Sandy Drobic schreef:
Koenraad Lelong wrote:
Hi, I'm trying to setup sasl with my postfix-server, running Suse10.1. I have a virtual domain stored in MySql. The usernames are the e-mail addresses of the users : user@ace-electronics.be In /usr/lib/sasl2/smtpd.conf I have : pwcheck_method: saslauthd -a pam -n
pwcheck_method: saslauthd
The rest belongs in /etc/sysconfig/saslauthd
Oct 24 17:13:16 lace1 saslauthd[4145]: pam_warn(smtp:account): function=[pam_sm_acct_mgmt] service=[smtp] terminal=[<unknown>] ... [user=k.lelong@ace-electronics.be] [service=smtp] [realm=] [mech=pam] [reason=PAM acct error] Reading those lines again made me think : acct=account. Searching the
Could you clarify this ? I made : SASLAUTHD_AUTHMECH=pam -r but starting with rcsaslauthd start gives an error : line 9: -r: command not found. 'ps ax | grep saslauth' gives 'saslauthd -a pam'. ... pam_mysql archives I found someone who used an 'account required ...' line in a pam-file in /etc/pam.d I added account required pam_permit.so to /etc/pam.d/smtp, then my testsaslauth works. Any toughts about seurity ?
You need to start saslauthd with the additional option -r for the realm, then also set the realm in your postfix config.
AFAIK the realm does not need to be set in postfix. I don't want it either, because I have multiple domains on that server.
For a test: rcsaslauthd stop /usr/sbin/saslauthd -r -a pam
Like I said, this works fine, but how do I start it automatically, if not in /usr/lib/sasl2/smtpd.conf ? Thanks for your help, maybe I will need you again, for TLS. I have a problem with that too. But first I will google a little more. If needed I'll start a new thread. -- Met vriendelijke groeten, Koenraad Lelong R&D Manager ACE electronics n.v.