1 |
I'm trying to authenticate users for smtp relaying using postfix + |
2 |
saslauthd + mysql. Everything else works based on the gentoo "Virtual |
3 |
Mailhosting System with Postfix Guide". I can connect via email client and |
4 |
check mail, etc... But when it comes to sending email... it's not |
5 |
authenticating properly. In searching for an answer I did find |
6 |
/etc/sasl2/smtpd.conf's using "pwcheck_method: auxprop" and |
7 |
"auxprop_plugin: sql"... is that something I should be looking at... or |
8 |
did I just miss something in my general configurations? Any pointers would |
9 |
be greatly appreciated. |
10 |
|
11 |
/var/log/messages... |
12 |
<< |
13 |
Feb 10 10:38:55 myhost postfix/smtpd[2513]: smtpd_sasl_initialize: SASL |
14 |
config file is smtpd.conf |
15 |
Feb 10 10:38:55 myhost postfix/smtpd[2513]: sql_select option missing |
16 |
Feb 10 10:38:55 myhost postfix/smtpd[2513]: auxpropfunc error no mechanism |
17 |
available |
18 |
Feb 10 10:38:55 myhost postfix/smtpd[2513]: _sasl_plugin_load failed on |
19 |
sasl_auxprop_plug_init for plugin: sql |
20 |
Feb 10 10:38:55 myhost postfix/smtpd[2513]: initializing the server-side |
21 |
TLS engine |
22 |
>> |
23 |
<< |
24 |
Feb 10 11:46:01 myhost postfix/smtpd[2869]: >>> START Recipient address |
25 |
RESTRICTIONS <<< |
26 |
Feb 10 11:46:01 myhost postfix/smtpd[2869]: generic_checks: |
27 |
name=permit_sasl_authenticated |
28 |
Feb 10 11:46:01 myhost postfix/smtpd[2869]: generic_checks: |
29 |
name=permit_sasl_authenticated status=0 |
30 |
Feb 10 11:46:01 myhost postfix/smtpd[2869]: generic_checks: name=reject |
31 |
status=2 |
32 |
Feb 10 11:46:01 myhost postfix/smtpd[2869]: > unknown[216.xxx.xxx.xx]: 554 |
33 |
<user@×××××××××××××××××××.com>: Recipient address rejected: Access denied |
34 |
>> |
35 |
|
36 |
#/etc/sasl2/smtpd.conf |
37 |
mech_list: PLAIN LOGIN |
38 |
pwcheck_method: saslauthd |
39 |
|
40 |
#/etc/courier/authlib/authdaemonrc |
41 |
authmodulelist="authmysql authpam" |
42 |
authmodulelistorig="authuserdb authpam authshadow authmysql authcustom |
43 |
authpipe" |
44 |
|
45 |
#/etc/courier/authlib/authmysqlrc |
46 |
MYSQL_SERVER localhost |
47 |
MYSQL_USERNAME xxxxxx |
48 |
MYSQL_PASSWORD xxxxxxx |
49 |
MYSQL_PORT 0 |
50 |
MYSQL_OPT 0 |
51 |
MYSQL_DATABASE mailsql |
52 |
MYSQL_USER_TABLE users |
53 |
MYSQL_CLEAR_PWFIELD clear |
54 |
MYSQL_UID_FIELD uid |
55 |
MYSQL_GID_FIELD gid |
56 |
MYSQL_LOGIN_FIELD email |
57 |
MYSQL_HOME_FIELD homedir |
58 |
MYSQL_NAME_FIELD name |
59 |
MYSQL_MAILDIR_FIELD maildir |
60 |
|
61 |
#/etc/postfix/main.cf (significant bits) |
62 |
smtpd_sasl_auth_enable = yes |
63 |
smtpd_sasl2_auth_enable = yes |
64 |
smtpd_sasl_security_options = noanonymous |
65 |
broken_sasl_auth_clients = yes |
66 |
smtpd_sasl_local_domain = |
67 |
|
68 |
smtpd_recipient_restrictions = permit_sasl_authenticated, |
69 |
permit_mynetworks, reject |
70 |
smtp_tls_note_starttls_offer = yes |
71 |
smtpd_use_tls = yes |
72 |
#smtpd_tls_auth_only = yes |
73 |
smtpd_tls_key_file = /etc/postfix/newreq.pem |
74 |
smtpd_tls_cert_file = /etc/postfix/newcert.pem |
75 |
smtpd_tls_CAfile = /etc/postfix/cacert.pem |
76 |
smtpd_tls_loglevel = 3 |
77 |
smtpd_tls_received_header = yes |
78 |
smtpd_tls_session_cache_timeout = 3600s |
79 |
tls_random_source = dev:/dev/urandom |
80 |
|
81 |
|
82 |
-- |
83 |
gentoo-user@g.o mailing list |