Hola
Sigo con este tema del postfix, sasl, cyrus y ldap.
Me esta resultando imposible. a ver si me podeis ayudar.
Aunque he puesto el debug a 3 me sigue sacando lo mismo:
Dec 4 22:14:25 server postfix/smtpd[8075]: connect from
unknown[192.168.1.2]
Dec 4 22:14:25 server postfix/smtpd[8075]: warning: SASL authentication
failure: cannot connect to saslauthd server: Connection refused
Dec 4 22:14:25 server postfix/smtpd[8075]: warning: unknown[192.168.1.2]:
SASL LOGIN authentication failed
Dec 4 22:14:25 server postfix/smtpd[8075]: lost connection after AUTH from
unknown[192.168.1.2]
Dec 4 22:14:25 server postfix/smtpd[8075]: disconnect from
unknown[192.168.1.2]
He seguido el hilo de conversacion de este grupo que hacia referencia a esto
(http://lists.opensuse.org/opensuse-es/2007-11/msg00319.html).
No doy pasos hacia adelante y no se como seguir.
Alguien de vosotros tiene instalado el postfix + ldap + sasl?
es realmente posible hacerlo andar?
Me podeis ayudar? estoy empezando a estar desesperada.
si hago:
testsaslauthd -u miren -p miPass
0: OK "Success."
su cyrus -c "testsaslauthd -u miren -p miPass"
0: OK "Success."
en /usr/lib/sasl2 tengo dos ficheros:
smtpd.conf, que tiene:
pwcheck_method: saslauthd
mech_list: plain login
y
slapd.conf que tiene:
mech_list: gssapi digest-md5 cram-md5 external
Viendo esto digo... y si le pongo a /usr/Lib/sasl2 mech_list: plain gssapi
aparece el el log del postfix esto:
server postfix/postfix-script: warning:
/var/spool/postfix/usr/lib/sasl2/smtpd.conf and /usr/lib/sasl2/smtpd.conf
differ
lo cual queire decir que aunque yo haya quitado el chrooteado en la yast
todavia esta?
Pues me traga el correo pero aparece ahora este otro error... que parece que
es diferente y que antes de nada os digo que en el propio servidor tengo un
servidor dns y que esta arrancado y funcionando
Dec 4 22:34:28 server postfix/smtpd[8835]: connect from
unknown[192.168.1.2]
Dec 4 22:34:28 server postfix/smtpd[8835]: 9493A1EFEF:
client=unknown[192.168.1.2]
Dec 4 22:34:28 server postfix/cleanup[8838]: 9493A1EFEF:
message-id=<010401c835f3$18165160$0201a8c0@wxpetxea>
Dec 4 22:34:28 server postfix/qmgr[8806]: 9493A1EFEF:
from=, size=676, nrcpt=1 (queue active)
Dec 4 22:34:28 server postfix/smtpd[8835]: disconnect from
unknown[192.168.1.2]
Dec 4 22:34:28 server postfix/smtp[8818]: 9493A1EFEF:
to=, relay=none, delay=0, status=bounced (Host or domain
name not found. Name service error for name=localhost type=AAAA: Host not
found)
Dec 4 22:34:28 server postfix/cleanup[8838]: B1F871EFF2:
message-id=<20071204213428.B1F871EFF2@server.dominio.com>
Dec 4 22:34:28 server postfix/qmgr[8806]: B1F871EFF2: from=<>, size=2487,
nrcpt=1 (queue active)
Dec 4 22:34:28 server postfix/qmgr[8806]: 9493A1EFEF: removed
Dec 4 22:34:28 server postfix/lmtp[8820]: B1F871EFF2:
to=, orig_to=, relay=none,
delay=0, status=deferred (connect to
/var/lib/imap/socket/lmtp[/var/lib/imap/socket/lmtp]: No such file or
directory)
si hago:
server:/etc # telnet localhost 25
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 server.dominio.com ESMTP Postfix
ehlo localhost
250-server.dominio.com
250-PIPELINING
250-SIZE
250-VRFY
250-ETRN
250-STARTTLS
250-AUTH LOGIN PLAIN
250 8BITMIME
Situación actual de mis ficheros de configuracion.:
No tengo el postfix ya chrooteado.
