally define which CIDR blocks can relay w/o restriction.
>>
>> Bleh. I always restrict relay eveywhere to the localhost. Protects
>> against all sorts of nastiness.
>
> 127.0.0.1/31 is CIDR block too. :)
> --
>
> -dhan
>
> ------------------------------------------------------------------------
> Dan Shoop AIM: iWiring
> Systems & Networks Architect http://www.iwiring.net/
> email@hidden http://www.ustsvs.com/
> AIM: ColonelMode11780
>
> pgp key fingerprint: FAC0 9434 B5A5 24A8 D0AF 12B1 7840 3BE7 3736 DE0B
>
> iWiring designs and supports Internet systems and networks based on
> Mac OS X, unix, and Open Source application technologies and offers
> 24x7, guaranteed support to registered clients, at affordable rates.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden
This email sent to email@hidden
