Smtp auth access problems

Similar Messages

• Zimbra Multi Domain SMTP auth/relay problem

  I have a query in setting up a multi-domain Zimbra 8.6 OSE on Ubuntu 14.04.I have successfully setup Domain1 with Zimbra and added virtual host Domain2. Mails to each of them are routing to each other and sending from the server to outside is also working. However, I need to both domains to send emails using their respective ISP so domain1 would use ISP1 and domain2 ISP2. In my previous implementation, I have used successfully "zimbraMtaRelayHost" for single domain. Searching more, I have tried the "Relay per Domain" using "sender_dependent_relayhost_maps."I am, however, still unable to send mail using Zimbra. I have, upon instinct, put in the port after the IP address of the ISPs in /opt/zimbra/postfix/conf/bysender so it looks like the one below (based on thewiki):@domain1.com [10.10.10.1]:587
  @domain2.com [20.20.20.1]:587Zimbra now...
  This topic first appeared in the Spiceworks Community

  Microsoft releases new license terms for Windows 10: Biggest surprise? No gotchasEd Bott has Just published an article on ZDNet which reviews in detail the just-released Windows 10 license agreementFirst published on ZDNet By Ed Bott for The Ed Bott Report | July 15, 2015 -- 18:30 GMT (19:30 BST) | Topic: Windows 10 "Two weeks ahead of the global launch of Windows 10, Microsoft has finalized the terms of its license agreements for the new operating system. I've had several days to study the documents in detail, and I can report that there are no surprises, no gotchas, and no hidden subscription traps waiting to be sprung in two or three or four years.""In fact, the new license agreement is simpler and written more clearly than any similar document I've reviewed in 20 years of examining Windows license agreements. There are a few...

• Smtp auth without hat access defined

  Hello community!!!
  We are configuring an appliance and came across a doubt that we would like to share to see if anyone can help us.
  We first configured the appliance by setting up a RELAY policy wich included the networks that were allowed to send mail through our IronPort. Before we applied that configuration, there was no way of sending mail, perhaps there are other more efficient ways but we fail to see another one.
  After this path was OK, we then configured the IronPort to use SMTP auth in a forwarding fashion to verify that clients we know are the only ones allowed to send mail. To do this we authenticate against our internal SMTP server, which contains the mailboxes of our users.
  This configuration tested OK, without issues at all.
  Now that we have this architecture working we would like to allow multiple IPs, not just the ones we defined to use our IronPort to send mail. In our scenario, we provide email services to serveral cilents that have dynamic IP. So we cannot guaranty that a given time, they will be able to send mails through our IronPort if their IP falls out of the range we defined.
  So, within HAT policies, is there a way to allow "anyone" or "any IP" to access the IronPort to send mail? The security will be enforced though our SMTP auth policy which only allows authorized personnel to send mail.
  Thank you in advanced for your thoughts and comments!!!
  Best regards!!!
  Miguel

  Yes, you can do this where the connecting external IP or sender is not known in advance.
  You would probably need to LDAP with either SMTP Auth enabled or External Authentication Queries enabled.
  So as to not *bog* down your HAT Overview with smtp auth attempts, I think it would be helpful to find a range where the incoming connection would be, then try to assign it to a SMTP Authentication Sender Group and corresponding Mail Flow Policy where the SMTP was turned on.
  I can see that this type of scenario would come into play in situations where you have traveling salespeople and you're not always sure what IP they're coming from, but they still need to relay via the IronPort.  It's best to collect as much of the information about these external relayers  as possible  and the  LDAP system, then contact Customer Support, presenting the information/facts that you have and how best to configure the IronPort HAT/LDAP/MAIL FLOW Policy section to get that working.
  Good luck,
  Kevin

