Re: [gentoo-user] Postfix + Auth with SASL
Hi, On Wed, 19 Jul 2006 12:07:33 -0300 "Leandro Melo de Sales" <[EMAIL PROTECTED]> wrote: > Hi! I'm trying to setup postfix with authentication. I have > PAM/NSSwitch configured to use LDAP backend. I also installed > cyrus-sasl, but when I test authentication I got some errors. What I'm > doing wrong? Some relevant information: > > /etc/sasl2/smtpd.conf > > pwcheck_method:pam Shouldn't that be /usr/lib/sasl/smtpd.conf by default? Public available documentation suggest so. I must admit that I don't run cyrus sasl on Gentoo, currently. And the documentation suggests "PAM" instead of "pam". Note that authentication using PAM is only used for plain text authentication (i.e. not for CRAM-MD5 or DIGEST-MD5). So I have these additional lines in my config: mech_list: plain login but I don't really know if it does anything at all (I'm hesitating to deactivate it and risk inavailability of service...) -hwh -- gentoo-user@gentoo.org mailing list
[gentoo-user] Postfix + Auth with SASL
Hi! I'm trying to setup postfix with authentication. I have PAM/NSSwitch configured to use LDAP backend. I also installed cyrus-sasl, but when I test authentication I got some errors. What I'm doing wrong? Some relevant information: /etc/sasl2/smtpd.conf pwcheck_method:pam --- telnet port 25: embedded postfix # telnet localhost 25 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 Servidor de E-Mail Embedded EHLO mydomain.com 250-embedded.mydomain.com 250-PIPELINING 250-SIZE 1024 250-VRFY 250-ETRN 250-STARTTLS 250 8BITMIME quit 221 Bye Connection closed by foreign host. log: Jul 19 11:20:27 embedded postfix/smtpd[31410]: < unknown[192.168.1.100]: TlRMTVNTUAABB4IIogAFASgKDw== Jul 19 11:20:27 embedded postfix/smtpd[31410]: smtpd_sasl_authenticate: decoded response: NTLMSSP Jul 19 11:20:27 embedded postfix/smtpd[31410]: NTLM server step 1 Jul 19 11:20:27 embedded postfix/smtpd[31410]: client flags: 8207 Jul 19 11:20:27 embedded postfix/smtpd[31410]: smtpd_sasl_authenticate: uncoded challenge: NTLMSSP Jul 19 11:20:27 embedded postfix/smtpd[31410]: > unknown[192.168.1.100]: 334 TlRMTVNTUAACOgA6ADAFggIAxSfRzXMryGYARQBNAEIARQBEAEQARQBEAC4ARQBNAEIARQBEAEQARQBEAC4AVQBGAEMARwAuAEUARABVAC4AQgBSAA== Jul 19 11:20:27 embedded postfix/smtpd[31410]: < unknown[192.168.1.100]: TlRMTVNTUAADGAAYAI4YABgApgAAACgAKABIDgAOAHAQABAAfgC+BYIAAgUBKAoPZQBtAGIAZQBkAGQAZQBkAC4AdQBmAGMAZwAuAGUAZAB1AC4AYgByAGwAZQBhAG4AZAByAG8AQwBPAE0AUABPAFIAMAA2AFhBruTJ7QP1D2kjfvHaMU0IHH0O2a0i6qfimYU8bx0zsRE2W3N/+wpohdPaH5f26Q== Jul 19 11:20:27 embedded postfix/smtpd[31410]: smtpd_sasl_authenticate: decoded response: NTLMSSP Jul 19 11:20:27 embedded postfix/smtpd[31410]: NTLM server step 2 Jul 19 11:20:27 embedded postfix/smtpd[31410]: client user: leandro Jul 19 11:20:27 embedded postfix/smtpd[31410]: client domain: embedded.ufcg.edu.br Jul 19 11:20:27 embedded postfix/smtpd[31410]: warning: SASL authentication failure: no secret in database Jul 19 11:20:27 embedded postfix/smtpd[31410]: warning: unknown[192.168.1.100]: SASL NTLM authentication failed Jul 19 11:20:27 embedded postfix/smtpd[31410]: > unknown[192.168.1.100]: 535 Error: authentication failed Jul 19 11:20:27 embedded postfix/smtpd[31410]: < unknown[192.168.1.100]: AUTH NTLM Jul 19 11:20:27 embedded postfix/smtpd[31410]: smtpd_sasl_authenticate: sasl_method NTLM Jul 19 11:20:27 embedded postfix/smtpd[31410]: smtpd_sasl_authenticate: uncoded challenge: Jul 19 11:20:27 embedded postfix/smtpd[31410]: > unknown[192.168.1.100]: 334 main.cf: smtpd_sasl_auth_enable = yes smtpd_sasl_security_options = noanonymous smtpd_sasl_local_domain = $myhostname broken_sasl_auth_clients = yes smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, check_relay_domains []s Leandro -- gentoo-user@gentoo.org mailing list