opensmtpd-5.7.1 - cannot authenticate

Pietro Cerutti gahr at FreeBSD.org
Wed Jul 29 19:26:51 UTC 2015 

On 2015-Jul-29, 20:37, Herbert J. Skuhra wrote:
> On Tue, Jul 28, 2015 at 09:24:05PM +0200, Pietro Cerutti wrote:
> > On 2015-Jul-28, 15:24, Herbert J. Skuhra wrote:
> > > On Mon, Jul 27, 2015 at 08:47:47PM +0200, Pietro Cerutti wrote:
> > > > Hi,
> > > > 
> > > > I tried to upgrade from 5.4.6 to 5.7.1, and suddenly I am unable
> > > > to authenticate.  This is from the log file:
> > > > 
> > > > Jul 27 17:05:03 mail smtpd[12146]: smtp-in: Failed command on
> > > > session a0516551dc7a4dc4: "AUTH PLAIN (...)" => 501 5.5.2 Syntax
> > > > error: Syntax error
> > > > 
> > > > Relevant config lines area
> > > > 
> > > > pki mydomain certificate
> > > > "/usr/local/etc/mail-admin/tls/server.crt" pki mydomain key
> > > > "/usr/local/etc/mail-admin/tls/server.key" table credentials
> > > > file:/usr/local/etc/mail-admin/db/auth-smtp.db listen on
> > > > 192.168.1.1 secure auth-optional <credentials> pki mydomain
> > > 
> > > What's the output of 'file
> > > /usr/local/etc/mail-admin/db/auth-smtp.db'?  Maybe you need db:
> > > not file:?
> > 
> > it's an ASCII file, as it was with 5.4.6. As I said, no config
> > (including backend table files) has changed.
> > 
> > > > I am able to switch from the 5.4.6 to the 5.7.1 binary and
> > > > reproduce that I can send mail with the former and cannot with
> > > > the latter. No config has changed.
> > > 
> > > Have you tried to run 'smtpd -dv' or 'smtpd -dv -T all'?
> > 
> > Here's the output from smtpd -dv -T all.
> > 
> > Thank you!
> 
> Opensmtpd 5.7.1p1 obviously has a problem when the auth username
> contains "@" (e.g: foo at example.com).

As it turns out, the problem is not with the "@" char but rather with
usernames longer than LOGIN_NAME_MAX. I worked around the issue by
defining it to a large enough value in Makefile.

As I've been told on FreeNode/#opensmtpd, this is not a real solution,
though.

-- 
Pietro Cerutti
The FreeBSD Project
gahr at FreeBSD.org

PGP Public Key:
http://gahr.ch/pgp
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 949 bytes
Desc: not available
URL: <http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20150729/4852ef49/attachment.bin>

More information about the freebsd-ports mailing list