• DIsable smtp auth only for an ip

  Dear gurus,
  I have sun messaging server 6 running perfectly alright and only new thing which I would like to incorporate is to disable smtp auth only for one ip address.I am new to this system and have gathered following information from sun messaging docs, the steps which I followed..
  1) Create a table DISABLE_SMTPAUTH_IP similar to INTERNAL_IP mapping table in mapping file
  INTERNAL_IP
  10.18.18.19 $Y
  10.18.18.38 $Y
  10.18.18.30 $Y
  127.0.0.1 $Y
  * $N
  ! Added on 01092008 for disabling smtp_auth
  DISABLE_SMTPAUTH_IP
  external.ip.addres $Y
  *$N
  2) ALLOW PORT ACCESS
  *PORT_ACCESS
  *|*|*|*|* $C$|DISABLE_SMTPAUTH_IP;$3|$Y$E
  *|*|*|*|* $C$|INTERNAL_IP;$3|$Y$E
  3) Then right after the current rewrite rule in imta.cnf file Created new TCP CHANNEL
  ! Do mapping lookup for internal IP addresses
  [] $E$R${INTERNAL_IP,$L}$U%[$L]@tcp_intranet-daemon
  added a new rewrite rule:
  ! Do mapping lookup for "no smtp auth", non-internal IP addresses
  [] $E$R${DISABLE_SMTPAUTH_IP,$L}$U%[$L]@tcp_nosmtpauth-daemon
  ! ttcp_nosmtpauth-daemon
  tcp_nosmtpauth-daemon smtp mx single_sys subdirs 20 maxjobs 7 pool SMTP_POOL nosasl nosaslserver
  tcp_nosmtpauth-daemon
  ! tcp_local
  tcp_local smtp mx single_sys remotehost inner switchchannel subdirs 20 maxjobs 30 pool SMTP_POOL maytlsserver maysaslserver s
  aslswitchchannel tcp_auth loopcheck threaddepth 32 blocklimit 5120 notices 1 2 backoff "pt5m" "pt1h" "pt2h" "pt4h" destinati
  onspamfilter1optin spam
  tcp-daemon mumbbmr1.dataone.in
  ! tcp_intranet
  !tcp_intranet smtp mx single_sys subdirs 20 dequeue_removeroute maxjobs 7 pool SMTP_POOL maytlsserver allowswitchchannel sasl
  switchchannel tcp_auth blocklimit 2500
  !tcp_intranet smtp mx single_sys subdirs 20 dequeue_removeroute maxjobs 7 pool SMTP_POOL maytlsserver allowswitchchannel sasl
  switchchannel
  !tcp_intranet-daemon
  run /opt/SUNWmsgr/sbin/imsimta refresh
  alternatively tried imsimta cnbuild and imsimta restart
  but still i get Mail rely denied when I try sending messages from the same trusted IP without doing AUTH.
  I would like to know...
  1) If there is something mising or wrong in above steps
  2) HOw do i check if the messages from that IP(for which smtp auth is disabled) is passing from the tcp_nosmtpauth channel...
  THanks for giving your valuable time...

