LMTP AUTH security exposure?
Rudy Gevaert
Rudy.Gevaert at UGent.be
Wed Oct 10 04:51:24 EDT 2007
Vincent Fox wrote:
> So I want to do LMTP between an MX pool and Cyrus backends.
>
> The common way I read about doing this, is with a shared LMTP
> account from MX pool to backends. So it becomes a postman sort
> of account with the password in plaintext in various places and of
> course transiting the network that way.
>
> Is there any way to do this with certs instead?
>
> If I set "allowplaintext: yes" for this purpose, well I've just
> enabled it for general users also right? Which brings up a
> whole 'nother set of issues.
>
We also have an mta doing lmtp over tcp to our mailstores. We use
preauthenticated ltmp. And have the relevant options in our
/etc/hosts.deny|alow.
Rudy
--
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
Rudy Gevaert Rudy.Gevaert at UGent.be tel:+32 9 264 4734
Directie ICT, afd. Infrastructuur Direction ICT, Infrastructure dept.
Groep Systemen Systems group
Universiteit Gent Ghent University
Krijgslaan 281, gebouw S9, 9000 Gent, Belgie www.UGent.be
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
More information about the Info-cyrus
mailing list