Configuring Postfix to support TLS

Postfix can utilize TLS for securing communication in a few ways. We're going to look at each of them.

How to do it…

Require TLS for authentication of local clients:
This is already handled in our existing configuration through the smtpd_tls_security_level=encrypt option for the submission port.

Allow TLS of inbound/outbound mail delivery:

$ sudo postconf –e smtpd_tls_security_level=may

Set the TLS key and certificate files:

$ sudo postconf –e smtpd_tls_cert_file=/path/to/server.crt
$ sudo postconf –e smtpd_tls_key_file=/path/to/server.key

How it works…

The most important thing we want to do here is ensure that passwords are not sent in plaintext. This means requiring authentication on the submission port, which the ...

Get Linux Networking Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Linux Networking Cookbook by Gregory Boyce

Configuring Postfix to support TLS

How to do it…

How it works…

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly