Date: Mon, 11 Feb 2002 19:00:42 +0100 From: "[ 0ver ]" <joanpau.desola@es.tiscali.com> To: <freebsd-questions@freebsd.org> Subject: problems with POSTFIX and SASL Message-ID: <019401c1b326$05c91d40$ba00a8c0@0ver>
next in thread | raw e-mail | index | archive | help
This is a multi-part message in MIME format.
------=_NextPart_000_0191_01C1B32E.67815040
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Hi, I need heeeelp!
I'm having problems configuring an authenticated smtp using =
postfix+sasl.
I'm trying it on a FreeBSD 4.5 box and that's what I've done till now:
- I've installed cyrus-sasl port using DB3 option.
- I've installed postfix with SASL and DB3 options. Then I've executed =
make replace on /usr/ports/mail/postfix to replace sendmail.
- I've created the file /usr/local/lib/sasl/smtpd with the following =
line --> pwcheck: sasldb
- I've added this in /usr/local/etc/postfix/main.cf :
broken_sasl_auth_clients =3D yes
smtpd_sasl_auth_enable =3D yes
I've created a test user using "saslpasswd -c -a smtpd test" and that's =
what I get when I list users using sasldblistusers:
user: test realm: test.int mech: PLAIN
user: test realm: test.int mech: CRAM-MD5
user: test realm: test.int mech: PLAIN-APOP
user: test realm: test.int mech: DIGEST-MD5
The smtp response to an ehlo <hostname> is :=20
250-PIPELINING
250-SIZE 10240000
250-ETRN
250-AUTH LOGIN PLAIN KERBEROS_V4 DIGEST-MD5 CRAM-MD5
250-AUTH=3DLOGIN PLAIN KERBEROS_V4 DIGEST-MD5 CRAM-MD5
250 8BITMIME
The result is that smtp isn't authenticating and generates de following =
errors in /var/log/maillog:
warning: unknown [192.168.0.222]: SASL LOGIN authentication failed.
Using debug_peer_level=3D1 in main.cf, I've checked that the login and =
pass passed in PLAIN format arrives ok but generates an SASL auth error.
I've done the same things on a FreeBSD 4.4 and all works ok, why not in =
a 4.5?
I expect someone could help me.
Thanks!
0ver
------=_NextPart_000_0191_01C1B32E.67815040
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META content=3D"text/html; charset=3Diso-8859-1" =
http-equiv=3DContent-Type>
<META content=3D"MSHTML 5.00.2920.0" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Hi, I need heeeelp!</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>I'm having problems configuring an =
authenticated=20
smtp using postfix+sasl.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>I'm trying it on a FreeBSD 4.5 box =
and that's=20
what I've done till now:</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>- I've installed cyrus-sasl port=20
using DB3 option.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>- I've installed postfix with =
SASL and=20
DB3 options</FONT><FONT face=3DArial size=3D2>. Then I've executed =
make=20
replace on /usr/ports/mail/postfix to replace =
sendmail.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>- I've created the file=20
/usr/local/lib/sasl/smtpd with the following line --> pwcheck:=20
sasldb</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>- I've added this in=20
/usr/local/etc/postfix/main.cf :</FONT></DIV>
<DIV><FONT face=3DArial size=3D2> =20
broken_sasl_auth_clients =3D yes</FONT></DIV>
<DIV><FONT face=3DArial size=3D2> =20
smtpd_sasl_auth_enable =3D yes</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>I've created a test user using =
"saslpasswd -c=20
-a smtpd test" and that's what I get when I list users using=20
sasldblistusers:</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>user: test realm: test.int =
mech:=20
PLAIN<BR>user: test realm: test.int mech: =
CRAM-MD5<BR>user: test=20
realm: test.int mech: PLAIN-APOP<BR>user: test realm: test.int =
mech:=20
DIGEST-MD5<BR></FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>The smtp response to an ehlo =
<hostname>=20
is :</FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>250-PIPELINING<BR>250-SIZE=20
10240000<BR>250-ETRN<BR>250-AUTH LOGIN PLAIN KERBEROS_V4 DIGEST-MD5=20
CRAM-MD5<BR>250-AUTH=3DLOGIN PLAIN KERBEROS_V4 DIGEST-MD5 =
CRAM-MD5<BR>250=20
8BITMIME</FONT></DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>The result is that smtp isn't =
authenticating and generates de following errors in=20
/var/log/maillog:</FONT></DIV>
<DIV><FONT face=3DArial size=3D2>warning: unknown [192.168.0.222]: SASL =
LOGIN=20
authentication failed.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>Using debug_peer_level=3D1 in =
main.cf,=20
I've checked that the login and pass passed in PLAIN format =
arrives ok but=20
generates an SASL auth error.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>I've done the same things on a FreeBSD =
4.4 and all=20
works ok, why not in a 4.5?</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>I expect someone could help =
me.</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>Thanks!</FONT></DIV>
<DIV> </DIV>
<DIV><FONT face=3DArial size=3D2>0ver</FONT></DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV> </DIV></BODY></HTML>
------=_NextPart_000_0191_01C1B32E.67815040--
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?019401c1b326$05c91d40$ba00a8c0>