I have a server with postfix
and a plain text authentication.
It accepts both TLS and non-TLS authentication.
How can I force the server to deny all non TLS queries so that the mail users never send their username and passwords in clear text when login in?
To make thinks clear, if user2@mymailserver2.com
is the recipient and user@mymailserver.com
the local sender:
I want this command to work (since there is the
--tls
option):swaks --tls --to user2@mymailserver2.com --from -a user1@mymailserver1.com -auth CRAM-MD5 --auth-user user1@mymailserver1.com
and that command to fail (since
--tls
is missing):swaks --to user2@mymailserver2.com --from -a user1@mymailserver1.com -auth CRAM-MD5 --auth-user user1@mymailserver1.com