Wietse,
Thanks for all these useful points. I will inform the list about the results
of our tests regarding the issue.
Warm Regards
Ali Majdzadeh Kohbanani
2009/12/1 Wietse Venema
> Ali Majdzadeh:
> > Wietse,
> > Hi
> > Thanks for your reply. I recall that I had read ab
again.
Kind Regards
Ali Majdzadeh Kohbanani
2009/12/1 Wietse Venema
> Ali Majdzadeh:
> > question concerning what Wietse proposed. Does the usage of milter help?
> I
> > mean, is the milter architecture considered as a way to kill spam load
> > _before_ piping inbo
usage of milter help? I
mean, is the milter architecture considered as a way to kill spam load
_before_ piping inbound connections to AS/AV content filter daemons? Or,
achieving that goal is just through configuring Postfix itself?
Thanks again Stan.
Warm Regards
Ali Majdzadeh Kohbanani
2009/12/1 Stan
thought of the
ways which made it possible to do offline virus scanning, but actually we
have found that amavisd-new together with it's filtering tools is a serious
performance bottleneck.
I really appreciate suggestions regarding this scenario.
Warm Regards
Ali Majdzadeh Kohbanani
2009/12/1 T
intended to
somehow decrease the amount of load which amavisd-new or similar tools
impose on the architecture.
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/30 Stan Hoeppner
> Ali Majdzadeh put forth on 11/30/2009 12:28 AM:
> > Hello all,
> > I do not know whether here is the rig
Egoitz,
Hi
Thanks for your mail. I have used amavisd-new but unfortunately it can not
handle e-mail scanning in offline mode.
Anyway, thanks a lot.
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/30
> Hi Ali,
>
> The scenario you're describing is not a good idea because you don
to
virus scanners (like clamav), instead, virus scanning is performed on
mailboxes as regular files on the file system. Does anyone have any
experiences regarding this scenario? Is at all this scenario sane or
applicable?
Kind Regards
Ali Majdzadeh Kohbanani
Patrick,
Hi
Thanks for your reply and for your attention. I think it would be better to
find a solution so that we can utilize these two authentication mechanisms.
Thanks again.
Warm Regards
Ali Majdzadeh Kohbanani
2009/11/13 Ali Majdzadeh
> Patrick,
> Hi
> Thanks for your reply and
again.
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/11, Victor Duchovni :
>
> On Wed, Nov 11, 2009 at 11:21:33AM +0330, Ali Majdzadeh wrote:
>
> > mech_list: gssapi plain
> > pwcheck_method: saslauthd
> > saslauthd_path: /var/run/saslauthd/mux
> > keytab: /etc/krb5.ke
know whether that is
useful or not.
Thanks again.
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/11, Patrick Ben Koetter :
>
> * Ali Majdzadeh :
> > Patrick,
>
> > Thanks for your reply. So if I have concluded correctly, the following
> > configuration is the one which sho
keytab: /etc/krb5.keytab
auxprop_plugin: sasldb
But, you say that currently this does not work. True?
What about ldapdb? I mean, is there actually anyway to achieve such a setup?
Is it possible to use ldapdb in a way that eliminates the need to duplicate
the credentials?
Kind Regards
Ali Majdzadeh
working.
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/11 Ali Majdzadeh
> Suomi,
> Thanks for your mail. I do not use LDAP, instead I use PAM and I want to
> have the following authentication mechanisms together:
>
> PLAIN (over PAM, pam_krb5.so and saslauthd)
> GSSAPI
> CRAM-MD5
cram-md5 mechanism?
By the way, I do know about sasldb and auxprop, but what I plan to achieve
is to have cram-md5 mechanism while supporting plain mechanism using
saslauthd, PAM and pam_krb5.so. I have got no problems using native GSSAPI
support.
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/11
cram-md5 mechanism?
By the way, I do know about sasldb and auxprop, but what I plan to achieve
is to have cram-md5 mechanism while supporting plain mechanism using
saslauthd, PAM and pam_krb5.so. I have got no problems using native GSSAPI
support.
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/11
Hello All
Is it possible to have both PLAIN and CRAM-MD5 authentication
mechanisms using SASL?
Best Regards
Ali Majdzadeh Kohbanani
Viktor,
Thanks a lot, I managed to solve the problem. I can now authenticate users
using SASL, saslauthd, PAM and pam_krb5.so (and of cource Kerberos!)
Thanks again.
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/8 Ali Majdzadeh
> Viktor,
> Thanks a lot. You are very helpful.
>
>
&g
Viktor,
Thanks a lot. You are very helpful.
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/8 Victor Duchovni
> On Sat, Nov 07, 2009 at 11:11:36PM +0330, Ali Majdzadeh wrote:
>
> > Viktor,
> > Hi
> > I managed to test the configuration using the sample programs provided
similar
configuration for Postfix, always fails.
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/7 Ali Majdzadeh
> Viktor,
> Sorry about the previous mail. The logs which I sent were incorrect.
> Actually, there are no log messages just the following one in
> /var/log/mail.log:
>
&g
, I can successfully test the authentication
process using sasltestuser.
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/7 Ali Majdzadeh
> Viktor,
> Hi
> I hope that you are still following this thread. After a couple of testing,
> I saw the following error in auth.log:
>
> Nov
failure:
[user=rana] [service=smtp] [realm=] [mech=pam] [reason=PAM auth error]
Do you have any ideas about these?
Kind Regards
Ali Majdzadeh Kohbanani
2009/11/2 Ali Majdzadeh
> Victor,
> Hello
> Thanks a lot for your help. I am going to test your solutions. Thanks
> again.
>
>
Victor,
Hello
Thanks a lot for your help. I am going to test your solutions. Thanks again.
Warm Regards
Ali Majdzadeh Kohbanani
2009/11/2 Victor Duchovni
> On Sun, Nov 01, 2009 at 04:30:21PM +0330, Ali Majdzadeh wrote:
>
> > I have configured saslauthd to use pam for password veri
e names (and definitely) their
content correct? I mean, /etc/postfix/smtpd.conf and /etc/pam.d/smtp?
Kind Regards
Ali Majdzadeh Kohbanani
Viktor,
Hello
Thanks a lot for your help. I managed to solve the problem. By the way, have
you got any experiences about using kerberos as a pam module?
Kind Regards
Ali Majdzadeh Kohbanani
2009/10/30 Ali Majdzadeh
> Viktor,
> Hi
> Thanks for your guidance. Would please keep an ey
Viktor,
Hi
Thanks for your guidance. Would please keep an eye on this thread? I am
going to test the configuration using a properly configured GSSAPI client.
Possibly, there will be much more questions to ask ;)
Thank you so much.
Kind Regards
Ali Majdzadeh Kohbanani
2009/10/29 Victor Duchovni
configuration, I
should know about the exact handshake process.
Thanks again.
Kind Regards
Ali Majdzadeh Kohbanani
2009/10/29 Victor Duchovni
> On Thu, Oct 29, 2009 at 02:26:54PM +0330, Ali Majdzadeh wrote:
>
> > Thanks for your mail. Do you test the configuration using mail clients
> like
Viktor,
Hello
Thanks for your mail. Do you test the configuration using mail clients like
Thunderbird or something like that? If not, what do you actually use in
order to test the configuration?
Kind Regards
Ali Majdzadeh Kohbanani
2009/10/28 Victor Duchovni
> On Wed, Oct 28, 2009 at 05
the process?
Kind Regards
Ali Majdzadeh Kohbanani
27 matches
Mail list logo