• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:
    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

SMTP Auth is still disabled by RBL in 9.5 (Postfix)

C

ChristopheP

Guest
Hi,

I reported this behaviour in 9.3 and 9.2 but nothing was done : when you enable a SBL server to filter bad hosts,send emails anymore through SMTP authentication. this is caused by the in generated in main.cf file:

smtpd_client_restrictions = reject_rbl_client pbl.spamhaus.org , permit_mynetworks, permit_sasl_authenticated

Again, to fix this then the script that generated main.cf must put the reject_rbl at the end of the line:
smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticatedreject_rbl_client pbl.spamhaus.org

This is just a few minutes of dev time to fix this and make us stop answering angry customer phone calls.

regards
 
This also matters if you use whitelists or anything else. The rbls go at the end if any other existing commands.

Can the developers fix this please?
 
Maybe more:

smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_rbl_client pbl.spamhaus.org
 
It appears that two and a half years later this has not been fixed. Current Plesk 11 installs do not add the permit_sasl_authenticated to the smtpd_client_restrictions line at all, so a customer who is on a blacklist at their remote location cannot send outbound messages even if they have the proper authentication settings; they'll be RBL rejected first.

The smtpd_client_restrictions line should be:

smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_rbl_client <RBL Name>

but Plesk 10 and 11 still create it as:

smtpd_client_restrictions = permit_mynetworks, reject_rbl_client <RBL Name>

with the permit_sasl_authenticated flag missing.
 
Also getting customer complaints.

Has anything been done about the ability to manage this or to bypass the RBL by default on port 587 by default?
 
Bump.

Is this is still an issue? We've recently received complaints regarding this.

Is it safe to change the smtpd_client_restrictions line in main.cf, as indicated above, without any issues?

I've changed two of our Plesk 11 (CentOS 6.4, Postfix) servers to use the configuration below...

smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_rbl_client <RBL Name>

Should I expect any issues?
 
Still broken through Plesk 11.5; haven't tried 12 yet.

Run this via CLI to fix:

/usr/bin/perl -pi -e 's/permit_mynetworks, reject_rbl_client/permit_mynetworks, permit_sasl_authenticated, reject_rbl_client/g' /etc/postfix/main.cf
 
You must log in or register to reply here.

Similar threads

T
Issue SMTPD No Auth from IP Issue
Replies
2
Views
2K
Tessxr
T
F
Issue Amavis (10024: Connection refused) no transport
Replies
7
Views
19K
cambrantskv
C
P
Issue smtpd_milters Postfix and Gmail and Hotmail delivery
Replies
0
Views
1K
Pedro1
P
N
Plesk 12.5 - Mailmain can't send mail when SPF check is turned on
Replies
4
Views
2K
rereus
R
K
postfix changes
Replies
1
Views
2K
SandorM
S
Back
Top