  thanks very much shane for giving time...
  Please always provide the exact version of Messaging Server (./imsimta version).
  mumxxxx1 # ./imsimta version
  Sun Java(tm) System Messaging Server 6.2-6.01 (built Apr 3 2006)
  libimta.so 6.2-6.01 (built 11:20:35, Apr 3 2006)
  SunOS mumxxxx1-a-fixed 5.9 Generic_118558-28 sun4u sparc SUNW,Sun-Fire-V440
  mumxxxx1#
  Why would you want to disable SMTP Authentication? What are you attempting to achieve by doing this -- what is the problem you are trying to solve?
  We are an ISP and therefore sometimes required to send bulk mail, for which we are currently using perl bulk mail module script and there we specify the users in text file to send message, everytime this module try sending it get Mail Relaying denied as it doesnot supply user and passwd required for smtp auth in base64.
  Therefore I wanted to disable smtp auth for an ip address using which smtp auth is not reqauired and mails should be openly relayed.
  Why are all of the above entries commented out? Did you intend to disable (break) the tcp_intranet channel?
  no it is not commented in config files.
  +./imsimta refresh is no longer a valid comment, you need to use ./imsimta cnbuild;./imsimta restart+
  as per sun mesaging server 6 admin guide it is given to be working. Alterntively I tried ./imsimta cnbuild;./imsimta restart.
  Please provide the mail.log_current line that matches the attempted email delivery which was rejected.
  mumxxxx /opt/SUNWmsgsr/sbin # tail -f /mta/logs/imta/mail.log_current
  08-Sep-2008 13:42:19.52 7079.0fca.710096 tcp_local J 0 [email protected] rfc822; [email protected] mailserv 530 5.7.1 Relaying not allowed: [email protected] SMTP
  bash-3.00# telnet mumxxxx 25 Trying 10.18.18.19...
  Connected to ::ffff:10.18.18.19.
  Escape character is '^]'.
  220 mumxxxx.datxxxx.in -- Server ESMTP (*)
  ehlo mumxxxx.daxxxx.in
  250-mumxxxx.daxxxxx.in
  250-8BITMIME
  250-PIPELINING
  250-DSN
  250-ENHANCEDSTATUSCODES
  250-HELP
  250-XLOOP 82F58AB6E3453199924062C516F2E337
  250-AUTH PLAIN LOGIN
  250-AUTH=LOGIN
  250-ETRN
  250-NO-SOLICITING
  250 SIZE 0
  mail from: [email protected]
  250 2.5.0 Address Ok.
  rcpt to: [email protected]
  530 5.7.1 Relaying not allowed: [email protected]
  rcpt to: [email protected]
  Also please clarify if you want to disable the ability to perform SMTP auth or whether you want to allow email to be sent without requiring SMTP auth -- these are two completely different objectives.
  No I do not want to disable SMTP auth for everyone.DEfault is it should be forced to all except from one ip. ie disable smtp auth only for an ip address.
  Regards
  Pradeep

• AuthenticationFailedException when using JNDI and JavaMail with SMTP auth

  Hi all - I've been banging my head on this one for awhile now - hopefully someone else has done this.
  We are working in a servlet container (tomcat), and need obtain a mail session from JNDI. We do this as follows:
                 Context initCtx = new InitialContext();
                 Context envCtx = (Context) initCtx.lookup("java:comp/env");
                 Session mailSession=(Session) envCtx.lookup("mailSession/trumpetinc");so far so good. The jndi entry for the mail session is configured in server.xml as follows:
            <Resource name="mailSession/trumpetinc" scope="Shareable" type="javax.mail.Session"/>
            <ResourceParams name="mailSession/trumpetinc">
              <parameter>
                <name>mail.smtp.host</name>
                <value>mail.server.com</value>
              </parameter>
              <parameter>
                <name>mail.smtp.password</name>
                <value>ABCDEFG</value>
              </parameter>
              <parameter>
                <name>mail.smtp.user</name>
                <value>trumpet_kevin</value>
              </parameter>
           <parameter>
             <name>mail.smtp.auth</name>
             <value>true</value>
           </parameter>
            </ResourceParams>With the above, whenever we hit Transport.send(msg), we got an AuthenticationFailedException thrown. I have run into this before with SMTP authentication, so I decided to try using the transport.sendMessage() method instead.
  So, I get the transport:
  Transport trans = mailSession.getTransport("smtp");
  trans.connect();Then I send my message using:
  msg.saveChanges();
  trans.sendMessage(msg, msg.getAllRecipients());and finally, I close the transport:
  trans.close();Unfortunately, I'm still getting the exception. Is it possible that my connect() method is not picking up the JNDI properties set in the server.xml file (this seems likely)? If so, what's the best way for me to get those properties so I can set them explicitly in the connect() method?
  Thanks in advance,
  - Kevin

