I have just finished setting up a Postfix mail server on a linux (ubuntu) platform. I have it sending and receiving email and it is not an open relay. It also supports secure smtp and imap.
Now this is a pretty beginner question but should I be leaving port 25 open? (since secure smtp is preferred). if so then why?
Also what about port 587?
Also should I require any authentication on either of these ports?
Please excuse my ignorance in this area :P
Port 25 needs to be open in order for it to receive mail from the internet. All mail servers will establish a connection on port 25 and initiate TLS (encryption) on that port if necessary.
Secure SMTP (port 465) is used only by clients connecting to your server in order to send mail out.
Port 587 is considered a submission port. It is also what clients use to send mail out using your server. Port 587 is preferred in SMTP settings of clients over port 25 because port 25 is blocked by many ISPs. If you have port 465 open, you don't necessarily need port 587 open as well, but I believe 587 is considered a standard and 465 is considered legacy.
Port 25 should accept anonymous connections, but not for relaying
Ports 465 and 587 should reject anonymous connections and allow relaying.
Don't apologize for not knowing. We all start somewhere, and nobody on here knows everything :-)