I had an earlier question about STARTTLS and SMTP AUTH. I think I have
STARTTLS working now - I used an updated client (Eudora 5.1 instead of 5.0.1)
But I'm still not sure about SMTP AUTH.
If I use recordio in starting up qmail-smtpd, I can follow conversations.
Even if I do not include recordio (and also do not include rblsmtpd), I still
cannot relay against my test server from a foreign IP - I get the
535 auth failure.
As far as a workaround, I know about the
SMTP before POP trick, but I don't want
to have to rely on that trick.
What the heck am I doing wrong?
With DEBUGLEVEL=255 before qmail-smtpd, I see this in the log:
< AUTH plain
> 334 ok. go on.
< AGFyZWsuZHJleWVyAHRyeW1l
init_ldap: control/me: fwp-qmail.fwp.pvt.k12.il.us
init_ldap: control/ldapserver: fwp-ldap.fwp.pvt.k12.il.us
init_ldap: control/ldapbasedn: dc=fwp,dc=pvt,dc=k12,dc=il,dc=us
init_ldap: control/ldapobjectclass:
init_ldap: control/ldaplogin: cn=Manager,dc=fwp,dc=pvt,dc=k12,dc=il,dc=us
alert: init_ldap failed.
> 535 auth failure
For the server, I'm using FreeBSD 4.2-RELEASE, with
qmail-1.03, patched with
qmail-ldap-1.03-20010301.patch.gz and
smtp-auth-20010411.patch
# cat /service/qmail-smtpd/run
#!/bin/sh
QMAILDUID=`id -u qmaild`
NOFILESGID=`id -g qmaild`
MAXSMTPD=`cat /var/qmail/control/concurrencyincoming`
env DEBUGLEVEL=255 \
/usr/local/bin/softlimit -m 20000000 \
/usr/local/bin/tcpserver -v -p \
-x /service/qmail-smtpd/tcp.smtp.cdb \
-c "$MAXSMTPD" \
-u "$QMAILDUID" -g "$NOFILESGID" \
0 smtp \
/usr/local/bin/recordio \
/var/qmail/bin/qmail-smtpd \
/var/qmail/bin/auth_smtp \
/usr/bin/true \
2>&1
# ls -lat /var/qmail/bin/qmail-smtpd /var/qmail/bin/auth_smtp /usr/bin/true
-rwxr-xr-x 1 qmaild qmail 58824 Apr 21 14:24 /var/qmail/bin/auth_smtp
-rwxr-xr-x 1 root qmail 508524 Apr 21 14:24 /var/qmail/bin/qmail-smtpd
-r-xr-xr-x 1 root wheel 2932 Nov 20 06:02 /usr/bin/true