  Hi,
  I have faced the same problem and after some googling and trying I have discovered what causes the AuthenticationFailedException exception. I just wanted to share the knowedge maybe it will be helpfull to others.
  Here it is what the API says:
  To use SMTP authentication you'll need to set the mail.smtp.auth property (see below) and provide the SMTP Transport with a username and password when connecting to the SMTP server. You can do this using one of the following approaches:
  1.Provide an Authenticator object when creating your mail Session and provide the username and password information during the Authenticator callback.
  Note that the mail.smtp.user property can be set to provide a default username for the callback, but the password will still need to be supplied explicitly.
  This approach allows you to use the static Transport send method to send messages.
  2.Call the Transport connect method explicitly with username and password arguments.
  This approach requires you to explicitly manage a Transport object and use the Transport sendMessage method to send the message. The transport.java demo program demonstrates how to manage a Transport object. The following is roughly equivalent to the static Transport send method, but supplies the needed username and password:
  Using the Transport.connect makes the JNDI not very helpfull for configuration.
  It seems that using just the mail.smtp.user and mail.smtp.pass is not sufficient for the authentication.
  so, the solution is :
  just place these to lines in the JNDI configuration:
            username="test"
            password="test1"
  so it should looks as follows:
            <Resource name="mail/Session" auth="Container"
            type="javax.mail.Session"
            username="test"
            password="test1"
            mail.transport.protocol="smtp"
            mail.smtp.auth="true"     
            mail.smtp.host="localhost"
            mail.smtp.port="25"
            mail.smtp.user="test"
            mail.smtp.password="test1"
  />
  where test and test1 are the user's credentials
  Regards,
  Kiril
  Message was edited by:
  Kireto
  Message was edited by:
  Kireto

• SMTP-auth via mailx results in service unavailable

  Why do my attempts to use mailx with Gandi SMTP fail with 'Service unavailable'?
  I have the following ~/.mailrc file which is recognised by mailx:
  set smtp=smtps://mail.gandi.net:465
  set smtp-auth=login
  set smtp-auth-user=harry@XXXXXXX
  set smtp-auth-password=XXXXXXX
  set from=harry@XXXXXXX
  set ssl-verify=ignore
  set nss-config-dir=/Users/neville/Thunderbird
  The result is below.
  From MAILER-DAEMON  Thu Dec 20 15:41:47 2012
  Return-Path: <>
  X-Original-To: [email protected]
  Delivered-To: [email protected]
  Received: by G4-N-2.local (Postfix)
            id D4E2DA382D6; Thu, 20 Dec 2012 15:41:47 +0000 (GMT)
  Date: Thu, 20 Dec 2012 15:41:47 +0000 (GMT)
  From: [email protected] (Mail Delivery System)
  Subject: Undelivered Mail Returned to Sender
  To: [email protected]
  Auto-Submitted: auto-replied
  MIME-Version: 1.0
  Content-Type: multipart/report; report-type=delivery-status;
            boundary="78E73A382D4.1356018107/G4-N-2.local"
  Message-Id: <[email protected]>
  This is a MIME-encapsulated message.
  --78E73A382D4.1356018107/G4-N-2.local
  Content-Description: Notification
  Content-Type: text/plain; charset=us-ascii
  This is the mail system at host G4-N-2.local.
  I'm sorry to have to inform you that your message could not
  be delivered to one or more recipients. It's attached below.
  For further assistance, please send mail to postmaster.
  If you do so, please include this problem report. You can
  delete your own text from the attached returned message.
                     The mail system
  <neville@XXXXXXX>: host spool.mail.gandi.net[217.70.184.6] said: 554 5.7.1
      Service unavailable; Client host [XXXXXXX] blocked using
      pbl.spamhaus.org; http://www.spamhaus.org/query/bl?ip=XXXXXXX (in
      reply to RCPT TO command)
  --78E73A382D4.1356018107/G4-N-2.local
  Content-Description: Delivery report
  Content-Type: message/delivery-status
  Reporting-MTA: dns; G4-N-2.local
  X-Postfix-Queue-ID: 78E73A382D4
  X-Postfix-Sender: rfc822; [email protected]
  Arrival-Date: Thu, 20 Dec 2012 15:41:47 +0000 (GMT)
  Final-Recipient: rfc822; neville@XXXXXXX
  Action: failed
  Status: 5.7.1
  Remote-MTA: dns; spool.mail.gandi.net
  Diagnostic-Code: smtp; 554 5.7.1 Service unavailable; Client host
      [XXXXXXX] blocked using pbl.spamhaus.org;
      http://www.spamhaus.org/query/bl?ip=XXXXXXX
  --78E73A382D4.1356018107/G4-N-2.local
  Content-Description: Undelivered Message
  Content-Type: message/rfc822
  Received: by G4-N-2.local (Postfix, from userid 501)
            id 78E73A382D4; Thu, 20 Dec 2012 15:41:47 +0000 (GMT)
  To: neville@XXXXXXX
  Subject: test
  Message-Id: <[email protected]>
  Date: Thu, 20 Dec 2012 15:41:47 +0000 (GMT)
  From: [email protected] (Neville Hillyer)
  test email
  --78E73A382D4.1356018107/G4-N-2.local--

