[pfx] Re: Authentication question

Thu, 22 Feb 2024 06:36:38 -0800 

On 22.02.24 15:28, michaelof--- via Postfix-users wrote:

Postfix 3.7.3 on OpenSuse Leap 15.5

I've set up my private Postfix for outgoing SMTP traffic with authentication, 
port 587, starttls, password normal.

Works fine for years now (2016 or so) for outgoing email sent via Thunderbird, 
Roundcube Webmail, K9-Mail on Android etc. pp.

Now I want to tell my new Hikvision CCTV NVR to sent event based email via my 
own Postfix.
Created a designated email adress for this, works fine with Email clients 
mentioned above.

NVR's config options are looking pretty usual, have to specify SMTP-server, port, "SSL/TLS" 
true/false, "Authenticate" true/false and user/pw if "Authenticate" is set to true.
But test option simply says "failed".

Looking into my Postfix's server logs, I'm seeing the following log entries for 
a SUCCESFUL (Thunderbird) sent:

2024-02-22T14:00:49.478132+01:00 vserver postfix/submission/smtpd[150293]: connect 
from <SUCCESS: sender-dns-name[IPv6]>
2024-02-22T14:00:50.026993+01:00 vserver postfix/submission/smtpd[150293]: 
066DC4D74DC: client=<SUCCESS: sender-dns-name[IPv6]>, sasl_method=PLAIN, 
sasl_username=c...@tufar.at
2024-02-22T14:00:50.069519+01:00 vserver postfix/cleanup[150298]: 066DC4D74DC: 
message-id=<message-id.....>
2024-02-22T14:00:50.124765+01:00 vserver postfix/qmgr[1644]: 066DC4D74DC: 
from=<sender>, size=810, nrcpt=1 (queue active)
2024-02-22T14:00:50.386658+01:00 vserver postfix/smtp[150299]: 066DC4D74DC: 
to=<recipient>, relay=..., delay=0.39, delays=0.13/0.01/0.1/0.15, dsn=2.0.0, 
status=sent (250 2.0.0 Message accepted.)
2024-02-22T14:00:50.386891+01:00 vserver postfix/qmgr[1644]: 066DC4D74DC: 
removed


and the following log entries for NVR's UNSUCCESFUL sent:
2024-02-22T13:56:15.715392+01:00 vserver postfix/submission/smtpd[150038]: connect 
from <FAILED: sender-dns-name[IPv4]>
2024-02-22T13:56:15.715607+01:00 vserver postfix/submission/smtpd[150038]: improper 
command pipelining after CONNECT from <FAILED: sender-dns-name[IPv4]>: 
\026\003\001\001 
\001\000\001\034\003\003o\365\274\337\000\246\346\341\276\270\237\233\021p\314S\312\371\3149\231\202d\201?\241\332\357\214\330\313\301
 
\255\357\251\234m\024\225\250Yx\344oa\207\342p\354\0261B\347\223m\224Q\td\276n:#\n\000>\023\002\023\003\023\001\300,\3000\000\237\314\251\314\250\314\252\300+\300/
2024-02-22T13:56:15.715853+01:00 vserver postfix/submission/smtpd[150038]: disconnect 
from <FAILED: sender-dns-name[IPv4]> commands=0/0
2024-02-22T13:56:15.740078+01:00 vserver postfix/submission/smtpd[150038]: connect 
from <FAILED: sender-dns-name[IPv4]>
2024-02-22T13:56:15.857410+01:00 vserver postfix/submission/smtpd[150038]: warning: 
<FAILED: sender-dns-name[IPv4]>: SASL LOGIN authentication failed: Invalid 
authentication mechanism
2024-02-22T13:56:15.867110+01:00 vserver postfix/submission/smtpd[150038]: lost 
connection after AUTH from <FAILED: sender-dns-name[IPv4]>
2024-02-22T13:56:15.867404+01:00 vserver postfix/submission/smtpd[150038]: disconnect 
from <FAILED: sender-dns-name[IPv4]> ehlo=2 starttls=1 auth=0/1 commands=3/4

Any hints, would be great, if this might be a firmware bug from NVR, our could 
maybe be solved by changing my SASL etc. config.
this looks like encryption problem. Someone is trying to use port 587 as implicit SSL, instead of explitic (STARTTLS). 
implicit SSL should be used on port 465 (aka smtps/submissions service)

--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
- Have you got anything without Spam in it?
- Well, there's Spam egg sausage and Spam, that's not got much Spam in it.
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org

Reply via email to