Re: [gentoo-user] Re: basic trouble with sendmail config - gentoo-user

From:	John Covici <covici@××××××××××.com>
To:	gentoo-user@l.g.o
Subject:	Re: [gentoo-user] Re: basic trouble with sendmail config
Date:	Tue, 06 Dec 2016 06:23:22
Message-Id:	`m3h96ha84v.wl-covici@ccs.covici.com`
In Reply to:	[gentoo-user] Re: basic trouble with sendmail config by Harry Putnam

1

On Mon, 05 Dec 2016 22:26:33 -0500,

2

Harry Putnam wrote:

3

>

4

> John Covici <covici@××××××××××.com> writes:

5

>

6

> > On Sun, 04 Dec 2016 21:23:34 -0500,

7

> > Harry Putnam wrote:

8

> >>

9

> >> Volker Armin Hemmann <volkerarmin@××××××××××.com> writes:

10

> >>

11

> >> > Am 04.12.2016 um 20:09 schrieb Harry Putnam:

12

> >> >

13

> >> > is there a good reason you chose sendmail over postfix? Do you hate

14

> >> > yourself? You are a masochist?

15

> >> >

16

> >> > I found sendmail the worst piece of software I ever had to deal with.

17

> >> > Windows XP user&rights management in a mixed environment with shares is

18

> >> > delightful, writing bind config files or XFree86 configs by hand was

19

> >> > nice, easy and a joy compared to sendmail.

20

> >>

21

> >> All the above.  If you are really into pain... where pulled

22

> >> fingernails are the lowest starter level ... sendmail is something

23

> >> I'd only dreamed about .... till now.

24

> >>

25

> >> OK, is there really nobody here that uses sendmail?

26

> >>

27

> >> I'm pretty sure the kind of immediate and complete failure I'm seeing

28

> >> is something horribly missconfigured and might not be that much to

29

> >> fix. If I could understand what is causing the fuss.

30

> >

31

> > I use it all the time with no problems.  Did you do the -X or increase

32

> > the loglevel?

33

>

34

> I increaded log level.. still researching about -X.

35

>

36

>   define(`confLOG_LEVEL', `14')dnl

37

>

38

> Now in sendmail.mc and the m4'ed product sendmail.cf

39

>

40

> First off, I went to sendmail site downloaded the latest and compiled

41

> from scratch. Now some of the advice in the README's about compiling

42

> and m4 procedure actually work since stuff is in place where sendmail

43

> expects it.  The gentoo install lacks some of the expected files and

44

> tools. And has things in different places than un-touched sources

45

> expect.

46

>

47

> It appears my choice of smtp SMART HOST (smtp.gmail.com) may be

48

> requiring STARTTLS I'm not sure how that is supposed to work my

49

> googling seems to show a complicated process of creating certs etc etc

50

>

51

> Anyone know how that is done for a linux box.

52

>

53

> latest SMTP conversation and log output, followed by sendmail.mc:

54

> -------       -------       ---=---       -------       -------

55

>   SMTP output

56

> -------       -------       ---=---       -------       -------

57

>

58

> harry > tmail hputnam3@×××××.com

59

> sending like this:

60

> mailx -v -s "TEST 161205_221704 g0" hputnam3@×××××.com < /tmp/msg-161205_221704

61

> hputnam3@×××××.com... Connecting to [127.0.0.1] via relay...

62

> 220 g0.local.lan ESMTP Sendmail 8.15.2/8.15.2; Mon, 5 Dec 2016 22:17:12 -0500

63

> >>> EHLO g0.local.lan

64

> 250-g0.local.lan Hello g0.local.lan [127.0.0.1], pleased to meet you

65

> 250-ENHANCEDSTATUSCODES

66

> 250-PIPELINING

67

> 250-EXPN

68

> 250-VERB

69

> 250-8BITMIME

70

> 250-SIZE

71

> 250-DSN

72

> 250-ETRN

73

> 250-DELIVERBY

74

> 250 HELP

75

> >>> VERB

76

> 250 2.0.0 Verbose mode

77

> >>> MAIL From:<harry@××××××××.lan> SIZE=6970

78

> 250 2.1.0 <harry@××××××××.lan>... Sender ok

79

> >>> RCPT To:<hputnam3@×××××.com>

80

> >>> DATA

81

> 250 2.1.5 <hputnam3@×××××.com>... Recipient ok

82

> 354 Enter mail, end with "." on a line by itself

83

> >>> .

84

> 050 <hputnam3@×××××.com>... Connecting to gmail-smtp-msa.l.google.com. port 587 via relay...

