On Sun, 29 Jun 2014 16:02:05 -0500, Edgar Pettijohn stated:
>
>On 06/29/2014 03:40 PM, li...@rhsoft.net wrote:
>> Am 29.06.2014 22:05, schrieb Edgar Pettijohn:
>>> not sure if it matters but you have smtp_sasl_type defined twice once
>>> with cyrus and once with dovecot
>> says who?
>>
>> smtp != smtpd
>> smtp can only by cyrus and is part of the topic
>> smtpd_sasl_type is for smtpd server
>> smtp_sasl_type is for smtp client
>>
>> smtp_sasl_type = cyrus
>> smtpd_sasl_type = dovecot
>sorry didn't see the "d"
Neither SASL and or Sender Dependent Relay appear to be working. I made some
changes to the main.cf:
authorized_submit_users = !www, static:all
broken_sasl_auth_clients = yes
canonical_maps = hash:/usr/local/etc/postfix/canonical
command_directory = /usr/local/sbin
config_directory = /usr/local/etc/postfix
daemon_directory = /usr/local/libexec/postfix
data_directory = /var/db/postfix
debug_peer_level = 2
debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd
$daemon_directory/$process_name $process_id & sleep 5
delay_warning_time = 12h
disable_vrfy_command = yes
dovecot_destination_recipient_limit = 1
enable_long_queue_ids = yes
html_directory = /usr/local/share/doc/postfix
inet_protocols = ipv4
mail_owner = postfix
mailq_path = /usr/local/bin/mailq
manpage_directory = /usr/local/man
message_size_limit = 26214400
milter_default_action = accept
mydestination =
mydomain = seibercom.net
myhostname = scorpio.seibercom.net
mynetworks_style = subnet
myorigin = $mydomain
newaliases_path = /usr/local/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /usr/local/share/doc/postfix
sample_directory = /usr/local/etc/postfix
sender_dependent_relayhost_maps = hash:/usr/local/etc/postfix/sender_relay
sendmail_path = /usr/local/sbin/sendmail
setgid_group = maildrop
smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/usr/local/etc/postfix/sasl_passwd
smtp_sasl_security_options = noanonymous
smtp_sender_dependent_authentication = yes
smtp_tls_CAfile = /usr/local/etc/postfix/certs/cacert.pem
smtp_tls_CApath = /usr/local/etc/postfix/certs/
smtp_tls_note_starttls_offer = yes
smtp_tls_policy_maps = hash:/usr/local/etc/postfix/tls_policy
smtp_tls_security_level = may
smtp_tls_session_cache_database = btree:/var/db/postfix/smtp_tls_session_cache
smtpd_authorized_verp_clients = $mynetworks
smtpd_client_restrictions = reject_unauth_pipelining permit_sasl_authenticated
reject_unknown_client_hostname
smtpd_milters = unix:/var/run/clamav/clmilter.sock
smtpd_recipient_restrictions = reject_unauth_pipelining
permit_sasl_authenticated permit_mynetworks reject_unknown_recipient_domain
reject_unauth_destination
smtpd_reject_footer = For assistance, please provide the following information
in your problem report: time ($localtime), client ($client_address) and
server ($server_name).
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = yes
smtpd_sasl_local_domain = $myhostname
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous, noplaintext
smtpd_sasl_tls_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_tls_CAfile = /usr/local/etc/postfix/certs/cacert.pem
smtpd_tls_cert_file = /usr/local/etc/postfix/certs/Postfix-cert.pem
smtpd_tls_key_file = /usr/local/etc/postfix/certs/Postfix-key.pem
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
smtpd_tls_session_cache_database = btree:/var/db/postfix/smtpd_tls_session_cache
tls_random_source = dev:/dev/urandom
transport_maps = hash:/usr/local/etc/postfix/transport
unknown_local_recipient_reject_code = 550
virtual_gid_maps = static:1002
virtual_mailbox_base = /var/mail/vmail/seibercom/gerard
virtual_mailbox_domains = seibercom.net
virtual_mailbox_maps = hash:/usr/local/etc/postfix/vmailbox
virtual_minimum_uid = 100
virtual_transport = dovecot
virtual_uid_maps = static:1002
maillog:
Jun 29 17:09:21 scorpio sm-mta[36451]: STARTTLS=server, relay=localhost
[127.0.0.1], version=TLSv1/SSLv3, verify=NO, cipher=DHE-RSA-AES128-SHA,
bits=128/128
Jun 29 17:09:21 scorpio sm-mta[36451]: s5TL9Llc036451:
from=<gerard.seib...@stemnc.org>, size=363, class=0, nrcpts=1,
msgid=<20140629170921.5ffc300b@scorpio>, proto=ESMTP, daemon=Daemon0,
relay=localhost [127.0.0.1]
Jun 29 17:09:22 scorpio sm-mta[36453]: STARTTLS=client,
relay=mta6.am0.yahoodns.net., version=TLSv1/SSLv3, verify=FAIL,
cipher=DHE-RSA-CAMELLIA256-SHA, bits=256/256
Jun 29 17:09:24 scorpio sm-mta[36453]: s5TL9Llc036451: to=<ges...@yahoo.com>,
delay=00:00:03, xdelay=00:00:03, mailer=esmtp, pri=30363,
relay=mta6.am0.yahoodns.net. [66.196.118.37], dsn=2.0.0, stat=Sent (ok dirdel)
This is not being relayed through the proper ISP and there is no SASL being
used.
