1 |
After spending 5 mins trying to get SASL working myself... I just emerged |
2 |
stunnel and switched to simap/spop3... ;) |
3 |
|
4 |
On Wed, 5 Oct 2005, Joe Strusz wrote: |
5 |
|
6 |
> Ive read every forum on the site, and even ventured over the Wiki for even |
7 |
> more redundant reading. Ive read the entire postfix handbook, and still have |
8 |
> not found an answer to this problem. Its been two weeks now I haven't been |
9 |
> able to send mail from outside the network to non local users. |
10 |
> |
11 |
> Heres my /etc/postfix/main.cf: |
12 |
> |
13 |
> alias_database = hash:/etc/mail/aliases |
14 |
> alias_maps = hash:/etc/mail/aliases |
15 |
> biff = no |
16 |
> broken_sasl_auth_clients = yes |
17 |
> command_directory = /usr/sbin |
18 |
> config_directory = /etc/postfix |
19 |
> content_filter = smtp-amavis:[127.0.0.1]:10024 |
20 |
> daemon_directory = /usr/lib/postfix |
21 |
> debug_peer_level = 2 |
22 |
> default_destination_concurrency_limit = 2 |
23 |
> empty_address_recipient = MAILER-DAEMON |
24 |
> home_mailbox = .maildir/ |
25 |
> html_directory = no |
26 |
> inet_interfaces = all |
27 |
> local_destination_concurrency_limit = 2 |
28 |
> mail_owner = postfix |
29 |
> mailq_path = /usr/bin/mailq |
30 |
> manpage_directory = /usr/share/man |
31 |
> mydestination = op, op.$mydomain, $mydomain |
32 |
> mydomain = mydomain.com |
33 |
> myhostname = op.mydomain.com |
34 |
> mynetworks = 192.168.1.0/24, 127.0.0.0/8, *.*.*.*(my WAN ip) |
35 |
> newaliases_path = /usr/bin/newaliases |
36 |
> queue_directory = /var/spool/postfix |
37 |
> queue_minfree = 120000000 |
38 |
> readme_directory = /usr/share/doc/postfix-2.1.5-r2/readme |
39 |
> sample_directory = /etc/postfix |
40 |
> sendmail_path = /usr/sbin/sendmail |
41 |
> setgid_group = postdrop |
42 |
> smtp_use_tls = yes |
43 |
> smtpd_data_restrictions = reject_unauth_pipelining |
44 |
> smtpd_sasl_auth_enable = yes |
45 |
> smtpd_sasl_local_domain = |
46 |
> smtpd_sasl_security_options = noanonymous |
47 |
> smtpd_tls_CAfile = /etc/ssl/postfix/server.pem |
48 |
> smtpd_tls_cert_file = /etc/ssl/postfix/server.crt |
49 |
> smtpd_tls_key_file = /etc/ssl/postfix/server.key |
50 |
> smtpd_tls_loglevel = 3 |
51 |
> smtpd_tls_received_header = yes |
52 |
> smtpd_tls_session_cache_timeout = 3600s |
53 |
> smtpd_use_tls = yes |
54 |
> tls_random_source = dev:/dev/urandom |
55 |
> unknown_local_recipient_reject_code = 450 |
56 |
> virtual_alias_domains = myvirtual.com |
57 |
> virtual_alias_maps = hash:/etc/postfix/virtual |
58 |
> |
59 |
> |
60 |
> And heres /etc/sasl2/smtpd.conf: |
61 |
> |
62 |
> pwcheck_method: saslauthd |
63 |
> mech_list: plain login |
64 |
> |
65 |
> And heres /etc/conf.d/saslauthd: |
66 |
> |
67 |
> # $Id: saslauthd.sysconfig,v 1.1 2001/05/02 10:55:48 wiget Exp $ |
68 |
> # Authentications mechanism (for list see saslauthd -v) |
69 |
> SASL_AUTHMECH=pam |
70 |
> |
71 |
> |
72 |
> # Hostname for remote IMAP server (if rimap auth mech is used) |
73 |
> # Ldap configuration file (if ldap auth mech is used) |
74 |
> SASL_MECH_OPTIONS= |
75 |
> |
76 |
> |
77 |
> # Extra options (for list see saslauthd -h) |
78 |
> SASLAUTHD_OPTS= |
79 |
> |
80 |
> |
81 |
> And last but not least, heres a description of the problem... |
82 |
> |
83 |
> TLS and everything else works great. However as soon as I check that little |
84 |
> box in outlook express that says "my smtp server requires authentication" on |
85 |
> the client whom worsk out of the office on home internet lines.. the password |
86 |
> box keeps reappearing, and accepting any passwords... i ran the line |
87 |
> "saslpasswd2 -c username" to no avail. Same issue. |
88 |
> |
89 |
> Postfix was compiled with SASL support: |
90 |
> |
91 |
> [ebuild R ] mail-mta/postfix-2.1.5-r2 -ipv6 -ldap -mailwrapper -mbox |
92 |
> +mysql +pam -postgres +sasl (-selinux) +ssl -vda 0 kB |
93 |
> |
94 |
> And when i telnet to 25 and issue the ehlo command, i do get AUTH PLAIN |
95 |
> lines... |
96 |
> |
97 |
> whats going on? |
98 |
> |
99 |
> please help |
100 |
> |
101 |
> im racking my brains. |
102 |
> |
103 |
> |
104 |
> |
105 |
> |
106 |
> Joe Strusz |
107 |
> |
108 |
> IT Assistant |
109 |
> Oxford Publishing, Inc. |
110 |
> 307 West Jackson Avenue |
111 |
> Oxford, MS 38655-2154 |
112 |
> 800-247-3881 |
113 |
> 662-236-5510x40 |
114 |
> jstrusz@×××××.com |
115 |
> http://www.nightclub.com |
116 |
> |
117 |
> |
118 |
> |
119 |
|
120 |
-- |
121 |
Bryan Whitehead |
122 |
Email:driver@×××××××××.net |
123 |
-- |
124 |
gentoo-user@g.o mailing list |