Re: smtp auth

Thu, 21 Jul 2005 06:53:16 -0700 

no good.   It still rejects my user/pass even after I remove that code.

Heres the bottom of my current qmail-smtpd/run file:

exec /usr/local/bin/softlimit -m 2000000 \
/usr/local/bin/tcpserver -v -R -l "$LOCAL" -x /etc/tcp.smtp.cdb -c "$MAXSMTPD" \ 
     -u "$QMAILDUID" -g "$NOFILESGID" 0 25 /var/qmail/bin/qmail-smtpd 2>&1
since we've removed auth_smtp from the run script, how will it know what to authenticate from?
----- Original Message ----- From: "HyperAxe" <[EMAIL PROTECTED]> 
To: "'Jason Folkens'" <[EMAIL PROTECTED]>; <[email protected]>
Sent: Thursday, July 21, 2005 9:34 AM
Subject: RE: smtp auth



Hi Jason,

Try removing /var/qmail/bin/auth_smtp /usr/bin/true and test if you can
relay when roaming.

HyperAxe
Email: [EMAIL PROTECTED]
Web: http://www.hyperaxe.com

-----Original Message-----
From: Jason Folkens [mailto:[EMAIL PROTECTED]
Sent: Thursday, July 21, 2005 9:22 PM
To: [email protected]
Subject: Re: smtp auth

Thanks, HyperAxe.  That fixed my immediate problem...  Now it actually
tries
to authenticate when I roam...  which is exactly what I wanted. :-)

The new problem is with authentication.  It rejects whatever
username/password combo that I put in...   I'm guessing that relates
with my
failure to configure my qmail-smtpd/run script correctly.

.
.
.
exec /usr/local/bin/softlimit -m 2000000 \
  /usr/local/bin/tcpserver -v -R -l "$LOCAL" -x /etc/tcp.smtp.cdb -c
"$MAXSMTPD" \
      -u "$QMAILDUID" -g "$NOFILESGID" 0 25 /var/qmail/bin/qmail-smtpd
\
           /var/qmail/bin/auth_smtp /usr/bin/true 2>&1

the entire contents of the control directory (except ldappassword) is
set to
chmod 644
ldappassword is set to chmod 640 and chown'ed to root:qmail, so it
should
still be able to read it, right?

for kicks, i brought up ethereal and did a packet trace on the loopback
interface to see if the LDAP queries were being sent to the ldap svr or
not.. (qmail and ldap are running on the same machine).  When outlook
express tries to smtp relay through the server, it doesn't issue an LDAP

query, and outlook express issues an authentication error... but when it

gets to the pop3 attempt, an LDAP query is sent (as would be expected)

so my suspicions are that either
   a) auth_smtp is not being called from qmail-smtpd/run correctly, or
   b) auth_smtp doesn't have access to the control files

Any ideas as to how I can fix this problem?  Again, I'm pretty new to
qmail,
so its likely that I'm just overlooking something blantantly obvious to
anyone else subscribed to this mailing list.

Thanks,

-- Jason
----- Original Message ----- From: "HyperAxe" <[EMAIL PROTECTED]> 
To: "'Jason Folkens'" <[EMAIL PROTECTED]>; <[email protected]>
Sent: Wednesday, July 20, 2005 7:41 PM
Subject: RE: smtp auth



Hi Jason,

I'm not sure if I got you right, but if you want to use your mail

server

outside your LAN, the most common setup would be in such a way that

all

PCs inside your LAN can send emails without SMTP AUTH but outside your
LAN, SMTP AUTH would be required. Try something like this in your
tcp.smtp file:

a.b.c:allow,RELAYCLIENT=""
:allow,SMTPAUTH=""

Hope this helps.

HyperAxe
Email: [EMAIL PROTECTED]
Web: http://www.hyperaxe.com

-----Original Message-----
From: Jason Folkens [mailto:[EMAIL PROTECTED]
Sent: Thursday, July 21, 2005 5:57 AM
To: [email protected]
Subject: smtp auth

Hi.   I'm kind of new to qmail, so my question probably sounds pretty
elementary.

I have a qmail-ldap server setup.  Right now it only relays off of my
local
subnet (which I refer to below as a.b.c.) as per the instructions in

the


/etc/tcp.smtp file

I want to implement SMTP AUTH so that I can roam outside my LAN.    I
changed my supervise/qmail-smtpd/run file from this:

QMAILDUID=`id -u qmaild`
NOFILESGID=`id -g qmaild`
MAXSMTPD=`head -1 /var/qmail/control/concurrencyincoming`
LOCAL=`head -1 /var/qmail/control/me`

#some irrevelant if statements removed from email

exec /usr/local/bin/softlimit -m 2000000 \
   /usr/local/bin/tcpserver -v -R -l "$LOCAL" -x /etc/tcp.smtp.cdb -c
"$MAXSMTPD" \
       -u "$QMAILDUID" -g "$NOFILESGID" 0 25

/var/qmail/bin/qmail-smtpd


2>&1

to this, because of the text written on life with qmail-ldap, section
13.2:

#everything unchanged except for this last line of code:

exec /usr/local/bin/softlimit -m 2000000 \
   /usr/local/bin/tcpserver -v -R -l "$LOCAL" -x /etc/tcp.smtp.cdb -c
"$MAXSMTPD" \
       -u "$QMAILDUID" -g "$NOFILESGID" 0 25

/var/qmail/bin/qmail-smtpd


/var/qmail/bin/auth_smtp /usr/bin/true 2>&1

then I modified the /etc/tcp.smtp from this:

a.b.c.:allow,RELAYCLIENT=""
:deny

to this:

a.b.c.:deny

I've also tried variations of this, like

a.b.c.:allow,RELAYCLIENT="",SMTPAUTH=""
:deny

but whatever I do to attempt to solve this problem either leads me

wide

open
for relaying, or doesn't even let me send the auth credentials to

begin

with.    Can someone please tell me the proper way of going around

this

problem?

Thanks,

-- Jason

Reply via email to