  http://www.spamhaus.org says:
  Mail servers only run spam filters such as Spamhaus PBL on port 25, so if you find you are being blocked by the PBL when you try to send mail to your mail server that means you are not communicating with the mail server on the 'authenticated' port 587 but you're still on port 25. This means your 'SMTP Authentication' is not working correctly.
  http://wiki.gandi.net/en/mail/standard-settings#smtp-account says:
  SMTP Account
  Name server : mail.gandi.net
  Port : 25, 465 (with SSL) or 587 (try one or the other)
  TLS or SSL: yes
  SMTP Authentication : yes, using the same settings as for the POP / IMAP account
  I was trying to use the same settings I have used for several years with Thunderbird and Apple Mail, ie SSL on port 465.
  Is there something wrong with my settings which could be preventing mailx from using port 465?
  A few debug tips would be appreciated.
  Your link causes me to ask:  Does the mailx on Leopard support SMTP directly?

• OS X's Mail app and SMTP auth

  We're having a problem with OS X's Mail app connecting to Tiger Server's mail server. We have the server set up to not always require SMTP auth (all SMTP auth settings unchecked in Settings > Advanced > Security), and to allow relay from only a given set of networks (Settings > Relay). In theory, this means that if you're on one of the specified networks, you're not required to authenticate, otherwise you are. This according to Apple's documentation.
  From a bit of packet sniffing, it looks like:
  1. If a user on an allowed network tries to send mail through the server, the server does not return authorization as an option.
  2. If the user has password authentication specified in Mail's SMTP Server settings, it refuses to send. If they set SMTP auth to None, the Mail app will send.
  IOW, Mail doesn't send if Authorization is enabled in the Mail app, but not given as an option by the mail server. Has anyone else seen this? Is this a bug in Mail or Postfix?

  If you have networks entered in
  'Accept SMTP relay only from these hosts and
  networks'
  Clients on these networks don't need to authenticate
  for local delivery or relay.
  So it does what you are looking for.
  Jeff
  Well, goddarn it - so it does!
  I was testing various permutation (10.3.4) just recently and it just wouldn't relay without auth if any of them was selected (honest!). That was with the trusted relay....
  ...but I just tried it again and it's fine!
  I had put it down to just another 'glitch' in the documentation.
  Oh well - glad you were there to point it out Jeff!
  Whilst we are on the subject - do you know of any way to tie authentication (outwith trusted network) to specified users? I was thinking there might be a Postfix parameter for this (sorry, I should just look them all up but maybe someone knows it already)?
  Thank, and sorry for any earlier confusion!
  -david.

