The following lines were added (+) and removed (-):
The goal is to allow users to log in to the local mail server so they can send emails. Users will use teh same username and password as the one they will be using for checking email.The goal is to allow users to log in to the local mail server so they can send emails. Users will use the same username and password as the one they will be using for checking email. POP3 and IMAP users that have already logged in to check email will be authenticated.=== Who needs SASL ===If all of your email users are on the same network, within the same gateway as your mail server, then you can simply allow relaying of mail based on your subnet and SASL is not necessary. If you have users outside of your network that connect from a variety of networks, some users having dynamic IP addresses, and perhaps users on an ISP that doesn't offer an open port 25 relay, then SASL is a good solution for you. SASL is able to provide a mechanism to authenticate remote users by username and password who wish to send mail through the mail server.=== Encryption ===SASL is able to provide a mechanism to authenticate remote users by username and password trying to relay mail. The mechanism has users sending their authentication information as plain unencrypted text. Because packets can be intercepted, and the username password combinations easily read, there is a need to encrypt the connection. Encryption options include SSL (Secure Sockets Layer) or TLS (Transport Layer Security) - note that SSL was renamed TLS by the IETF as of version 3.1. == Testing ==We know that SASL can use the PAM framework to authenticate credentials. We can test this. saslauthd -a pamPAM configuration for the Postfix SMTP server is usually given in /etc/pam.d/smtp saslauthd -a rimap -O mail.foo.comRemember that saslauthd sends IMAP login information unencrypted (see Encryption above). There is a testsaslauthd utility to test saslauthd authentication where a username and password are given as command line arguments. testsaslauthd -s smtp -u username -p password {{:Sparse Entry}}