With postfix using "smtpd_sasl_type = dovecot", you shouldn't need sasl2-bin.
I think your test with telnet on port 25 will not work because you have "smtpd_sasl_security_options = noanonymous,noplaintext" which disables "plaintext" type of auth and both LOGIN and PLAIN are in the clear.
It's generally advised to enable SASL/authenticated relaying only on TCP/465 and/or TCP/587 where you can (and should) require TLS encryption. Once you use one of those port with mandatory encryption, you can set "smtpd_sasl_tls_security_options = noanonymous" (note the "tls" in the name).
With postfix using "smtpd_sasl_type = dovecot", you shouldn't need sasl2-bin.
I think your test with telnet on port 25 will not work because you have "smtpd_ sasl_security_ options = noanonymous, noplaintext" which disables "plaintext" type of auth and both LOGIN and PLAIN are in the clear.
It's generally advised to enable SASL/authenticated relaying only on TCP/465 and/or TCP/587 where you can (and should) require TLS encryption. Once you use one of those port with mandatory encryption, you can set "smtpd_ sasl_tls_ security_ options = noanonymous" (note the "tls" in the name).
For more information, please refer to those:
https:/ /doc.dovecot. org/configurati on_manual/ howto/postfix_ and_dovecot_ sasl/ www.postfix. org/SASL_ README. html#smtpd_ sasl_security_ options
http://
HTH,
Simon