• Pop before smtp and smtp auth

  Hi Jay,
  hope all is well with you.
  what is pop before smtp and how to see if it is enabled?
  what is smtp auth and how to see if it is enabled? Is it enabled by default on MS 6.x?
  what happens if smtp auth is not enabled? Will my mail server be a relay?
  Is there any additional configuration that should be done on messaging server to allow connection for dial-up users?
  thanks,

  Hi Jay,
  hope all is well with you.
  what is pop before smtp and how to see if it is
  enabled?Pop before SMTP is a very old, and little used method for "authenticating" users. There is virtually no reason to turn this on, anymore.
  It's done through the MMP, and is the only reason to actually use the SMTP proxy that's part of MMP.
  I would not go there unless your environment requires it. Most do not. Most clients support SMTP authentication, which is much better, and is on by default.
  >
  what is smtp auth and how to see if it is enabled? Is
  it enabled by default on MS 6.x?See above. Yes, smtp authentication is on by default.
  >
  what happens if smtp auth is not enabled? Will my
  mail server be a relay?Totally different issue.
  No.
  If smtp auth is off, if you have external users, they likely will not be allowed to send to other external users..
  >
  Is there any additional configuration that should be
  done on messaging server to allow connection for
  dial-up users?If "dial-up users" means that they come from ip addresses outside your network, then smtp auth will allow them full access.
  thanks,

• POP3 access problem

  hi,
  imsimta version is
  Sun Java(tm) System Messaging Server 6.3-5.02 (built Oct 12 2007; 32bit)
  libimta.so 6.3-5.02 (built 17:15:31, Oct 12 2007; 32bit)
  SunOS P1192FLPLN 5.9 Generic_118558-02 sun4u sparc SUNW,Sun-Fire
  We have a mailbox allocated to a user who uses pop3 service.
  Our server has been pointed to an external gateway ,but the user has configured his pop3 client to send mail via another gateway.
  He is experiencing slow delivery of mails.
  Is their anyway we can check the logs for his mails been sent.
  Also is their any command utility with which we can monitor the messaging server continuously
  I am quite skeptical in our case that we will able to find any log for our case, so posting this query
  thanks in advance.

  prasad0_0 wrote:
  We have a mailbox allocated to a user who uses pop3 service.
  Our server has been pointed to an external gatewaySending (SMTP) and accessing email (POP) are two completely independent operations.
  What is this 'external gateway' you are talking about - is this for POP access (some kind of proxy/MMP) or for SMTP access/outgoing relay?
  ,but the user has configured his pop3 client to send mail via another gateway. Who maintains/runs this 'other' gateway? Does this mean the customer is not uploading/sending emails to the Sun Messaging Server that they have their account on?
  He is experiencing slow delivery of mails. Does this occur if they send emails via the Sun Messaging System, if not how is this a Sun Messaging Server problem?
  Also does 'slow delivery' mean it takes a long time to upload (send) or a long time to be delivered into their account?
  Is their anyway we can check the logs for his mails been sent. Only if the system being sent to is owned/maintained by yourself. If the customer is sending emails to a third-party then it won't be logged since your system knows nothing about it.
  Also is their any command utility with which we can monitor the messaging server continuously Monitor what exactly?
  We provide an SNMP interface for monitoring various parameters about messaging server (queues, processes up/down that sort of thing).
  I am quite skeptical in our case that we will able to find any log for our case, so posting this queryWell if they upload email via a third-party how is this your problem/fault? You could check the received headers of a 'slow' email to determine where the delay may be.
  Regards,
  Shane.

