| 1 |
After spending 5 mins trying to get SASL working myself... I just emerged |
| 2 |
stunnel and switched to simap/spop3... ;) |
| 3 |
|
| 4 |
On Wed, 5 Oct 2005, Joe Strusz wrote: |
| 5 |
|
| 6 |
> Ive read every forum on the site, and even ventured over the Wiki for even |
| 7 |
> more redundant reading. Ive read the entire postfix handbook, and still have |
| 8 |
> not found an answer to this problem. Its been two weeks now I haven't been |
| 9 |
> able to send mail from outside the network to non local users. |
| 10 |
> |
| 11 |
> Heres my /etc/postfix/main.cf: |
| 12 |
> |
| 13 |
> alias_database = hash:/etc/mail/aliases |
| 14 |
> alias_maps = hash:/etc/mail/aliases |
| 15 |
> biff = no |
| 16 |
> broken_sasl_auth_clients = yes |
| 17 |
> command_directory = /usr/sbin |
| 18 |
> config_directory = /etc/postfix |
| 19 |
> content_filter = smtp-amavis:[127.0.0.1]:10024 |
| 20 |
> daemon_directory = /usr/lib/postfix |
| 21 |
> debug_peer_level = 2 |
| 22 |
> default_destination_concurrency_limit = 2 |
| 23 |
> empty_address_recipient = MAILER-DAEMON |
| 24 |
> home_mailbox = .maildir/ |
| 25 |
> html_directory = no |
| 26 |
> inet_interfaces = all |
| 27 |
> local_destination_concurrency_limit = 2 |
| 28 |
> mail_owner = postfix |
| 29 |
> mailq_path = /usr/bin/mailq |
| 30 |
> manpage_directory = /usr/share/man |
| 31 |
> mydestination = op, op.$mydomain, $mydomain |
| 32 |
> mydomain = mydomain.com |
| 33 |
> myhostname = op.mydomain.com |
| 34 |
> mynetworks = 192.168.1.0/24, 127.0.0.0/8, *.*.*.*(my WAN ip) |
| 35 |
> newaliases_path = /usr/bin/newaliases |
| 36 |
> queue_directory = /var/spool/postfix |
| 37 |
> queue_minfree = 120000000 |
| 38 |
> readme_directory = /usr/share/doc/postfix-2.1.5-r2/readme |
| 39 |
> sample_directory = /etc/postfix |
| 40 |
> sendmail_path = /usr/sbin/sendmail |
| 41 |
> setgid_group = postdrop |
| 42 |
> smtp_use_tls = yes |
| 43 |
> smtpd_data_restrictions = reject_unauth_pipelining |
| 44 |
> smtpd_sasl_auth_enable = yes |
| 45 |
> smtpd_sasl_local_domain = |
| 46 |
> smtpd_sasl_security_options = noanonymous |
| 47 |
> smtpd_tls_CAfile = /etc/ssl/postfix/server.pem |
| 48 |
> smtpd_tls_cert_file = /etc/ssl/postfix/server.crt |
| 49 |
> smtpd_tls_key_file = /etc/ssl/postfix/server.key |
| 50 |
> smtpd_tls_loglevel = 3 |
| 51 |
> smtpd_tls_received_header = yes |
| 52 |
> smtpd_tls_session_cache_timeout = 3600s |
| 53 |
> smtpd_use_tls = yes |
| 54 |
> tls_random_source = dev:/dev/urandom |
| 55 |
> unknown_local_recipient_reject_code = 450 |
| 56 |
> virtual_alias_domains = myvirtual.com |
| 57 |
> virtual_alias_maps = hash:/etc/postfix/virtual |
| 58 |
> |
| 59 |
> |
| 60 |
> And heres /etc/sasl2/smtpd.conf: |
| 61 |
> |
| 62 |
> pwcheck_method: saslauthd |
| 63 |
> mech_list: plain login |
| 64 |
> |
| 65 |
> And heres /etc/conf.d/saslauthd: |
| 66 |
> |
| 67 |
> # $Id: saslauthd.sysconfig,v 1.1 2001/05/02 10:55:48 wiget Exp $ |
| 68 |
> # Authentications mechanism (for list see saslauthd -v) |
| 69 |
> SASL_AUTHMECH=pam |
| 70 |
> |
| 71 |
> |
| 72 |
> # Hostname for remote IMAP server (if rimap auth mech is used) |
| 73 |
> # Ldap configuration file (if ldap auth mech is used) |
| 74 |
> SASL_MECH_OPTIONS= |
| 75 |
> |
| 76 |
> |
| 77 |
> # Extra options (for list see saslauthd -h) |
| 78 |
> SASLAUTHD_OPTS= |
| 79 |
> |
| 80 |
> |
| 81 |
> And last but not least, heres a description of the problem... |
| 82 |
> |
| 83 |
> TLS and everything else works great. However as soon as I check that little |
| 84 |
> box in outlook express that says "my smtp server requires authentication" on |
| 85 |
> the client whom worsk out of the office on home internet lines.. the password |
| 86 |
> box keeps reappearing, and accepting any passwords... i ran the line |
| 87 |
> "saslpasswd2 -c username" to no avail. Same issue. |
| 88 |
> |
| 89 |
> Postfix was compiled with SASL support: |
| 90 |
> |
| 91 |
> [ebuild R ] mail-mta/postfix-2.1.5-r2 -ipv6 -ldap -mailwrapper -mbox |
| 92 |
> +mysql +pam -postgres +sasl (-selinux) +ssl -vda 0 kB |
| 93 |
> |
| 94 |
> And when i telnet to 25 and issue the ehlo command, i do get AUTH PLAIN |
| 95 |
> lines... |
| 96 |
> |
| 97 |
> whats going on? |
| 98 |
> |
| 99 |
> please help |
| 100 |
> |
| 101 |
> im racking my brains. |
| 102 |
> |
| 103 |
> |
| 104 |
> |
| 105 |
> |
| 106 |
> Joe Strusz |
| 107 |
> |
| 108 |
> IT Assistant |
| 109 |
> Oxford Publishing, Inc. |
| 110 |
> 307 West Jackson Avenue |
| 111 |
> Oxford, MS 38655-2154 |
| 112 |
> 800-247-3881 |
| 113 |
> 662-236-5510x40 |
| 114 |
> jstrusz@×××××.com |
| 115 |
> http://www.nightclub.com |
| 116 |
> |
| 117 |
> |
| 118 |
> |
| 119 |
|
| 120 |
-- |
| 121 |
Bryan Whitehead |
| 122 |
Email:driver@×××××××××.net |
| 123 |
-- |
| 124 |
gentoo-user@g.o mailing list |
Archives