On 2007-12-27 at 08:33 -0800, Angelo Chen wrote:
> My need is very simple, I setup a exim4 server to relay messages with
> smarthost, i can send mail if I'm in the exim4 server, but if I use Outlook
> express and the exim4 server as smtp server, i got 'relay not permited'
> error, what is the correct way of setting up like this? thanks.
If the Outlook machine is on a fixed private IP or subnet under your
control and which can't be used by anyone untrusted, then you tell Exim
that it should relay for that IP address|block.
If your configuration is anything like the default one, then take a look
at the "relay_from_hosts" hostlist; the default config will do the
"right thing" if you just add to that.
If the IP address where the Outlook machine is can't be trusted (eg,
it's a laptop roaming around the Internet) then you should look at
authentication; either with TLS (SSL) security or using decent security
algorithms. Note that some versions of Outlook Express are known to not
support STARTTLS and as I understand it, instead you'll need to use the
"smtps" port (465):
daemon_smtp_ports = smtp : smtps : submission
tls_on_connect_ports = 465
and have a "LOGIN" authenticator and for sufficiently old versions of OE
you'll need to mess with the EHLO keyword advertising to work around OE
brokenness:
http://wiki.exim.org/AuthenticatedSmtpForBrokenClients
Fortunately, my wife quickly fell in love with using IMAP and I got her
off OE and onto Thunderbird before having to support OE for anything
beyond relay_from_hosts; in previous employment, use of OE was
forbidden. So I have little first-hand experience with it.
Regards,
-Phil