• Smtp auth - relay

  Hi!
  We are running GWIA novell-groupwise-gwia-12.0.1-103731.
  Relaying is denied in the GWIA-settings.
  We tested the GWIA behavior.
  If we do an SMTP-Auth against the GWIA and the authentication is
  successful, relaying is allowed.
  In the GWIA "Access-Control Settings" -> "Default Class of service"
  there is "Prevent outgoing messages" defined in the "SMTP Outgoing" section.
  It seems, that it has no effect, what is defined in the Access Control
  Settings; Gwia will always allow relaying, if the user is authenticated
  against the GWIA.
  Does this work as designed, or do we have a chance that we will allow
  only specified users to relay, if they are authenticated?
  thanks in advance
  Wolfgang

  On 06.11.2012 11:12, wpolster wrote:
  > Hi!
  >
  > We are running GWIA novell-groupwise-gwia-12.0.1-103731.
  > Relaying is denied in the GWIA-settings.
  >
  > We tested the GWIA behavior.
  > If we do an SMTP-Auth against the GWIA and the authentication is
  > successful, relaying is allowed.
  > In the GWIA "Access-Control Settings" -> "Default Class of service"
  > there is "Prevent outgoing messages" defined in the "SMTP Outgoing"
  > section.
  That's a bad idea, and should result in nobody using groupwise
  internally being able to send email out. You can't remove restrictions
  in the default class of service with more specific classes.
  > It seems, that it has no effect, what is defined in the Access Control
  > Settings; Gwia will always allow relaying, if the user is authenticated
  > against the GWIA.
  Correct. The class of service restrcitions only apply to *internal*
  users, e.g everything that come from or goes to groupwise. relaying
  happens totally on the SMTP side of GWIA only, and there's no restrictions.
  > Does this work as designed, or do we have a chance that we will allow
  > only specified users to relay, if they are authenticated?
  Unfortunately not.
  CU,
  Massimo Rosen
  Novell Knowledge Partner
  No emails please!
  http://www.cfc-it.de

• External SMTP Auth

  Hi folks.
  My iPod is not happy. She (he?) can't send mail from outside. I have an IMAP account that I use on my LAN server for my domains. When I go out, I can't send mail.
  Now, port 465 is apparently used for SSL SMTP, but that isn't open on the server. My router has SMTP Mail open.
  What I want to do, I forget the name of. I think it's SMTP Auth, and using a port above what routers would normally close off. So I'd like to use port 3500 or something like that. How do I do that, while using Kerberos or MD5 for sending mail from outside?
  Cheers

  I'd confirm that your ISP is (or is not) blocking inbound port 25; if the server here is connected into the ISP via a residential-grade service tier, then port 25 and port 80 blocks in-bound are fairly common. That is, confirm whether the connectivity problems here are between the ISP and the server, or at the pub.
  As for your own network perimeter, most consumer-grade routers are pretty weak, while those router-firewalls with VPN and port-forwarding aren't that much more expensive. And there are open-source firewalls around. And using a VPN into the firewall is a pretty good solution for many reasons.
  Various organizations that offer wireless do block port 25 outbound and sometimes other specific outbound ports to reduce the spread of malware, or the network loading that can result from torrents. Few organizations block outbound VPNs or webmail (port 80 or port 443) connections.

• Smtp auth required

  Hi
  As of today I am getting an alert for thunderbird saying. The mail server responded: SMTP Auth required for message submission on port 587.
  Can anyone tell me how I fix this. My tech guys say there should be a tick box in thunderbird saying the server requires SMTP Authorisation but I can't find it anywhere.

  ''christ1 [[#answer-700312|said]]''
  <blockquote>
  Tools (Alt-T) - Account Settings
  Select 'Outgoing Server (SMTP)' in the left pane, it's at the bottom of the pane.
  Select your SMTP server - Edit
  Enter your user ID.
  Thunderbird will prompt you for a password the next time you attempt to send a message.
  </blockquote>
  Hi Chris
  We have tried changing the password but this does not solve the problem.
  I am looking for a tick box that say SMTP requires authorisation.
  Thanks

• SMTP Auth For Subset of Users

  I think this is not possible but thought I should ask just in case...
  Any ideas how to configure things to only allow a couple of users to smtp authenticate from WAN side of firewall?
  I'm thinking of a different port number from 25, tied into some sort of lookup table...? (you can probably tell I'm scrabbling about here
  -david

