peteyboy
/
tutes-dump
forked from pifty/tutes-dump
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b2d7b24b9'
${ noResults }
tutes-dump/site-tutorials/smtpauth.html

263 lines
11 KiB
HTML
Raw Blame History

<h1>POP3, IMAP and SMTP AUTH for Popular Mail Clients</h1>
<h3>Introduction</h3>
SDF uses SMTP Authentication to allow remote network clients such as desktop, tablet and phone mail applications to use its SMTP server for the purpose of sending (relaying) e-mail messages. SDF users with the VPM, VHOST and MetaARPA memberships have access to the SMTP server.
<h3>Quick Starter Notes</h3>
<h4>Receiving Email</h4>
<ul>
<li>SDF's POP3 server address is <b>mx.sdf.org</b> port 110
<li>SDF's IMAP server address is <b>mx.sdf.org</b> port 143 (993 for TLS/SSL)
</ul>
<h4>Sending Email</h4>
<ul>
<li>SDF's SMTP server is <b>mx.sdf.org</b></li>
<li>SDF's SMTP server listens on <b>port 25</b> as well as <b>ports 23, 53,
587 and 8080</b>. Some ISPs throttle or block activity on port 25.</li>
<li>Set your SMTP AUTH secret with <b>mkvpm set <i>secret</i></b> at the
shell. The auth secret is not your SDF password; plese do not set
<i>secret</i> to your SDF password.</li>
<li>Your SMTP AUTH username is your <b>domain name@sdf.org</b> (ex. alan8r.sdf.org@sdf.org)
<li>SMTP via <b>STARTTLS</b> is recommended. Some email clients may refer
to STARTTLS as TLS. TLS/SSL is not STARTTLS.</li>
</ul>
Please note: the SMTP AUTH secret is set on the command line via mkvpm. The
command history of the shell may keep the secret in the history file.
<h3>The Mail Client Configurations</h3>
<li><a href="#k-9mail">K-9 Mail for Android</a></li>
<li><a href=#outlookexpress>Outlook Express under Windows</a></li>
<li><a href=#macosx>Mail.App under MacOS X</a></li>
<li><a href=#thunderbird>Mozilla Thunderbird under Windows</a></li>
<li><a href=#heirloommailx>Heirloom Mailx under Linux/BSD</a></li>
<li><a href=#postfix-netbsd6>Postfix MTA on NetBSD 6.x</a></li>
<li><a href=#iphone-mail-application>iPhone Mail Application</a></li>
<p>
Please note that BlueMail on Android does not support the correct password encryption algorithm, and therefore you cannot set up your SDF
email account under BlueMail. The devs have been notified of this bug; if they do fix it, the instructions here will be updated.
<hr width=25%>
<h3 id="k-9mail">K-9 Mail for Android</h3>
To <i>retrieve</i> mail via IMAP
<table border="1">
<tr><td>imap server</td><td><kbd>mx.sdf.org</kbd></td></tr>
<tr><td>Security</td><td><kbd>SSL/TLS</kbd></td></tr>
<tr><td>Port</td><td><kbd>993</kbd></td></tr>
<tr><td>Username</td><td><i>sdf user name (eg, alan8r)</i></td></tr>
<tr><td>Authentication</td><td><kbd>Normal password</kbd></td></tr>
<tr><td>Password</td><td><i>password associated with sdf user above</i></td></tr>
</table>
<br />
To <i>send</i> mail, set up SMTP with
<table border="1">
<tr><td>SMTP server</td><td><tt>mx.sdf.org</tt></td></tr>
<tr><td>Security</td><td><tt>STARTTLS</tt></td></tr>
<tr><td>Port</td><td><tt>587</tt></td></tr>
<tr><td>Username</td><td><i>Your domain name</i>*</td></tr>
<tr><td>Authentication</td><td><tt>Encrypted password</tt></td></tr>
<tr><td>Password</td><td><i>string set via <tt>mkvpm set YOUR_PASSWORD_HERE</tt></i></td></tr>
</table>
* If you are a Meta-ARPA member and <i>not</i> a VHOST member, this is whatever web domain you've chosen (frequently username.sdf.org@sdf.org). If you're a VHOST member, it's your VHOST domain.
