ClearFoundation Tracker - ClearOS
View Issue Details
0002271ClearOSapp-smtp - SMTP Serverpublic2015-03-22 12:042017-10-11 08:22
NickH 
user2 
normalminoralways
closedsuspended 
6.6.0 
6.9.0 Updates 
0002271: Inconsistent approach to SMTP Authentication
If you have SMTP authentication disabled in the webconfig, it is still enabled for SMTPS (port 465) because of the line:
smtps inet n - n - - smtpd -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes
in master.cf.

I believe it should either be disabled (as the webconfig suggests) or enabled for STARTTLS (port 587) as well with:
submission inet n - n - - smtpd -o smtpd_sasl_auth_enable=yes
in master.cf

If it is enabled for STARTTLS as well then the webconfig should make it clear that it SMTP Authentication means port 25 only and that it is enabled anyway on port 465 (and 587).

Note SMTPS was never ratified as a standard so if only one secure method were enabled, arguably it should be STARTTLS and not SMTPS.

Ultimately it would be better to have a switch for each method of authentication.
No tags attached.
related to 0006041closed NickH Inconsistent approach to SMTP Authentication 
Issue History
2015-03-22 12:04NickHNew Issue
2015-03-23 12:14user2Statusnew => acknowledged
2015-11-11 11:54user2Target Version => 6.8.0 Beta 1
2015-11-11 11:54user2Issue cloned: 0006041
2015-11-11 11:54user2Relationship addedrelated to 0006041
2016-02-16 11:39user2SummaryInconsistant approach to SMTP Authentication => Inconsistent approach to SMTP Authentication
2016-06-09 08:34user2Target Version6.8.0 Beta 1 => 6.8.0 Updates
2017-03-21 08:41user2Target Version6.8.0 Updates => 6.9.0 Updates
2017-10-11 08:22user2Note Added: 0006641
2017-10-11 08:22user2Statusacknowledged => closed
2017-10-11 08:22user2Assigned To => user2
2017-10-11 08:22user2Resolutionopen => suspended

Notes
(0006641)
user2   
2017-10-11 08:22   
Still tracked in ClearOS 7 (0006041), but closing for ClearOS 6.