Dirtbag's Blog

Postfix and AT&Ts Uverse

[ link: postfix_uverse | tags: postfix | updated: Fri, 17 Apr 2020 12:12:08 -0400 ]

I just switched to AT&Ts Uverse for my ISP and I had to reconfigure postfix to relay correctly through them.

I will not go into great detail because there is lots of info on how to set this up, but here are the high points that I found necessary for everything to work.

first off, I had to get relaying working through AT&T/yahoo, so in my main.cf, I had to use


relayhost=[smtp.att.yahoo.com]:587
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/postfix/server.pem
smtpd_tls_key_file = /etc/postfix/server.key
smtpd_sasl_path = private/auth
smtpd_sasl_type = dovecot
smtpd_use_tls = yes
broken_sasl_auth_clients = yes
smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
smtp_sasl_security_options = noanonymous
smtp_sasl_auth_enable = yes
smtpd_sasl_auth_enable = yes

notice the last 2 lines.. This is what gave me fits, I am doing smtp auth of mobile clients (like my android phone) and everywhere I looked on the internet, I saw either "smtp_sasl_auth_enable = yes" or "smtpd_sasl_auth_enable = yes", but not both together, I was wrongly assuming that It was the same command and it was mistyped on one page or the other.. but as it turns out, BOTH commands are needed to support my servers authentication to att's server for relaying and to allow remote clients to authenticate to relay through my server.

also, the /etc/postfix/sasl_passwd file had to look like this:


[smtp.att.yahoo.com]:587 userid@att.net:password

-db

Like this article? Buy me a beer!