On 10/13/2015 10:37 PM, Viktor Dukhovni wrote:
Ask questions that are as specific as possible, non-specific pleas
for help will often not get good (or perhaps any) answers. Avoid
pastbins. Follow the instructions at
http://www.postfix.org/DEBUG_README.html#mail
OK. I have an authentication problem.
Oct 14 05:55:32 mail postfix/smtpd[32192]: xsasl_cyrus_server_create: SASL
service=smtp, realm=mail.cibolo.us
Oct 14 05:55:32 mail postfix/smtpd[32192]: name_mask: noanonymous
Oct 14 05:55:32 mail postfix/smtpd[32192]: xsasl_cyrus_server_first:
sasl_method LOGIN
Oct 14 05:55:32 mail postfix/smtpd[32192]: xsasl_cyrus_server_auth_response:
uncoded server challenge: Username:
Oct 14 05:55:32 mail postfix/smtpd[32192]: >
65-36-82-240.dyn.grandenetworks.net[65.36.82.240]: 334 AAAAA5AAAA6
.
.
.
Oct 14 05:55:32 mail postfix/smtpd[32192]: <
65-36-82-240.dyn.grandenetworks.net[65.36.82.240]: AAAAbkBjaWAAAA8uY29t
Oct 14 05:55:32 mail postfix/smtpd[32192]: xsasl_cyrus_server_next: decoded
response: j...@cibolo.com
Oct 14 05:55:32 mail postfix/smtpd[32192]: xsasl_cyrus_server_auth_response:
uncoded server challenge: Password:
and that is trouble. I sent from j...@spaceshipsupply.com so that should have
been the username.
How would that become incorrect?
I am using postfix versions:
postfix 2.9.3-2.1~bpo60+1
postfix-cdb 2.9.3-2.1~bpo60+1
postfix-mysql 2.9.3-2.1~bpo60+1
libsasl2-2 2.1.23.dfsg1-7
libsasl2-modules-sql 2.1.23.dfsg1-7
sasl2-bin 2.1.23.dfsg1-7
===============master.cf============================
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
# ==========================================================================
smtp inet n - n - 9 smtpd -v
submission inet n - - - - smtpd
-o smtpd_etrn_restrictions=reject
-o smtpd_client_restrictions=permit_sasl_authenticated,reject
smtps inet n - n - - smtpd
-o syslog_name=postfix/smtps
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
-o smtpd_client_restrictions=permit_sasl_authenticated,reject
-o milter_macro_daemon_name=ORIGINATING
submission inet n - - - - smtpd
-o smtpd_etrn_restrictions=reject
-o smtpd_enforce_tls=yes
-o smtpd_sasl_auth_enable=yes
#628 inet n - - - - qmqpd
pickup fifo n - - 60 1 pickup
cleanup unix n - - - 0 cleanup
qmgr fifo n - - 300 1 qmgr
#qmgr fifo n - - 300 1 oqmgr
tlsmgr unix - - - 1000? 1 tlsmgr
rewrite unix - - - - - trivial-rewrite
bounce unix - - - - 0 bounce
defer unix - - - - 0 bounce
trace unix - - - - 0 bounce
verify unix - - - - 1 verify
flush unix n - - 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - - - - smtp
# When relaying mail as backup MX, disable fallback_relay to avoid MX loops
relay unix - - - - - smtp
# -o fallback_relay=
===============master.cf============================
===============postconf -n ============================
alias_database = cdb:/etc/aliases
alias_maps = cdb:/etc/aliases, hash:/var/lib/mailman/data/aliases
append_dot_mydomain = no
biff = no
bounce_queue_lifetime = 2d
broken_sasl_auth_clients = yes
config_directory = /etc/postfix
default_destination_concurrency_limit = 3
default_process_limit = 40
delay_warning_time = 1h
mailbox_size_limit = 80000000
maximal_queue_lifetime = 3d
message_size_limit = 30720000
minimal_backoff_time = 2500
mydestination = localhost localhost.cibolo.us AAAAAAAA.org mail.cibolo.us
lists.cibolo.us cibolo.us
mydomain = cibolo.us
myhostname = mail.cibolo.us
mynetworks = 66.221.1.97 127.0.0.0/8
myorigin = /etc/mailname
notify_classes = resource, software
recipient_delimiter = +
relayhost =
smtp_tls_note_starttls_offer = yes
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
smtpd_client_restrictions = permit_sasl_authenticated, reject_rbl_client new.spam.dnsbl, reject_rbl_client recent.spam.dnsbl,
reject_rbl_client truncate.gbudb.net, reject_rbl_client cbl.abuseat.org, reject_rbl_client sbl.spamhaus.org, permit
smtpd_error_sleep_time = 2
smtpd_hard_error_limit = 18
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks, check_helo_access cdb:/etc/postfix/helo_access, reject_non_fqdn_hostname,
reject_invalid_hostname, permit
smtpd_recipient_restrictions = reject_unauth_pipelining, reject_non_fqdn_recipient, reject_unknown_recipient_domain,
permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination, check_sender_access cdb:/etc/postfix/sender_access,
check_recipient_access cdb:/etc/postfix/recipient_access, check_helo_access cdb:/etc/postfix/helo_access,
reject_unknown_sender_domain, reject_non_fqdn_recipient, check_client_access cdb:/etc/postfix/access_client_ipaddr_checks, permit
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain = mail.cibolo.us
smtpd_sasl_security_options = noanonymous
smtpd_sender_restrictions = permit_sasl_authenticated, permit_mynetworks,
reject_non_fqdn_sender, reject_unknown_sender_domain, permit
smtpd_soft_error_limit = 6
smtpd_tls_CAfile = /etc/ssl/certs/cacert.org.pem
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/ssl/certs/mail.cibolo.us.pem
smtpd_tls_key_file = /etc/ssl/private/mail.cibolo.us_privatekey.pem
smtpd_tls_loglevel = 4
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
virtual_alias_maps = mysql:/etc/postfix/mysql_virtual_alias_maps.cf,
hash:/var/lib/mailman/data/virtual-mailman
virtual_gid_maps = static:2000
virtual_mailbox_base = /var/mail/vhosts
virtual_mailbox_domains = mysql:/etc/postfix/mysql_virtual_domains_maps.cf
virtual_mailbox_limit = 51200000
virtual_mailbox_maps = mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_minimum_uid = 1999
virtual_transport = virtual
virtual_uid_maps = static:2000
