sendmail sasl problem

Paul Macdonald paul at ifdnrg.com
Fri Oct 24 03:52:48 PDT 2008 

Hi,

I'm having a strange problem after a recent saslauthd upgrade..

I can no longer authenticate to the smtp server,

with saslauthd in debug mode i can see the authentication ( via 
getpwent)  as succeeding

saslauthd[54468] :rel_accept_lock : released accept lock
saslauthd[54468] :do_auth         : auth success: [user=smtpauth] 
[service=smtp] [realm=] [mech=getpwent]
saslauthd[54468] :do_request      : response: OK

however sendmail still gives me a relaying denied

i've tried this with various other system users with the same result, 
saslauthd says ok, sendmail says no!


Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 
250-ENHANCEDSTATUSCODES
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 250-PIPELINING
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 250-8BITMIME
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 250-SIZE
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 250-DSN
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 250-ETRN
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 250-AUTH 
PLAIN LOGIN
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 250-DELIVERBY
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 250 HELP
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: <-- AUTH PLAIN 
AHBhdWwAcmV3N3gwMTQ0NQ==
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 235 2.0.0 OK 
Authenticated
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: AUTH=server, 
relay=87-194-184-71.bethere.co.uk [87.194.184.71], authid=paul, 
mech=PLAIN, bits=0
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: <-- MAIL 
FROM:<paul at ifdnrg.com> SIZE=20688
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: Milter: sender: 
<paul at ifdnrg.com>
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: milter=clmilter, 
action=mail, continue
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: Milter 
(clmilter): time command (M), 0
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: 
milter=spamassassin, action=mail, continue
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: Milter 
(spamassassin): time command (M), 0
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 250 2.1.0 
<paul at ifdnrg.com>... Sender ok
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: <-- RCPT 
TO:<pmacdonald at gmail.com>
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: --- 550 5.7.1 
<pmacdonald at gmail.com>... Relaying denied. Proper authentication required.
Oct 24 11:13:01 ifdnrg18 sm-mta[57530]: m9OAD18c057530: 
ruleset=check_rcpt, arg1=<pmacdonald at gmail.com>, 
relay=87-194-184-71.bethere.co.uk [87.194.184.71], reject=550 5.7.1 
<pmacdonald at gmail.com>...  Relaying denied. Proper authentication required.

rc.conf
#SASLAUTHD
saslauthd_enable="YES"
#note debug mode for sasl runs the daemon in foreground
#saslauthd_flags="-a getpwent -d"
saslauthd_flags="-a getpwent"


there's nothing in the access maps to reject this host, and adding 
myself to the access map fixes it for me ( but obv not anyone else)

The same upgrade to sasl went smoothly on 2 other boxes with fairly 
identical setups, and both sasl and sendmail have been reinstalled with 
same effect.


Can anyone offer any suggestions?

tia
Paul.

More information about the freebsd-questions mailing list