SMTP AUTH (SASL) Not working under 9.2
![](https://seccdn.libravatar.org/avatar/2f2cad782a7b4a589d31a1922b552209.jpg?s=120&d=mm&r=g)
Hello List, I've recently been given the task of setting up a mail relay that will allow our mobile users to relay mail through it. I'm going to be using 9.2 Pro for this endeavor. I've spent a little time already getting things set up and reading documentation online on how to get Postfix up and running with SASL and TLS. However, I'm now at a stand-still with a problem I'm having. Postfix won't authenticate with SASL. I've found the postfix configuration file in /etc/sysconfig and have changed the required options in there, and have run the SuSEconfig -module postfix and have been sure to add some test users to the sasl database (I'm using the auxprop method in SASL). I can authenticate using sasldbtest2, but postfix won't authenticate. I've been using the method I've found online 'printf 'username\0username\0password' | mmencode' to get my base64 encoded login string. Can anyone tell me what I'm missing? I just get this error when I try to authenticate. It's from my /var/log/mail.warn Mar 18 13:56:50 ein postfix/smtpd[13130]: warning: SASL authentication failure: Can only find author/en (no password) Mar 18 13:56:50 ein postfix/smtpd[13130]: warning: localhost[127.0.0.1]: SASL PLAIN authentication failed I haven't been able to find any truely useful information regarding this error. Thanks in advance. Here's my config. saslfinger - postfix Cyrus sasl configuration Fri Mar 18 14:10:28 CST 2005 version: 0.9.9.1 mode: server-side SMTP AUTH -- basics -- Postfix: 2.1.5 System: Welcome to SuSE Linux 9.2 (i586) - Kernel \r (\l). -- smtpd is linked to -- libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0x40089000) -- active SMTP AUTH and TLS parameters for smtpd -- broken_sasl_auth_clients = yes smtpd_sasl_auth_enable = yes smtpd_sasl_local_domain = smtpd_sasl_security_options = noanonymous smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem smtpd_tls_ask_ccert = yes smtpd_tls_cert_file = /etc/postfix/ssl/certs/postfixcert.pem smtpd_tls_key_file = /etc/postfix/ssl/certs/postfixkey.pem smtpd_tls_received_header = yes smtpd_use_tls = yes -- listing of /usr/lib/sasl2 -- total 793 drwxr-xr-x 2 root root 1304 2005-03-17 15:26 . drwxr-xr-x 136 root root 57496 2005-03-18 08:58 .. -rwxr-xr-x 1 root root 695 2004-10-14 10:44 libanonymous.la -rwxr-xr-x 1 root root 16297 2004-10-14 10:44 libanonymous.so -rwxr-xr-x 1 root root 16297 2004-10-14 10:44 libanonymous.so.2 -rwxr-xr-x 1 root root 16297 2004-10-14 10:44 libanonymous.so.2.0.19 -rwxr-xr-x 1 root root 683 2004-10-01 21:03 libcrammd5.la -rwxr-xr-x 1 root root 18639 2004-10-01 21:03 libcrammd5.so -rwxr-xr-x 1 root root 18639 2004-10-01 21:03 libcrammd5.so.2 -rwxr-xr-x 1 root root 18639 2004-10-01 21:03 libcrammd5.so.2.0.19 -rwxr-xr-x 1 root root 713 2004-10-01 21:03 libdigestmd5.la -rwxr-xr-x 1 root root 47913 2004-10-01 21:03 libdigestmd5.so -rwxr-xr-x 1 root root 47913 2004-10-01 21:03 libdigestmd5.so.2 -rwxr-xr-x 1 root root 47913 2004-10-01 21:03 libdigestmd5.so.2.0.19 -rwxr-xr-x 1 root root 765 2004-10-01 21:03 libgssapiv2.la -rwxr-xr-x 1 root root 27117 2004-10-01 21:03 libgssapiv2.so -rwxr-xr-x 1 root root 27117 2004-10-01 21:03 libgssapiv2.so.2 -rwxr-xr-x 1 root root 27117 2004-10-01 21:03 libgssapiv2.so.2.0.19 -rwxr-xr-x 1 root root 679 2004-10-14 10:44 liblogin.la -rwxr-xr-x 1 root root 17029 2004-10-14 10:44 liblogin.so -rwxr-xr-x 1 root root 17029 2004-10-14 10:44 liblogin.so.2 -rwxr-xr-x 1 root root 17029 2004-10-14 10:44 liblogin.so.2.0.19 -rwxr-xr-x 1 root root 675 2004-10-01 21:03 libotp.la -rwxr-xr-x 1 root root 49953 2004-10-01 21:03 libotp.so -rwxr-xr-x 1 root root 49953 2004-10-01 21:03 libotp.so.2 -rwxr-xr-x 1 root root 49953 2004-10-01 21:03 libotp.so.2.0.19 -rwxr-xr-x 1 root root 679 2004-10-01 21:03 libplain.la -rwxr-xr-x 1 root root 16987 2004-10-01 21:03 libplain.so -rwxr-xr-x 1 root root 16987 2004-10-01 21:03 libplain.so.2 -rwxr-xr-x 1 root root 16987 2004-10-01 21:03 libplain.so.2.0.19 -rwxr-xr-x 1 root root 704 2004-10-14 10:44 libsasldb.la -rwxr-xr-x 1 root root 21736 2004-10-14 10:44 libsasldb.so -rwxr-xr-x 1 root root 21736 2004-10-14 10:44 libsasldb.so.2 -rwxr-xr-x 1 root root 21736 2004-10-14 10:44 libsasldb.so.2.0.19 -rw-r--r-- 1 root root 103 2005-03-11 15:53 postfix.conf -rw------- 1 root root 47 2005-03-17 15:26 smtpd.conf -rw------- 1 root root 49 2005-03-14 10:28 smtpd.conf.bak -rw------- 1 root root 177 2005-03-14 14:26 smtpd.conf.pmk -rw-r--r-- 1 root root 236 2005-03-16 11:20 smtpd.conf.sql -- content of /usr/lib/sasl2/smtpd.conf -- pwcheck_method: auxprop mech_list: plain login -- active services in /etc/postfix/master.cf -- # service type private unpriv chroot wakeup maxproc command + args # (yes) (yes) (yes) (never) (100) smtp inet n - n - 2 smtpd -o content_filter=smtp:[127.0.0.1]:10024 smtps inet n - n - 2 smtpd -o smtpd_tls_wrappermode=yes -o content_filter=smtp:[127.0.0.1]:10024 pickup unix n - n 60 1 pickup cleanup unix n - n - 0 cleanup qmgr unix n - n 300 1 qmgr tlsmgr fifo - - n 300 1 tlsmgr rewrite unix - - n - - trivial-rewrite bounce unix - - n - 0 bounce defer unix - - n - 0 bounce trace unix - - n - 0 bounce verify unix - - n - 1 verify flush unix n - n 1000? 0 flush proxymap unix - - n - - proxymap smtp unix - - n - - smtp relay unix - - n - - smtp showq unix n - n - - showq error unix - - n - - error local unix - n n - - local virtual unix - n n - - virtual lmtp unix - - n - - lmtp anvil unix - - n - 1 anvil localhost:10025 inet n - n - - smtpd -o content_filter= maildrop unix - n n - - pipe flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient} cyrus unix - n n - - pipe user=cyrus argv=/usr/lib/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user} uucp unix - n n - - pipe flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient) ifmail unix - n n - - pipe flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient) bsmtp unix - n n - - pipe flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient procmail unix - n n - - pipe flags=R user=nobody argv=/usr/bin/procmail -t -m /etc/procmailrc ${sender} ${recipient} -- mechanisms on localhost -- 250-AUTH LOGIN PLAIN 250-AUTH=LOGIN PLAIN -- end of saslfinger output --
![](https://seccdn.libravatar.org/avatar/13c15af4b0b7be2b58d2ec00954d86e8.jpg?s=120&d=mm&r=g)
Preston Kutzner wrote: Is saslauthd running?
-- active SMTP AUTH and TLS parameters for smtpd -- broken_sasl_auth_clients = yes smtpd_sasl_auth_enable = yes smtpd_sasl_local_domain = smtpd_sasl_security_options = noanonymous smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem smtpd_tls_ask_ccert = yes smtpd_tls_cert_file = /etc/postfix/ssl/certs/postfixcert.pem smtpd_tls_key_file = /etc/postfix/ssl/certs/postfixkey.pem smtpd_tls_received_header = yes smtpd_use_tls = yes
Did you also add smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks # When you get TLS up and running: smtpd_tls_auth_only = yes
-- content of /usr/lib/sasl2/smtpd.conf -- pwcheck_method: auxprop mech_list: plain login
That looks right. You might try this guide here, it's very step-by-step: http://postfix.state-of-mind.de/patrick.koetter/smtpauth/ It might be interesting to know if there are any error messages in /var/log/messages or /var/log/mail when you start postfix or try to authenticate. Sandy
participants (2)
-
Preston Kutzner
-
Sandy Drobic