Postfix & SASL Authentication
Paul Schmehl
pauls at utdallas.edu
Tue Aug 8 17:06:06 UTC 2006
Gerard Seibert wrote:
> Paul Schmehl wrote:
>
>> Sasl is attempting to use sasldb2 *before* it uses /etc/passwd (or pam,
>> as the case may be.) It's harmless in any case. What do you have in
>> the smtpd.conf file? (/usr/local/lib/sasl2/smtpd.conf)
>
> This is the contents:
>
> ## Global Values
> pwcheck_method: auxprop
> auxprop_plugin: sasldb
> log_level: 7
> mech_list: PLAIN LOGIN
>
>
Apparently you're using the sasldb2 database for logins? If so, the
sasldb2 database needs to be readable by postfix, and it has to be
populated with the usernames at domains that you need. Have you populated
the db?
You would probably be better off using saslauthd as your pwcheck_method.
Then start saslauthd with the -a sasldb flag. (See man 8 saslauthd.)
Auxprop is an older method that wasn't very dependable.
--
Paul Schmehl (pauls at utdallas.edu)
Adjunct Information Security Officer
The University of Texas at Dallas
http://www.utdallas.edu/ir/security/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5268 bytes
Desc: S/MIME Cryptographic Signature
Url : http://lists.freebsd.org/pipermail/freebsd-questions/attachments/20060808/2498d562/smime.bin
More information about the freebsd-questions
mailing list