smtpauth

smtpauth is a authenticating proxy for servers without SMTP AUTH.
Download

smtpauth Ranking & Summary

Advertisement

  • Rating:
  • License:
  • GPL
  • Price:
  • FREE
  • Publisher Name:
  • Jem Berkes
  • Publisher web site:
  • http://www.pc-tools.net/unix/spamtestbuddy/

smtpauth Tags


smtpauth Description

smtpauth is a authenticating proxy for servers without SMTP AUTH. smtpauth is a authenticating proxy for servers without SMTP AUTH.Use 'smtpauth' and stunnel programs to add SMTP AUTH (PLAIN, LOGIN) support to any SMTP server. Clients can authenticate over SSL port 465 or cleartext port 587, and authentication is fully logged via syslog.Works with JBMail, Pegasus Mail, Mozilla Thunderbird, MS Outlook... This software is really an interim solution until our favourite MTA(s) support SSL/TLS and SMTP AUTH directly. For now I prefer using external programs to provide this functionality rather than patching MTA source. I designed this software to work with my Postfix server, but smtpauth also works with sendmail and just about any other SMTP server.Installation:1. Compile and install binary.makeCopy 'smtpauth' to /usr/sbin, owned by root, mode 7552. Create special user 'smtpauth' with its own group, no login allowed.Note that smtpauth will immediately exit with an error if invoked as root.It must be run from a low privilege account, for security.3. Configure stunnel.conf. Change 'domain' for your site.setuid = smtpauthsetgid = smtpauthdebug = auth.noticeclient = noaccept = 465exec = /usr/sbin/smtpauthexecargs = smtpauth domain 127.0.0.14. Configure /etc/smtpauth.confThis file should only be readable by the smtpauth user, since it stores plainpasswords. It consists of single lines containing usernames and passwords withwhitespace separating. Blank lines and comment lines starting # are ignored.user1 pass1user2 pass25. Start up stunnelThis will create a server running as smtpauth on port smtps/465. When SMTP clientsconnect (SSL/TLS) the smtpauth program is launched and provides authenticationservice through to 127.0.0.1:25, as a proxy. Your actual SMTP server will acceptmail because that connection is local. The mail headers will include X-SMTP-AUTHindicating the username. Success and failures will be logged via syslog.6. Configure cleartext submission service in inetdSince inetd (when started with -W) also supports wrapping, the smtpauth proxycan be run straight out of here too. Note that this is somewhat risky, becausethere will be no SSL/TLS encryption on the submission port (587).Again, change 'domain' for your site (e.g. mail.yoursite.tld)submission stream tcp nowait smtpauth /usr/sbin/smtpauth smtpauth domain 127.0.0.1


smtpauth Related Software

About SoftwareSea