Mailinglist Archive: opensuse (3666 mails)

< Previous Next >
Re: [SLE] SMTP Auth howto for 8.2 Professional.
  • From: Preston Kutzner <grdnwsl@xxxxxxxxxx>
  • Date: Thu, 24 Mar 2005 13:59:23 -0600
  • Message-id: <42431C1B.30802@xxxxxxxxxx>
Sandy Drobic wrote:
> Preston Kutzner wrote:
>
>
>>> What does the log say when you try to authenticate?
>>> Is saslauthd actually up and running?
>>
>>
>> saslauthd is running and the only errors I get are:
>>
>> Mar 24 11:42:31 ein postfix/smtpd[12865]: warning: SASL authentication
>> failure: Can only find author/en (no password)
>> Mar 24 11:42:31 ein postfix/smtpd[12865]: warning:
>> unknown[192.168.56.17]: SASL PLAIN authentication failed
>
>
> Are you checking the login with /etc/passwd or with sasldb?
>
> What sort of auth mechanism did you set up for sasl?
> content of /usr/lib/sasl2/smtpd.conf?
> content of /etc/sysconfig/saslauthd?
>
> Which packages are installed?
> rpm -qa | grep -i sasl
>
> What is the output of
> telnet localhost 25
> ehlo localhost.localdomain
> Especially the AUTH line?
>
>
> Sandy
>
Here's what you asked for as follows, along with saslfinger output:

pkutzner@ein:~> sudo cat /usr/lib/sasl2/smtpd.conf
pwcheck_method: saslauthd
mech_list: plain login

pkutzner@ein:~> sudo cat /etc/sysconfig/saslauthd
## Path: System/Security/SASL
## Type: list(getpwent,kerberos5,pam,rimap,shadow,ldap)
## Default: pam
## ServiceRestart: saslauthd
#
# Authentication mechanism to use by saslauthd.
# See man 8 saslauthd for available mechanisms.
#
SASLAUTHD_AUTHMECH=pam

pkutzner@ein:~> rpm -qa | grep -i sasl
perl-Authen-SASL-2.08-2
cyrus-sasl-saslauthd-2.1.19-5
cyrus-sasl-crammd5-2.1.19-7
cyrus-sasl-gssapi-2.1.19-7
cyrus-sasl-devel-2.1.19-7.2
perl-Authen-SASL-Cyrus-0.11-2
cyrus-sasl-otp-2.1.19-7
cyrus-sasl-plain-2.1.19-7
cyrus-sasl-digestmd5-2.1.19-7
cyrus-sasl-2.1.19-7.2

pkutzner@junpei ~$ telnet 192.168.56.73 25
Trying 192.168.56.73...
Connected to 192.168.56.73.
Escape character is '^]'.
220 ein.mrichi.com ESMTP
EHLO junpei.mrichi.com
250-ein.mrichi.com
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-AUTH LOGIN PLAIN
250-AUTH=LOGIN PLAIN
250 8BITMIME
AUTH PLAIN <base64-encoded login>
535 Error: authentication failed
QUIT
221 Bye
Connection closed by foreign host.

pkutzner@ein:~> sudo /usr/bin/saslfinger -s
saslfinger - postfix Cyrus sasl configuration Thu Mar 24 13:58:53 CST 2005
version: 0.9.9.1
mode: server-side SMTP AUTH

-- basics --
Postfix: 2.1.5
System:
Welcome to SuSE Linux 9.2 (i586) - Kernel \r (\l).

-- smtpd is linked to --
libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0x4009f000)

-- active SMTP AUTH and TLS parameters for smtpd --
broken_sasl_auth_clients = yes
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
smtpd_tls_session_cache_timeout = 3600s


