Re: [Dbmail] Postfix 2.0 + DBMail + SMTP AUTH

Mon, 1 Mar 2004 10:03:43 +0100 (CET) 


Chris Nolan wrote:


And SMTP AUTH with users in dbmail only, will work if you use pam-mysql. 
Of course if 2.0 will do ldap that will work even better performance wise.



   


Admittedly, I want to get as far away from SASL as I can. I've used
Cyrus stuff before and although it's quite good, the lack of
documentation is quite a concern. For this reason, I'm considering
moving to qmail (and using it's checkpasswd interface)

 




Situation has somewhat improved in sasl2, but I agree: it too 
cyrus-centric in

it's documentation.


All tutorials and howtos I've read on the subject of using Postfix with
an SQL database have had usernames and email addresses the same. Finding
an example where this isn't the case is proving slightly difficult.

 


Uhm:

dbmail-adduser a lisad '{crypt}cryptedpass'  0 0 [EMAIL PROTECTED]


should do the trick just fine. It's simply a convention some people like 
to use the full
email addres as userid in dbmail. Its usefull for ISPs hosting virtual 
emaildomains.
The userid field is not used for delivery to dbmail through the 
transport table.



Basically, the actual setup at the moment is:

* Every user is a normal UNIX user
* All passwords are stored in /etc/shadow
* All mail stores are boring old mbox spools
* All aliases are in the virtual postfix table
* SMTP auth is done with SASL and pwcheck
* Due to some users, we also have POP-before-SMTP setup

We want to change everything so that:

* No user has a UNIX account
* All authentication happens against the DBMail database

 


so you will need pam-mysql for SASL/SMTP-AUTH.


* All usernames and passwords are the same as they are now (not too hard
to migrate the information)
* Bounces are still handled by the MTA

 


That's tricky: postfix-mysql can do this if you define your virtual 
table as
a mysql table. There have been several threads describing such solutions 
over
the last couple of weeks. Exim4 can do this as well. Dunno about qmail. 
You will
need an interface to mysql from your MTA, or create scripts to dump the 
necessary

information in a flat-file that your MTA can handle.

But you're right: don't use dbmail's bounce feature just yet.




--
 ________________________________________________________________
 Paul Stevens                                         [EMAIL PROTECTED]
 NET FACILITIES GROUP                     GPG/PGP: 1024D/11F8CD31
 The Netherlands_______________________________________www.nfg.nl























					Reply via email to