  Thanks Jeff,
  This is purely to get around a lack of secure passwords for LAN users (there are no passwords). At the moment there is no SMTP auth, only relay by LAN IP, and the firewall is closed except for SMTP & VPN. Problem is that the 2 bosses now want to send/receive email from WAN using their fancy mobile phones. However, they are not keen on now introducing secure passwords office wide so I was looking around for other possibilities before informing them that there was really no choice if they wanted to enable SMTP auth and open firewall for pop/imap (due to risk of dictionary hack).
  oh, and yes, it's pop/imap too
  (I have not looked at how these phones work exactly with pop/imap so not sure yet which protocol is preferred).
  The VPN is using the OSX Server and does get used for email from home computer. Actually, I must check to see if the phone thingy can do VPN...
  Appreciate any thoughts. I actually would like to tell them to introduce secure passwords throughout but just wanted to ensure I wasn't giving them wrong info on possible alternatives.
  -david

• Mail and SMTP auth (RFC 1918 error) ?

  I've an iMac and a Macbook (both with Mac OS X 10.5.3). Both connected to Internet using Airport via my WiFi router (with NAT activated on this router). This behavior is working fine since almost 2 years.
  I was using (and I'm still using) Thunderbird (last version) to read and send my emails on the iMac, and Mac OS X Mail on the Macbook.
  Everything was fine until yesterday. My provider has change is SMTP server so that authentification is now required when sending message.
  So I've activated SMTP auth in Thunderbird and all is fine. And do the same under Mail (with password option). But it doesn't work with Mail, I've got a SMTP connexion error.
  When I choose the diagnostic button, I find that SMTP connexion (EHLO) is fine, then saying my IP address (192.168.x.x) is private according to RFC 1918 and ending the connexion (QUIT).
  I have the same error on my iMac, though it just work fine with Thunderbird.
  So it seems to me Mail can't connect because of this behavior. But I don't understand why my IP address in Mail dialog with my provider SMTP server is not NATed by my router, like all other IP traffic.
  And I don't know what to do to correct this problem.

  Well, as SMTP authentification is only required to forward mail to another domain, I try to send an mail to my wife who is on the same domain as myself. It work fine with authentification disabled using Thunderbird but don't work with Mail.
  As it use to work fine until I change the configuration, I try to delete my account informations and create a new one as it was 2 days ago (without SMTP auth) but it still doesn't work even if I've got no problem with Thunderbird.
  Anyone as an idea about all this mess ? My only clue is the Mail connection diag which show connect, helo (with my private IP), server response 550 RFC 1918 and quit. Even if I found this behavior very strange, the result of the diag is the same with or without SMTP auth actived. So I suppose it was already the same before when it was working fine...

• Trouble sending SMTP AUTH

  I am having difficulty sending mail to an smtp server that requires authentication.
  The mail messages are valid so I snipped only the connection code:
          boolean DEBUG = true;
          Properties p = new Properties();
          p.put("mail.smtp.host", "mail._myhost.com");
          javax.mail.Session s = javax.mail.Session.getDefaultInstance(p, null);
          s.setPasswordAuthentication(
                  new URLName("mail._myhost.com"),
                  new PasswordAuthentication("_myuser","_mypass")
          s.setDebug(DEBUG);
  myhost, myuser, and _mypass are all valid.
  The smtp server is James 2.1.2 from apache/jakarta and this option works without authentication on a test mail server. There is no option is changing authentication on the intended server (obviously).
  The exception I get is:
  javax.mail.SendFailedException: Sending failed; nested exception is: javax.mail.SendFailedException: Invalid Addresses; nested exception is:
  javax.mail.SendFailedException: 530 Authentication Required
  I would appreciate any help anyone may give me in correcting my code or pointing to where I may start looking for an answer.
  Thank you in advance for your help if you have any experience that may aid me in finding a solution.
  MB

  Bump.
  I can confirm AUTH working with perl libraries.
  Is javamail as buggy as some are claiming? I have not had problems up to this point and I am stumped with smtp AUTH.
  Thanks for your help.