>>> listen on eth0 inet4 port 587 smtps hostname mail mask-source tag lan >>> >>> >>> Either you trimmed this config line or you're missing "auth". Otherwise I >>> suspect you're running without authentication. >> >> Uhum well, is there no PAM authentication? I was under the impression >> that it gets PAM authenticated. Such is being compounded when using the >> Thunderbird mail client and having the TB SMTP server -> authentication >> method set to encrypted password which works without a hitch - no error >> in Thunderbird and the message gets sent. >> >> Commonly TB displays an error if the chosen authentication method is not >> available/supported on the smtp server but apparently not here. >> However, now that you mentioned it I set the TB authentication method to >> OAuth2 and again no error in TB and the message went. >> >> The spread is rather thin when searching the net for [ opensmtpd pam ] >> and basically boils down to >> https://github.com/OpenSMTPD/OpenSMTPD/issues/712 >> >> So, the package was compiled with: >> >> ./configure \ >> --prefix=/usr \ >> --sysconfdir=/etc/smtpd \ >> --sbindir=/usr/bin \ >> --libexecdir=/usr/lib/smtpd \ >> --with-path-mbox=/var/spool/mail \ >> --with-path-empty=/var/empty \ >> --with-path-socket=/run \ >> --with-path-CAfile=/etc/ssl/certs/ca-certificates.crt \ >> --with-user-smtpd=smtpd \ >> --with-user-queue=smtpq \ >> --with-group-queue=smtpq \ >> --with-auth-pam \ >> --with-libssl='/usr/lib/openssl-1.0' \ >> --with-cflags='-I/usr/include/openssl-1.0' >> >> but I do not understand the remainder instruction -> "and provide the >> auth service name as parameter then configure the PAM side on your system"? >> >> "and provide the auth service name as parameter" - where and when is >> that supposed to happen? >> At compile ./config? Is it supposed to read like [ --with-auth-pam=smtpd >> \ ] as opposed to just [ --with-auth-pam \ ]? >> What if the [ auth service name ] was omitted -> does [ >> --with-user-smtpd=smtpd ] suffice? >> >> "then configure the PAM side on your system" -> supposed that would be >> something like [ /etc/pam.d/spmtd ] reading ?: >> >> #%PAM-1.0 >> >> auth required pam_unix.so nullok >> account required pam_unix.so >> >> > I know very little about Pam, so I'm not sure. I'd start a new thread with > Pam in the subject line and maybe someone who knows can help out.
Having sorted PAM SMTPAUTH the user/client 172.25.120.2 is now treated as server's local user and filter rules using from local are matched. Thence, amended [ accept from source 172.25.120.2 for any relay via smtp://127.0.0.1:10027 ] to [ accept from source 172.25.120.2 for any relay ] and DKIM is working now for that client as well. Appreciate the feedback/assistance provided here. -- You received this mail because you are subscribed to misc@opensmtpd.org To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org
