Ubuntu Server Guide

Security concern over default smtp auth configuration

Bug #992577 reported by Thomas Baudel
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Ubuntu Server Guide
Fix Released
Undecided
Unassigned

Bug Description

In the following section:
https://help.ubuntu.com/11.10/serverguide/postfix.html#postfix-smtp-authentication

the proposed sasl security option, which will presumably be used by millions of installations, is as follows:

smtpd_sasl_security_options = noanonymous

I strongly recommend the following instead:

smtpd_sasl_security_options = noanonymous, noplaintext
smtpd_sasl_tls_security_options = noanonymous

 (see http://www.postfix.org/SASL_README.html#smtpd_sasl_security_options for description)

the reason: with the current proposition, postfix will authorize an authentication method that involves plain text passwords transmitted unencrypted over the network. This means a simple network snooper installed over a corporate network will be able to recover the passwords of users who use the ubuntu server as a mail relay.

conclusion: documentation should ensure 'noplaintext' is used by default for non encrypted routes.

Tags: serverguide
Marc Deslauriers (mdeslaur)
security vulnerability: yes → no
security vulnerability: yes → no
visibility: private → public
visibility: private → public
John Kim (kotux)
tags: added: serverguide
removed: postfix sasl
John Kim (kotux)
Changed in ubuntu-docs (Ubuntu):
status: New → Invalid
Doug Smythies (dsmythies)
no longer affects: ubuntu-docs (Ubuntu)
Revision history for this message
Bryce Harrington (bryce) wrote :

Fixed for focal.

https://discourse.ubuntu.com/t/mail-postfix/11325

Changed in serverguide:
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.