85

> 050 220 smtp.gmail.com ESMTP m136sm7913890ywd.19 - gsmtp

86

> 050 >>> EHLO g0.local.lan

87

> 050 250-smtp.gmail.com at your service, [76.97.132.53]

88

> 050 250-SIZE 35882577

89

> 050 250-8BITMIME

90

> 050 250-STARTTLS

91

> 050 250-ENHANCEDSTATUSCODES

92

> 050 250-PIPELINING

93

> 050 250-CHUNKING

94

> 050 250 SMTPUTF8

95

> 050 >>> MAIL From:<harry@×××××××.com> SIZE=7234

96

> 050 530 5.7.0 Must issue a STARTTLS command first. m136sm7913890ywd.19 - gsmtp

97

> 050 <harry@××××××××.lan>... Connecting to local...

98

> 250 2.0.0 uB63HCsI003822 Message accepted for delivery

99

> hputnam3@×××××.com... Sent (uB63HCsI003822 Message accepted for delivery)

100

> Closing connection to [127.0.0.1]

101

> >>> QUIT

102

> 221 2.0.0 g0.local.lan closing connection

103

>

104

> -------       -------       ---=---       -------       -------

105

> /var/log/mail.log output (formatted for email):

106

> -------       -------       ---=---       -------       -------

107

>

108

> Dec  5 22:17:12 g0 sendmail[3821]: uB63H7Ew003821: from=harry,

109

> size=6970, class=0, nrcpts=1,

110

> msgid=<201612060317.uB63H7Ew003821@××××××××.lan>,

111

> relay=harry@localhost

112

>

113

> Dec 5 22:17:12 g0 sm-mta[3822]: NOQUEUE: connect from g0.local.lan

114

> [127.0.0.1]

115

>

116

> Dec 5 22:17:12 g0 sm-mta[3822]: uB63HCsI003822: Milter: no active

117

> filter

118

>

119

> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsI003822:

120

> from=<harry@××××××××.lan>, size=7234, class=0, nrcpts=1,

121

> msgid=<201612060317.uB63H7Ew003821@××××××××.lan>, proto=ESMTP,

122

> daemon=MTA-v4, relay=g0.local.lan [127.0.0.1]

123

>

124

> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsI003822: SMTP outgoing connect

125

> on g0.local.lan

126

>

127

> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsI003822:

128

> to=<hputnam3@×××××.com>, ctladdr=<harry@××××××××.lan> (1000/1050),

129

> delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=37234,

130

> relay=gmail-smtp-msa.l.google.com. [74.125.21.109], dsn=5.0.0,

131

> stat=Service unavailable

132

>

133

> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsI003822: uB63HCsJ003822: DSN:

134

> Service unavailable

135

>

136

> Dec 5 22:17:13 g0 sm-mta[3823]: uB63HCsJ003822: Warning: program

137

> /usr/bin/procmail unsafe: No such file or directory

138

>

139

> Dec 5 22:17:13 g0 sm-mta[3823]: uB63HCsJ003822: SYSERR(root): Cannot

140

> exec /usr/bin/procmail: No such file or directory

141

>

142

> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsJ003822:

143

> to=<harry@××××××××.lan>, delay=00:00:00, xdelay=00:00:00,

144

> mailer=local, pri=38258, dsn=4.0.0, stat=Operating system error

145

>

146

> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsI003822: done; delay=00:00:00,

147

> ntries=1

148

>

149

> Dec 5 22:17:13 g0 sendmail[3821]: uB63H7Ew003821:

150

> to=hputnam3@×××××.com, ctladdr=harry (1000/1050), delay=00:00:06,

151

> xdelay=00:00:01, mailer=relay, pri=36970, relay=[127.0.0.1]

152

> [127.0.0.1], dsn=2.0.0, stat=Sent (uB63HCsI003822 Message accepted for

153

> delivery)

154

>

155

> -------       -------       ---=---       -------       -------

156

> sendmail.mc

157

> -------       -------       ---=---       -------       -------

158

>

159

>   divert(-1)dnl

160

>   divert(0)dnl

161

>   include(`/usr/local/src/sendmail-8.15.2/cf/m4/cf.m4')dnl

162

>   VERSIONID(`$Id: sendmail.mc,v 1.20 2016/12/04 16:17:08 g0 Exp $')

