From owner-freebsd-stable@FreeBSD.ORG Thu Mar 27 14:59:11 2003 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id DDD8E37B404 for ; Thu, 27 Mar 2003 14:59:10 -0800 (PST) Received: from mail.westbend.net (ns1.westbend.net [216.47.253.3]) by mx1.FreeBSD.org (Postfix) with ESMTP id B94E143FA3 for ; Thu, 27 Mar 2003 14:59:09 -0800 (PST) (envelope-from hetzels@westbend.net) Received: from ADMIN00 (WBIw005.westbend.net [216.47.253.25]) by mail.westbend.net (8.12.8/8.12.8) with ESMTP id h2RMx3g3098727; Thu, 27 Mar 2003 16:59:03 -0600 (CST) (envelope-from hetzels@westbend.net) Message-ID: <03d601c2f4b4$77a41d90$19fd2fd8@westbend.net> From: "Scot W. Hetzel" To: "Jeff Seeman" , References: <20030327142645.T23075@omen.e-lated.org> <20030327143508.G23075@omen.e-lated.org> Date: Thu, 27 Mar 2003 16:59:05 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 X-Virus-Scanned: by amavisd-milter (http://amavis.org/) X-Spam-Status: No, hits=-22.8 required=5.0 tests=EMAIL_ATTRIBUTION,QUOTED_EMAIL_TEXT,REFERENCES, REPLY_WITH_QUOTES autolearn=ham version=2.50 X-Spam-Level: X-Spam-Checker-Version: SpamAssassin 2.50 (1.173-2003-02-20-exp) Subject: Re: security/cyrus-sasl X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 27 Mar 2003 22:59:12 -0000 From: "Jeff Seeman" > On Thu, 27 Mar 2003, Jeff Seeman wrote: > > I am trying to setup password protected smtp, according to the FreeBSD > > Hanbook I need to install cyrus-sasl. I have tried this on 2 different > > boxes and it failes at the same point (see below) I believe this port to > > be broken. > > > > If anyone can tell me how to get around this or know of a good solution to > > protect SMTP but still be able to provide smtp services to users across > > public networks please help. > > This problem is known and PR 48731was submited to fix this problem. http://www.freebsd.org/cgi/query-pr.cgi?pr=48731 The problem occurs on recent 4.x-STABLE systems due to the OpenSSL upgrade changed a function to a macro, and a #ifdef..#else..#endif is splitting the OpenSSL function call in cyrus-sasl source. To apply the patches do the following: cd /usr/ports/security/cyrus-sasl fetch -o PR48731 "http://www.freebsd.org/cgi/query-pr.cgi?pr=48731&f=raw" fetch -o PR48953 "http://www.freebsd.org/cgi/query-pr.cgi?pr=48953&f=raw" patch < PR48731 patch < PR48953 The second patch fixes a problem in the cyrus_pwcheck.sh script. You could also use the security/cyrus-sasl2 port. Scot