I use O365 Business (Or whatever the heck they call it now) for my email, so for SMTP on all my devices at home, I use an O365 account with an app password, sending as a distro-group so it can have a custom name
This works, but I don’t like how every device/server has O365 creds in it. I am thinking I should setup an SMTP Relay at home locally, which sends to O365 (Or Sendgrid, etc etc) and then SMTP on local services can just point to that local address
Is this the right way to go about it? What is the current best software do it? I’ve only ever had experience using IIS to do this, and of course I don’t want to be running windows!
I use https://github.com/YoRyan/mailrise
Mailrise is apprise under the hood. It’s an SMTP server that converts all the emails it receives to push messages depending on the To address in the email.
Interactive (i.e. end-users) Clients should be using OAuth instead of app passwords. This will allow your users to use their own Office365 credentials for SMTP.
For servers and non-interactive clients (e.g. copiers/printers/toasters/coffee makers) I would suggest something along the lines here: https://learn.microsoft.com/en-us/exchange/mail-flow-best-practices/how-to-set-up-a-multifunction-device-or-application-to-send-email-using-microsoft-365-or-office-365#compare-the-options
Acronyms, initialisms, abbreviations, contractions, and other phrases which expand to something larger, that I’ve seen in this thread:
Fewer Letters More Letters DNS Domain Name Service/System IP Internet Protocol SMTP Simple Mail Transfer Protocol
[Thread #344 for this sub, first seen 12th Dec 2023, 10:55] [FAQ] [Full list] [Contact] [Source code]
I think what you’re doing is fine, in fact, it’s one of the Microsoft recommended methods of doing it.
Best bet would be to setup postfix or opensmtpd as an open relay. Just make sure it is only accessible in trusted networks though!!
https://docbot.onetwoseven.one/services/postfix/
You’d want to set the listen address to 0.0.0.0 and use a non-loop back interface.
Just make sure it is only accessible in trusted networks though!!
Aw you’re no fun. Next you’ll be telling me to block all emails over 500 miles.
deleted by creator
An unauthenticated relay isn’t a security problem when it can only send to certain addresses in 365, and isn’t even accessible outside the local network.
deleted by creator
Well…it is a potential risk that links back to you pretty much directly. What is stopping some rogue sw from sniffing out smtp and then going bananas?
I would look for other ways tbh. Running smtp locally is imo asking for trouble.