<hr width=25%>
<h3 id=outlookexpress>Outlook Express under Windows</h3>
<li>Open Outlook Express</li>
<li>Tool -> Accounts
<li>Click Add -> Mail to start the Account Wizard
<li>Display name: Your Name
<li>E-Mail address: Your email address (ex. bill@microsoft.com)
<li>Select POP3
<li>Incoming Mail server: mx.sdf.org
<li>Outgoing mail (SMTP) server: mx.sdf.org
<li>Account name: Your email address (full email address for VPM and VHOST members, just username for MetaARPA)
<li>The wizard will now save, double click on the new configuration under the Mail tab to continue
<li>Select the Advanced tab
<li>Outgoing mail (SMTP) change from 25 to 587 (not completely necessary, but recommended)
<li>Select the Servers tab
<li>Check the box 'My server requires authentication, then click Settings
<li>Select Log on using:
<li>Account name: YOUR DOMAIN NAME (ex. alan8r.sdf.org, traumhost.com)
<li>Password: What you set with the <b>mkvpm set <i>secret</i></b> command at the shell
<li>Click 'Apply'
<hr width=25%>
<h3 id=macosx>Mail.App under Macos X</h3>
<li>Open Mail.app</li>
<li>In the Mail menu, select Preferences</li>
<li>Click the Accounts tab</li>
<li>Select the account on the left you wish to edit</li>
<li>On the Account Information tab, find &quot;Outgoing Mail Server (SMTP):&quot;</li>
<li>Click the arrows for the dropdown menu, and select Edit Server List...</li>
<li>Make sure the server you wish to use is selected in the list, and click on the Advanced tab</li>
<li>In the Authentication dropdown, select &quot;MD5 Challenge-Response&quot;</li>
<li>Type in your SDF username in User Name field</li>
<li>Type in your password in Password field</li>
<li>Click ok, and close the Preferences window.</li>
<hr width=25%>
<h3 id=thunderbird>Mozilla Thunderbird</h3>
This instructions should work for any recent Thunderbird (version 68 and up)
<li>Tools -> Account Settings -> Add Mail Account
<li>Your name: Your Name (ex. Bill Gates)
<li>Email address: your email address (ex. amrowsell@sdf.org)
<li>Password: your normal shell login password
<li>Click Continue and then click Manual Config
<li>Incoming IMAP
<li>Incoming Server Hostname: mx.sdf.org
<li>Security: STARTTLS
<li>Port: 143
<li>Authentication: Normal password
<li>Outgoing SMTP (only works if you are MetaARPA or pay for dialup)
<li>Outgoing Server Hostname: mx.sdf.org
<li>Port 587
<li>Security: STARTTLS
<li>Authentication: Encrypted password
<li>Username: Your domain name, @sdf.org ... for example,
amrowsell.sdf.org@sdf.org
<li>Click Re-Test and Create Account
<li>You will be prompted for your SMTP password the first time you go to send
mail. This is the password generated by mkvpm on the command line.
<hr width=25%>
<h3 id=heirloommailx>Heirloom Mailx under Linux/BSD</h3>
<p>Add the following to ~homeuser/.nailrc to set the default SMTP relay:
<pre><font color="green">
# Remote SDF SMTP relaying (use SDF 'mkvpm' tool to set auth user:pw):
set ssl-verify="ignore"
set smtp-use-starttls
set smtp=mx.sdf.org:587
set smtp-auth=cram-md5
set smtp-auth-user="sdf_user.sdf.org@sdf.org"
set smtp-auth-password="my_password"
</font></pre>
<p>The SDF CA is self-signed but can still be used if desired. Retrieve and store<br>
somewhere (ie. under ~/.openssl/) as pem file, then edit ~homeuser/.nailrc like so:
<pre><font color="green">
set ssl-ca-file="/home/home_user/.openssl/sdf_self-signed_ca.pem"
set ssl-verify="warn" # will issue "self-signed CA" warning
...
</font></pre>
<p>Account-specific smtp settings are possible; see the Heirloom Mailx documentation.