163

>   OSTYPE(`linux')dnl

164

>   DOMAIN(`generic')dnl

165

>   define(`confLOG_LEVEL', `14')dnl

166

>   define(`PROCMAIL_MAILER_PATH',`/usr/bin/procmail')dnl

167

>   define(`confAUTH_MECHANISMS',`LOGIN PLAIN')dnl

168

>   FEATURE(`access_db',`hash -T<TMPF> /etc/mail/access.db')dnl

169

>   FEATURE(`no_default_msa')dnl

170

>   DAEMON_OPTIONS(`Family=inet,  Name=MTA-v4, Port=smtp')dnl

171

>   DAEMON_OPTIONS(`Family=inet,  Name=MSP-v4, Port=submission, M=Ea')dnl

172

>   define(`confCONNECTION_RATE_THROTTLE', `15')dnl

173

>   define(`confCONNECTION_RATE_WINDOW_SIZE',`10m')dnl

174

>   FEATURE(`greet_pause', `1000')dnl 1 seconds

175

>   FEATURE(`delay_checks', `friend', `n')dnl

176

>   FEATURE(`conncontrol', `nodelay', `terminate')dnl

177

>   FEATURE(`ratecontrol', `nodelay', `terminate')dnl

178

>   FEATURE(`always_add_domain')dnl

179

>   MASQUERADE_AS(`newsguy.com')dnl

180

>   FEATURE(`allmasquerade')dnl

181

>   FEATURE(`masquerade_envelope')dnl

182

>   FEATURE(`local_no_masquerade')dnl

183

>   FEATURE(`smrsh')dnl

184

>   MAILER_DEFINITIONS

185

>   define(`SMART_HOST',`[smtp.gmail.com]')dnl

186

>   define(`RELAY_MAILER_ARGS', `TCP $h 587')dnl

187

>   define(`ESMTP_MAILER_ARGS', `TCP $h 587')dnl

188

>   FEATURE(`authinfo', `hash /etc/mail/authinfo')dnl

189

>   MAILER(`local')dnl

190

>   MAILER(procmail)dnl

191

>   MAILER(`smtp')dnl

192

193

Well, you have several issues, looks like procmail executable does not

194

have correct permissions, should be

195

-rwsr-s--x 1 root root

196

or at least this is the way I have it.

197

198

If you need to send out on port 587, you need to enable starttls by

199

generating a cert, or getting one from somewhere, defining the

200

mechanisms and other things.  I think once you get that done things

201

will work, or you will be able to figure it out easily.

202

203

Hope this helps.

204

205

--

206

Your life is like a penny.  You're going to lose it.  The question is:

207

How do

208

you spend it?

