Securing plaintext mechanisms

We already noted that SMTP AUTH using plaintext mechanisms isn't really safe because the string that is sent during authentication is merely encoded and not encrypted. This is where Transport Layer Security (TLS) comes in handy because it can shield the transmission of the encoded string from curious eyes.

Enabling Transport Layer Security

To enable TLS you must generate a key pair and a certificate, and then alter the postfix configuration to recognize them.

To generate an SSL certificate, and to use SSL, you need to have the OpenSSL package installed. This will be installed in many cases, otherwise use your distribution's package manager to install it.

To create a certificate, issue the following commands (as root): ...

Get Linux E-mail now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Linux E-mail by Alistair McDonald, Carl Taylor, David Rusenko, Ian Haycox, Magnus Back, Patrick Ben Koetter, Ralf Hildebrandt

Securing plaintext mechanisms

Enabling Transport Layer Security

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly