Postfix SASL Auth and TLS
-------------------------
2010-08-03 (odd notes, not fully organized)

SASL_Auth reference:
http://postfix.state-of-mind.de/patrick.koetter/smtpauth/index.html

TSL reference:
http://www.postfix.org/TLS_README.html#quick-start


/etc/postfix/master.cf
smtp -v (toggle the -v on and off for verbose logging)


smtp      inet  n       -       n       -       -       smtpd
submission inet n      -       n       -       -       smtpd
        -o smtpd_etrn_restrictions=reject
        -o smtpd_client_restrictions=permit_sasl_authenticated,reject
        -o smtpd_tls_auth_only=yes
#       -o smtdp_tls_security_level=encrypt
#smtps    inet  n       -       n       -       -       smtpd
#  -o smtpd_tls_wrappermode=yes
 -o smtpd_sasl_auth_enable=yes
#submission   inet    n       -       n       -       -       smtpd
#  -o smtpd_etrn_restrictions=reject
#  -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes
#628      inet  n       -       n       -       -       qmqpd


Added stuff to bottom of /etc/postfix/main.cf for SASL

Added stuff to smtpd_recipient_restrictions line 
** ORDER OF OPERATIONS MATTERS! **


TLS - Use same cert as for dovecot for postfix TLS
/usr/share/ssl/private/dovecot.pem (private)
/usr/share/ssl/certs/dovecot.pem (public)
/usr/share/ssl/cert.pem (self_cacert)


tion "check_relay_domains" will be removed from Postfix; use "reject_unauth_destinati
on" instead