209

210

         John Covici

211

         covici@××××××××××.com

Gentoo Archives: gentoo-user

Replies

1	On Mon, 05 Dec 2016 22:26:33 -0500,
2	Harry Putnam wrote:
3	>
4	> John Covici <covici@××××××××××.com> writes:
5	>
6	> > On Sun, 04 Dec 2016 21:23:34 -0500,
7	> > Harry Putnam wrote:
8	> >>
9	> >> Volker Armin Hemmann <volkerarmin@××××××××××.com> writes:
10	> >>
11	> >> > Am 04.12.2016 um 20:09 schrieb Harry Putnam:
12	> >> >
13	> >> > is there a good reason you chose sendmail over postfix? Do you hate
14	> >> > yourself? You are a masochist?
15	> >> >
16	> >> > I found sendmail the worst piece of software I ever had to deal with.
17	> >> > Windows XP user&rights management in a mixed environment with shares is
18	> >> > delightful, writing bind config files or XFree86 configs by hand was
19	> >> > nice, easy and a joy compared to sendmail.
20	> >>
21	> >> All the above. If you are really into pain... where pulled
22	> >> fingernails are the lowest starter level ... sendmail is something
23	> >> I'd only dreamed about .... till now.
24	> >>
25	> >> OK, is there really nobody here that uses sendmail?
26	> >>
27	> >> I'm pretty sure the kind of immediate and complete failure I'm seeing
28	> >> is something horribly missconfigured and might not be that much to
29	> >> fix. If I could understand what is causing the fuss.
30	> >
31	> > I use it all the time with no problems. Did you do the -X or increase
32	> > the loglevel?
33	>
34	> I increaded log level.. still researching about -X.
35	>
36	> define(`confLOG_LEVEL', `14')dnl
37	>
38	> Now in sendmail.mc and the m4'ed product sendmail.cf
39	>
40	> First off, I went to sendmail site downloaded the latest and compiled
41	> from scratch. Now some of the advice in the README's about compiling
42	> and m4 procedure actually work since stuff is in place where sendmail
43	> expects it. The gentoo install lacks some of the expected files and
44	> tools. And has things in different places than un-touched sources
45	> expect.
46	>
47	> It appears my choice of smtp SMART HOST (smtp.gmail.com) may be
48	> requiring STARTTLS I'm not sure how that is supposed to work my
49	> googling seems to show a complicated process of creating certs etc etc
50	>
51	> Anyone know how that is done for a linux box.
52	>
53	> latest SMTP conversation and log output, followed by sendmail.mc:
54	> ------- ------- ---=--- ------- -------
55	> SMTP output
56	> ------- ------- ---=--- ------- -------
57	>
58	> harry > tmail hputnam3@×××××.com
59	> sending like this:
60	> mailx -v -s "TEST 161205_221704 g0" hputnam3@×××××.com < /tmp/msg-161205_221704
61	> hputnam3@×××××.com... Connecting to [127.0.0.1] via relay...
62	> 220 g0.local.lan ESMTP Sendmail 8.15.2/8.15.2; Mon, 5 Dec 2016 22:17:12 -0500
63	> >>> EHLO g0.local.lan
64	> 250-g0.local.lan Hello g0.local.lan [127.0.0.1], pleased to meet you
65	> 250-ENHANCEDSTATUSCODES
66	> 250-PIPELINING
67	> 250-EXPN
68	> 250-VERB
69	> 250-8BITMIME
70	> 250-SIZE
71	> 250-DSN
72	> 250-ETRN
73	> 250-DELIVERBY
74	> 250 HELP
75	> >>> VERB
76	> 250 2.0.0 Verbose mode
77	> >>> MAIL From:<harry@××××××××.lan> SIZE=6970
78	> 250 2.1.0 <harry@××××××××.lan>... Sender ok
79	> >>> RCPT To:<hputnam3@×××××.com>
80	> >>> DATA
81	> 250 2.1.5 <hputnam3@×××××.com>... Recipient ok
82	> 354 Enter mail, end with "." on a line by itself
83	> >>> .
84	> 050 <hputnam3@×××××.com>... Connecting to gmail-smtp-msa.l.google.com. port 587 via relay...
85	> 050 220 smtp.gmail.com ESMTP m136sm7913890ywd.19 - gsmtp
86	> 050 >>> EHLO g0.local.lan
87	> 050 250-smtp.gmail.com at your service, [76.97.132.53]
88	> 050 250-SIZE 35882577
89	> 050 250-8BITMIME
90	> 050 250-STARTTLS
91	> 050 250-ENHANCEDSTATUSCODES
92	> 050 250-PIPELINING
93	> 050 250-CHUNKING
94	> 050 250 SMTPUTF8
95	> 050 >>> MAIL From:<harry@×××××××.com> SIZE=7234
96	> 050 530 5.7.0 Must issue a STARTTLS command first. m136sm7913890ywd.19 - gsmtp
97	> 050 <harry@××××××××.lan>... Connecting to local...
98	> 250 2.0.0 uB63HCsI003822 Message accepted for delivery
99	> hputnam3@×××××.com... Sent (uB63HCsI003822 Message accepted for delivery)
100	> Closing connection to [127.0.0.1]
101	> >>> QUIT
102	> 221 2.0.0 g0.local.lan closing connection
103	>
104	> ------- ------- ---=--- ------- -------
105	> /var/log/mail.log output (formatted for email):