<hr width=25%>
<h3 id=postfix-netbsd6>Postfix MTA using libsaslc(3) on NetBSD 6.x:</h3>
<li>first, verify that <i>postfix(1)</i> knows about <i>libsaslc</i> :
<pre><font color="green">
% sudo postconf -A
saslc
</font></pre>
<li>create (as superuser) the following postfix config files:
<p>
<i>/etc/postfix/main.cf</i>
<pre><font color="green">
myhostname = mypc.my.box
mydomain = my.box
mynetworks_style = host
alias_maps = hash:/etc/mail/aliases
# SMTP client settings:
relayhost = [mx.sdf.org]:submission
smtp_generic_maps = hash:/etc/postfix/generic
smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
smtp_sasl_security_options = noplaintext, noanonymous
smtp_sasl_tls_security_options = noanonymous
## explicitly allow/prohibit certain SSL protocols:
#smtp_tls_mandatory_protocols = !SSLv2, !SSLv3, TLSv1
## use of "may" option allows fallback to cleartext
#smtp_tls_security_level = may
smtp_tls_security_level = encrypt
smtp_sasl_type = saslc
</font></pre>
<i>/etc/postfix/generic</i>
<pre><font color="green">
# applies to msgs to be delivered off-site
me@mypc.my.box sdf_login@sdf.org
</font></pre>
<i>/etc/postfix/sasl_passwd</i><br>(for security set ownership to <code>root:wheel</code>, permissions to <code>600</code>)
<pre><font color="green">
[mx.sdf.org]:submission sdf_login.sdf.org:smtp_passwd
</font></pre>
<li>hash <i>/etc/postfix/{generic,sasl_passwd}, then check and reload configs</i>:
<p><pre><font color="green">
% cd /etc/postfix/
% sudo postmap generic sasl_passwd # creates generic.db & sasl_passwd.db
% sudo postfix check # no output unless errors
% sudo /etc/rc.d/postfix reload
</font></pre>
<li>test to verify everything is working correctly:
<pre><font color="green">
% mailx sdf_login@sdf.org
Subject: test
123
.
EOT
% sudo tail -n10 /var/log/maillog | grep smtp
Apr 27 08:53:42 mypc postfix/smtp[13387]: A61631F1FDC: to=&#60sdf_login@sdf.org&#62, \
relay=mx.sdf.org[192.94.73.24]:587, delay=3.9, delays=0.02/0/3.7/0.11, dsn=2.0.0, status=sent \
(250 2.0.0 s3RFrfvZ010436 Message accepted for delivery)
</font></pre>
<hr width=25%>
<p>You should now be set up to use SDF's SMTP server. Enjoy!</p>
<h2 id=iphone-mail-application>iPhone Mail Application</h2>
<p><em>This tutorial was written on iOS version 13.3. The exact prompts on other versions may vary.</em></p>
<ol type="1">
<li>In <strong>Settings</strong>, scroll to <strong>Passwords &amp; Accounts</strong>. Tap <strong>Add Account</strong></li>
<li>On the next screen, select <strong>Other</strong>, then <strong>Add Mail Account</strong></li>
<li>Fill in the details (examples below), then tap <strong>Next</strong>
<ol type="a">
<li><strong>Name</strong> <code>Joe Bleaux</code></li>
<li><strong>Email</strong> <code>jbleaux@sdf.org</code></li>
<li><strong>Password</strong> <em>your SDF password</em></li>
<li><strong>Description</strong> <code>SDF Mail for Joe Bleaux</code> (or whatever floats your boat)</li>
</ol></li>
<li>You will need to fill in pretty much <em>all</em> the details by hand.
<ol type="a">
<li>For <strong>Incoming Mail Server</strong> section:
<ol type="a">
<li><strong>Hostname</strong> <code>mx.sdf.org</code></li>
<li><strong>Username</strong> <code>jbleaux</code></li>
<li><strong>Password</strong> <em>your SDF password</em></li>
</ol></li>
<li>For <strong>Outgoing Mail Server</strong> (MetaARPA Users Only!)
<ol type="a">
<li><strong>Hostname</strong> <code>mx.sdf.org</code></li>
<li><strong>Username</strong> <code>jbleaux.sdf.org@sdf.org</code><em>This will be the URL you have set up if you have a custom one. If not, then model it after this example.</em></li>
<li><strong>Password</strong> <em>your SDF password</em></li>
</ol></li>
</ol></li>
<li>Click <strong>Save</strong> on the next screen.</li>
<li>Select the account from the <strong>Passwords &amp; Accounts</strong> screen. On the next screen, Tap <strong>Account</strong> (which will show your username (<code>jbleaux@sdf.org</code>)</li>
<li>Scroll down and click <strong>Advanced</strong>.</li>
<li>Under <strong>Incoming Settings</strong>, tap to enable <strong>Use SSL</strong>, and for <strong>Server Port</strong>, put <code>993</code>.</li>
<li>Tap <strong>SMTP</strong> (Under <strong>Outgoing Mail Server</strong>), to view outgoing mail options, then tap the <strong>Primary Server</strong> (should be <strong>mx.sdf.org</strong>. Change <strong>Authentication</strong> to <code>MD5 Challenge-Response</code>. Click <strong>Done</strong> at the top.</li>
<li>Tap <strong>&lt;Account</strong> at the top to go back, then tap <strong>Done</strong>.</li>
</ol>
You should be sending and receiving your SDF mail on your iPhone!
<p>
$Id: smtpauth.html,v 1.20 2020/01/19 02:03:26 mrguilt Exp $
Reference in New Issue View Git Blame Copy Permalink