[ale] SMTP recommendation?

Mon Dec 6 21:37:07 EST 2021

On December 6, 2021 at 21:27:30, DJPfulio--- via Ale (ale at ale.org) wrote:
I think postfix only cares if you use authentication for the end-user address.
Right. That would be the goal. I authenticate into the system with whatever credentials and then supply any old `FROM` because actual email spec does not care (it’s my email provider’s configuration that is preventing this, and what I want to solve).

 If you have trusted systems that don't need to be authenticated to send, then you can make the "FROM" and reply-to anything you like. Thunderbird has an "identities" setting to do this. 
Yes, I’d be using varying identities in my email client to send the appropriate headers.

What I’m really asking is if anyone has some basic configs for a server so I don’t have to read 50 manpages to concoct some _maybe_ working settings. I’ve been out of that game for a long time and would rather lean on the current knowledge of others.

The way I do it is by never allowing senders from my domains to send from outside the approved systems. So JDPfu.com email can only originate from systems inside the LAN. The email gateway, running postfix, doesn't access any authenticated email - just server-to-server stuff on port 25/tcp. Then, another system inside does all the IMAPS and SMTPS stuff for LAN clients. 

I run the email-gateway in an LXD container. Works well. Very fast, but it is bloated, since it runs Ubuntu 20.04.3 LTS - cloud image. Ubuntu is sorta bloated in the cloud image area. 

$ df -Th 
Filesystem Type Size Used Avail Use% Mounted on 
lxd/containers/spam1 zfs 11G 1.8G 9.2G 17% / 

It definitely isn't alpine. Hummmm Bet I could get alpine to use less than 300MB. 

But there are 50 different ways to solve this, I'm sure. 

On 12/6/21 5:48 PM, James Sumners (ALE) via Ale wrote: 
> It’s been many years since I’ve dealt with setting up an SMTP server 
> to actually send mail all over the Internet. But I find myself in a 
> bit of an annoyance with my mail provider. The short version is they 
> support an incoming catch all feature that will deliver mail for any 
> unrecognized recipient to a designated mailbox, e.g. for 
> foobar at example.com <mailto:foobar at example.com>, “footer” isn’t a 
> known recipient so that mail will be delivered to 
> catchall at example.com <mailto:catchall at example.com>; but they do not 
> support _sending_ as any sender. I use this catchall to register 
> accounts, e.g. amazon at example.com <mailto:amazon at example.com> or 
> some-random-site at example.com <mailto:some-random-site at example.com>, 
> so that I can see exactly who has decided to ignore my opt-out 
> preferences or is selling my email address. But sometimes I need to 
> send an email as that identity so that I can get support, and my 
> provider isn’t supporting it. So I want to setup my own SMTP server 
> that only sends mail and will send as any sender for the domain I 
> have configured as the allowed domain. 
> 
> I suspect Postfix is the appropriate tool, but am open to any of them 
> (e.g. exim). But what would you use? Are you able to provide a 
> minimal example configuration? 
> 
> Ideally I would run this process in a Docker container and do TLS 
> termination at my existing HAProxy instance. 
>  
_______________________________________________ 
Ale mailing list 
Ale at ale.org 
https://mail.ale.org/mailman/listinfo/ale 
See JOBS, ANNOUNCE and SCHOOLS lists at 
http://mail.ale.org/mailman/listinfo 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.ale.org/pipermail/ale/attachments/20211206/933ba3c5/attachment.htm>