-- listing of /usr/lib/sasl2 --
total 777
drwxr-xr-x 2 root root 1176 2005-03-24 10:56 .
drwxr-xr-x 136 root root 57496 2005-03-22 10:07 ..
-rwxr-xr-x 1 root root 695 2004-10-14 10:44 libanonymous.la
-rwxr-xr-x 1 root root 16297 2004-10-14 10:44 libanonymous.so
-rwxr-xr-x 1 root root 16297 2004-10-14 10:44 libanonymous.so.2
-rwxr-xr-x 1 root root 16297 2004-10-14 10:44 libanonymous.so.2.0.19
-rwxr-xr-x 1 root root 683 2004-10-01 21:03 libcrammd5.la
-rwxr-xr-x 1 root root 18639 2004-10-01 21:03 libcrammd5.so
-rwxr-xr-x 1 root root 18639 2004-10-01 21:03 libcrammd5.so.2
-rwxr-xr-x 1 root root 18639 2004-10-01 21:03 libcrammd5.so.2.0.19
-rwxr-xr-x 1 root root 713 2004-10-01 21:03 libdigestmd5.la
-rwxr-xr-x 1 root root 47913 2004-10-01 21:03 libdigestmd5.so
-rwxr-xr-x 1 root root 47913 2004-10-01 21:03 libdigestmd5.so.2
-rwxr-xr-x 1 root root 47913 2004-10-01 21:03 libdigestmd5.so.2.0.19
-rwxr-xr-x 1 root root 765 2004-10-01 21:03 libgssapiv2.la
-rwxr-xr-x 1 root root 27117 2004-10-01 21:03 libgssapiv2.so
-rwxr-xr-x 1 root root 27117 2004-10-01 21:03 libgssapiv2.so.2
-rwxr-xr-x 1 root root 27117 2004-10-01 21:03 libgssapiv2.so.2.0.19
-rwxr-xr-x 1 root root 679 2004-10-14 10:44 liblogin.la
-rwxr-xr-x 1 root root 17029 2004-10-14 10:44 liblogin.so
-rwxr-xr-x 1 root root 17029 2004-10-14 10:44 liblogin.so.2
-rwxr-xr-x 1 root root 17029 2004-10-14 10:44 liblogin.so.2.0.19
-rwxr-xr-x 1 root root 675 2004-10-01 21:03 libotp.la
-rwxr-xr-x 1 root root 49953 2004-10-01 21:03 libotp.so
-rwxr-xr-x 1 root root 49953 2004-10-01 21:03 libotp.so.2
-rwxr-xr-x 1 root root 49953 2004-10-01 21:03 libotp.so.2.0.19
-rwxr-xr-x 1 root root 679 2004-10-01 21:03 libplain.la
-rwxr-xr-x 1 root root 16987 2004-10-01 21:03 libplain.so
-rwxr-xr-x 1 root root 16987 2004-10-01 21:03 libplain.so.2
-rwxr-xr-x 1 root root 16987 2004-10-01 21:03 libplain.so.2.0.19
-rwxr-xr-x 1 root root 704 2004-10-14 10:44 libsasldb.la
-rwxr-xr-x 1 root root 21736 2004-10-14 10:44 libsasldb.so
-rwxr-xr-x 1 root root 21736 2004-10-14 10:44 libsasldb.so.2
-rwxr-xr-x 1 root root 21736 2004-10-14 10:44 libsasldb.so.2.0.19
-rw------- 1 root root 49 2005-03-24 10:56 smtpd.conf




-- content of /usr/lib/sasl2/smtpd.conf --
pwcheck_method: saslauthd
mech_list: plain login


-- active services in /etc/postfix/master.cf --
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
smtp inet n - n - 2 smtpd -o
smtpd_sasl_auth_enable=yes -o content_filter=smtp:[127.0.0.1]:10024
smtps inet n - n - 2 smtpd -o
smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes -o
content_filter=smtp:[127.0.0.1]:10024
pickup unix n - n 60 1 pickup
cleanup unix n - n - 0 cleanup
qmgr unix n - n 300 1 qmgr
tlsmgr fifo - - n 300 1 tlsmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
trace unix - - n - 0 bounce
verify unix - - n - 1 verify
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - n - - smtp
relay unix - - n - - smtp
showq unix n - n - - showq
error unix - - n - - error
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - n - 1 anvil
localhost:10025 inet n - n - - smtpd -o
content_filter=
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
cyrus unix - n n - - pipe
user=cyrus argv=/usr/lib/cyrus/bin/deliver -e -r ${sender} -m
${extension} ${user}
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
($recipient)
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop
$recipient
procmail unix - n n - - pipe
flags=R user=nobody argv=/usr/bin/procmail -t -m /etc/procmailrc
${sender} ${recipient}

-- mechanisms on localhost --
250-AUTH LOGIN PLAIN
250-AUTH=LOGIN PLAIN


-- end of saslfinger output --
< Previous Next >