En el fichero /usr/local/etc/saslauth.conf tengo (en esa ruta viene en el
man):
ldap_servers: ldap://localhost:389
ldap_search_base: ou=people,dc=dominio,dc=com
ldap_filter: uid=%u
ldap_group_scope: sub
ldap_password_attr:userPassword
en /etc/postfix/main.cf para el debug:
debug_peer_list = dominio.com
debug_peer_level = 3
Y en /etc/sasl2/smtpd.conf :
log_level: 3
tengo SASLAUTHD_AUTHMECH="ldap
salida de postfix -n:
server:/usr/local/etc # postconf -n
alias_maps = hash:/etc/aliases, ldap:/etc/postfix/ldapalias_maps_member.cf,
ldap:/etc/postfix/ldapalias_maps.cf
biff = no
canonical_maps = hash:/etc/postfix/canonical
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter =
daemon_directory = /usr/lib/postfix
debug_peer_level = 3
debug_peer_list = dominio.com
defer_transports =
disable_dns_lookups = no
disable_mime_output_conversion = no
home_mailbox =
html_directory = /usr/share/doc/packages/postfix/html
inet_interfaces = all
inet_protocols = all
local_recipient_maps = $alias_maps,
ldap:/etc/postfix/ldaplocal_recipient_maps.cf
mail_owner = postfix
mail_spool_directory =
mailbox_command =
mailbox_size_limit = 0
mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
masquerade_classes = envelope_sender, header_sender, header_recipient
masquerade_domains = ldap:/etc/postfix/ldapmasquerade_domains.cf
masquerade_exceptions = root
message_size_limit = 0
mydestination = $myhostname, localhost.$mydomain, $mydomain,
ldap:/etc/postfix/ldapmydestination.cf
myhostname = server.dominio.com
mynetworks = 127.0.0.0/8, 192.168.1.0/24, [::1]/128, [fe80::]/64
mynetworks_style = subnet
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/packages/postfix/README_FILES
relayhost =
relocated_maps = hash:/etc/postfix/relocated
sample_directory = /usr/share/doc/packages/postfix/samples
sender_canonical_maps = hash:/etc/postfix/sender_canonical
sendmail_path = /usr/sbin/sendmail
setgid_group = maildrop
smtp_enforce_tls = no
smtp_sasl_auth_enable = no
smtp_sasl_security_options = noanonymous
smtp_tls_enforce_peername = no
smtp_tls_per_site = ldap:/etc/postfix/ldapsmtp_tls_per_site.cf
smtp_use_tls = no
smtpd_banner = $myhostname ESMTP $mail_name
smtpd_client_restrictions = permit_mynetworks,
ldap:/etc/postfix/ldapaccess.cf, reject_unknown_client
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks, reject_invalid_hostname
smtpd_recipient_restrictions = permit_mynetworks,permit_sasl_authenticated,
permit_auth_destination, reject_unauth_destination, reject
smtpd_sasl_auth_enable = yes
smtpd_sender_restrictions = ldap:/etc/postfix/ldapaccess.cf,
reject_unknown_sender_domain
smtpd_tls_CApath = /etc/ssl/certs
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/ssl/servercerts/servercert.pem
smtpd_tls_key_file = /etc/ssl/servercerts/serverkey.pem
smtpd_use_tls = yes
strict_8bitmime = no
strict_rfc821_envelopes = yes
transport_maps = ldap:/etc/postfix/ldaptransport_maps.cf
unknown_local_recipient_reject_code = 550
virtual_alias_domains = ldap:/etc/postfix/ldapvirtual_alias_maps.cf
virtual_alias_maps = ldap:/etc/postfix/ldaplocal_recipient_maps.cf
---------------------------------------------------------------------
Para dar de baja la suscripción, mande un mensaje a:
opensuse-es+unsubscribe@opensuse.org
Para obtener el resto de direcciones-comando, mande
un mensaje a:
opensuse-es+help@opensuse.org