[Evolution] Re: [Eolution] sender authentication

[Nigel Metheringham <Nigel Metheringham dev intechnology co uk>]

On Fri, 2004-10-08 at 10:19 -0700, Thomas Spuhler wrote: 
> I need to authenticate clients (traveling salesmen) when sending e-mail.
> (I want to move away from pop-before-smtp and want to use sasl
> authentication.)
> The setup seems to work from the local network (clicking on check
> supported types gives me the installed choices) and I can send e-mails.
> However not so from the outside. It's probably a closed port problem.
> which ports need to be open for this to work?

This depends on how things are set up.

The possibilities are:- 
      * Port 25 (traditional SMTP).  Some ISPs and other organisations
        (ie Universities) block this - do not let direct SMTP out from
        their network (other than from specifically authorised
        machines). 
      * Port 587 (MSA port), which is specifically designed for clients
        to send authorised SMTP through servers.  This is by far the
        best one to use, however Outlook has problems since this port
        should be normal SMTP which you then (optionally) negotiate
        STARTTLS with to do encryption, and Outlook assumes everything
        bar port 25 is for SSMTP
      * Port 465 SSMTP (ie SMTP over SSL).

If you are purely using evolution then I would suggest you set up your
SMTP daemon to additionally listen on 587 (with a different set of rules
- ie must authenticate, and probably must use TLS, may relay), and
configure all evolution clients to send out via 587.  If you are stuck
with other systems you may need 465 as well.

        Nigel.

-- 
[ Nigel Metheringham           Nigel Metheringham InTechnology co uk ]
[ - Comments in this message are my own and not ITO opinion/policy - ]