Rejecting clients that are not valid users only

Troy McKinnon TroyMcKinnon at
Tue Jan 20 16:03:49 EST 2004

I have been unable to get TLS working.
I installed from scratch using LUC's HOWTO: postfix/cyrus/mysql but when I
telnet to my smtp server I do not get STARTTLS output...

It took me so long to get this setup .. I am 'afraid' to reinstall postfix
or whatever it will take to get the ssl.  (I would love to get it working
Do you know what the steps would be to backup (which files) and reinstall
such that I could get this working?

telnet localhost 25
Trying ::1...
telnet: connect to address ::1: Connection refused
Connected to localhost.
Escape character is '^]'.
220 ESMTP Postfix
EHLO localhost
250-SIZE 10240000

----- Original Message ----- 
From: "Ken Murchison" <ken at>
To: "Paul Bender" <pbender at>
Cc: "Troy McKinnon" <TroyMcKinnon at>;
<info-cyrus at>
Sent: Tuesday, January 20, 2004 7:19 AM
Subject: Re: Rejecting clients that are not valid users only

> Paul Bender wrote:
> > In order to allow my Cyrus IMAP mail users to send mail from anywhere, I
> > have configured sendmail so that any user that authenticates
> > successfully using SMTP AUTH is allowed to relay email. Since both Cyrus
> > IMAP and sendmail use SASL, my Cyrus IMAP mail users are able to
> > authenticate.
> >
> > Since most of my Cyrus users send their passwords in the clear, I have
> > enabled START_TLS and SSL (using stunnel) in sendmail. Finally, I have
> > sendmail listen on the standard MSA port rather than the standard MTA
> > port for authenticated access.
> FYI, Sendmail can do smtps w/o stunnel.  Add -D_FFR_SMTP_SSL to your
> defines.  When I coded this early on in 8.12, Claus made it an FFR, but
> it should be "standard" in 8.13.
> -- 
> Kenneth Murchison     Oceana Matrix Ltd.
> Software Engineer     21 Princeton Place
> 716-662-8973 x26      Orchard Park, NY 14127
> --PGP Public Key--

More information about the Info-cyrus mailing list