106	> ------- ------- ---=--- ------- -------
107	>
108	> Dec 5 22:17:12 g0 sendmail[3821]: uB63H7Ew003821: from=harry,
109	> size=6970, class=0, nrcpts=1,
110	> msgid=<201612060317.uB63H7Ew003821@××××××××.lan>,
111	> relay=harry@localhost
112	>
113	> Dec 5 22:17:12 g0 sm-mta[3822]: NOQUEUE: connect from g0.local.lan
114	> [127.0.0.1]
115	>
116	> Dec 5 22:17:12 g0 sm-mta[3822]: uB63HCsI003822: Milter: no active
117	> filter
118	>
119	> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsI003822:
120	> from=<harry@××××××××.lan>, size=7234, class=0, nrcpts=1,
121	> msgid=<201612060317.uB63H7Ew003821@××××××××.lan>, proto=ESMTP,
122	> daemon=MTA-v4, relay=g0.local.lan [127.0.0.1]
123	>
124	> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsI003822: SMTP outgoing connect
125	> on g0.local.lan
126	>
127	> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsI003822:
128	> to=<hputnam3@×××××.com>, ctladdr=<harry@××××××××.lan> (1000/1050),
129	> delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=37234,
130	> relay=gmail-smtp-msa.l.google.com. [74.125.21.109], dsn=5.0.0,
131	> stat=Service unavailable
132	>
133	> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsI003822: uB63HCsJ003822: DSN:
134	> Service unavailable
135	>
136	> Dec 5 22:17:13 g0 sm-mta[3823]: uB63HCsJ003822: Warning: program
137	> /usr/bin/procmail unsafe: No such file or directory
138	>
139	> Dec 5 22:17:13 g0 sm-mta[3823]: uB63HCsJ003822: SYSERR(root): Cannot
140	> exec /usr/bin/procmail: No such file or directory
141	>
142	> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsJ003822:
143	> to=<harry@××××××××.lan>, delay=00:00:00, xdelay=00:00:00,
144	> mailer=local, pri=38258, dsn=4.0.0, stat=Operating system error
145	>
146	> Dec 5 22:17:13 g0 sm-mta[3822]: uB63HCsI003822: done; delay=00:00:00,
147	> ntries=1
148	>
149	> Dec 5 22:17:13 g0 sendmail[3821]: uB63H7Ew003821:
150	> to=hputnam3@×××××.com, ctladdr=harry (1000/1050), delay=00:00:06,
151	> xdelay=00:00:01, mailer=relay, pri=36970, relay=[127.0.0.1]
152	> [127.0.0.1], dsn=2.0.0, stat=Sent (uB63HCsI003822 Message accepted for
153	> delivery)
154	>
155	> ------- ------- ---=--- ------- -------
156	> sendmail.mc
157	> ------- ------- ---=--- ------- -------
158	>
159	> divert(-1)dnl
160	> divert(0)dnl
161	> include(`/usr/local/src/sendmail-8.15.2/cf/m4/cf.m4')dnl
162	> VERSIONID(`$Id: sendmail.mc,v 1.20 2016/12/04 16:17:08 g0 Exp $')
163	> OSTYPE(`linux')dnl
164	> DOMAIN(`generic')dnl
165	> define(`confLOG_LEVEL', `14')dnl
166	> define(`PROCMAIL_MAILER_PATH',`/usr/bin/procmail')dnl
167	> define(`confAUTH_MECHANISMS',`LOGIN PLAIN')dnl
168	> FEATURE(`access_db',`hash -T<TMPF> /etc/mail/access.db')dnl
169	> FEATURE(`no_default_msa')dnl
170	> DAEMON_OPTIONS(`Family=inet, Name=MTA-v4, Port=smtp')dnl
171	> DAEMON_OPTIONS(`Family=inet, Name=MSP-v4, Port=submission, M=Ea')dnl
172	> define(`confCONNECTION_RATE_THROTTLE', `15')dnl
173	> define(`confCONNECTION_RATE_WINDOW_SIZE',`10m')dnl
174	> FEATURE(`greet_pause', `1000')dnl 1 seconds
175	> FEATURE(`delay_checks', `friend', `n')dnl
176	> FEATURE(`conncontrol', `nodelay', `terminate')dnl
177	> FEATURE(`ratecontrol', `nodelay', `terminate')dnl
178	> FEATURE(`always_add_domain')dnl
179	> MASQUERADE_AS(`newsguy.com')dnl
180	> FEATURE(`allmasquerade')dnl
181	> FEATURE(`masquerade_envelope')dnl
182	> FEATURE(`local_no_masquerade')dnl
183	> FEATURE(`smrsh')dnl
184	> MAILER_DEFINITIONS
185	> define(`SMART_HOST',`[smtp.gmail.com]')dnl
186	> define(`RELAY_MAILER_ARGS', `TCP $h 587')dnl
187	> define(`ESMTP_MAILER_ARGS', `TCP $h 587')dnl
188	> FEATURE(`authinfo', `hash /etc/mail/authinfo')dnl
189	> MAILER(`local')dnl
190	> MAILER(procmail)dnl
191	> MAILER(`smtp')dnl
192
193	Well, you have several issues, looks like procmail executable does not
194	have correct permissions, should be
195	-rwsr-s--x 1 root root
196	or at least this is the way I have it.
197
198	If you need to send out on port 587, you need to enable starttls by
199	generating a cert, or getting one from somewhere, defining the
200	mechanisms and other things. I think once you get that done things
201	will work, or you will be able to figure it out easily.
202
203	Hope this helps.
204
205	--
206	Your life is like a penny. You're going to lose it. The question is:
207	How do
208	you spend it?
209
210	John Covici
211	covici@××××××××××.com