Postfix and SASL.

Peter Ankerstål peter at pean.org
Mon Sep 21 13:09:01 UTC 2009


I just upgraded one of my machines to FreeBSD 8-RC1.

# uname -srmi
FreeBSD 8.0-RC1 amd64 GENERIC

postfix-2.4.11,1
cyrus-sasl-2.1.23
courier-authlib-base-0.62.4
courier-authlib-mysql-0.62.4

Inside a jail Im running a mailserver (postfix). After the upgrade  
smtp-auth with SASL2 and authdaemond doesnt work.

 From postfix main.cf:

smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = yes
smtpd_sasl_application_name = smtpd
broken_sasl_auth_clients = yes

smtpd_recipient_restrictions =
             reject_invalid_hostname,
             reject_unknown_recipient_domain,
             reject_unauth_pipelining,
             permit_mynetworks,
             permit_sasl_authenticated,
             reject_unauth_destination,
             permit
---

smtpd.conf:

pwcheck_method: authdaemond
log_level: 4
mech_list: PLAIN LOGIN
authdaemond_path: /var/run/authdaemond/socket
---

ls -ld  /var/run/authdaemond/
drwxr-xr-x  2 courier  courier  5 Sep 21 14:23 /var/run/authdaemond/

sockstat |grep authdaemon
root     authdaemon 46562 5  stream /var/run/authdaemond/socket.tmp
root     authdaemon 46562 6  stream -> /tmp/mysql.sock
root     authdaemon 46561 5  stream /var/run/authdaemond/socket.tmp
root     authdaemon 46561 6  stream -> /tmp/mysql.sock
root     authdaemon 46560 5  stream /var/run/authdaemond/socket.tmp
root     authdaemon 46560 6  stream -> /tmp/mysql.sock
root     authdaemon 46559 5  stream /var/run/authdaemond/socket.tmp
root     authdaemon 46559 6  stream -> /tmp/mysql.sock
root     authdaemon 46558 5  stream /var/run/authdaemond/socket.tmp
root     authdaemon 46558 6  stream -> /tmp/mysql.sock
root     authdaemon 46557 5  stream /var/run/authdaemond/socket.tmp


authdaemond is working properly. IMAP still uses it for auth and works  
fine.

and from maillog:

Sep 21 14:41:48 system authdaemond: Authenticated: sysusername=<null>,  
sysuserid=125, sysgroupid=125, homedir=/usr/maildirs, address=peter at pean.org 
, fullname=Peter Ankerstål, maildir=peter at pean.org/, quota=51200,  
options=<null>
Sep 21 14:41:48 system postfix/smtpd[47155]: warning: SASL  
authentication failure: could not verify password
Sep 21 14:41:48 system postfix/smtpd[47155]: warning: SASL  
authentication failure: Password verification failed
Sep 21 14:41:48 system postfix/smtpd[47155]: warning: hostname.tld:  
SASL PLAIN authentication failed: generic failure
Sep 21 14:41:48 system postfix/smtpd[47155]: lost connection after  
AUTH from hostname.tld
Sep 21 14:41:48 system postfix/smtpd[47155]: disconnect from  
hostname.tld

Could anyone see the problem? This setup has been working on a 7.2- 
RELEASE machine for months.

--
Peter Ankerstål
peter at pean.org
http://www.pean.org/



More information about the freebsd-questions mailing list