On Thursday 22 July 2004 14:29, Eric Dondelinger wrote:
I just don't see (yet) how those broadband
clients could then
be able to do SASL AUTH to other mailservers.
Greets Eric
They are supposed to use port 587 (submission) for this purpose,
rather than 25.
The MTA (sendmail) is supposed to listen on both 25 and 587, but to
accept only mail from authenticated users on port 587.
That way:
1. Broadband users can still connect to whatever corporate mailserver
they want (on port 587)
2. Broadband users cannot do "direct-to-MX" delivery using 587,
because in that case they would be unauthenticated, i.e. disallowed
by receiving MTA
Point (2) helps with makeing sure that 587 stays accessible -)
Regards,
Alain