Sendmail as client via smarthost and ssl

Christopher Illies Christopher.Illies at ki.se
Thu Oct 28 13:19:13 UTC 2010 

To send email from my computer at work I need to send through a
smarthost. In the past I had added the line:

define(`SMART_HOST', `[smpt.ki.se]')

to my mc file, plus some address rewriting for outgoing mail.  This
has worked for years.

Now the mail system has changed and it requires some authentication,
connection via ssl to a different server and via a different port
(587). Since then I have not been able to get my computer to send
email via the smarthost.

Not knowing much about sendmail, I tried google and more or less
blindly followed suggestions.  Here is what I have done so far, but
sending email still does not work:

1. recompiled sendmail with sasl by adding the following lines to
/etc/make.conf + installing security/cyrus-sasl2 + recompiling
sendmail:

SENDMAIL_CFLAGS=-I/usr/local/include -DSASL=2
SENDMAIL_LDFLAGS=-L/usr/local/lib SENDMAIL_LDADD=-lsasl2

2. Adding the following line to my mc file (+ make all install
restart):

define(`confAUTH_MECHANISMS', `EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5
LOGIN PLAIN')dnl FEATURE(`authinfo',`hash /etc/mail/auth/client-info')dnl

dnl Set port define(`RELAY_MAILER_ARGS', `IPC $h 587')

I also changed the smarthost to the new name:

define(`SMART_HOST', `[send.ki.se]')

3. create the file /etc/mail/auth/client-info + run "makemap hash
client-info < client-info":

AuthInfo:[send.ki.se] "I:LOGIN" "P:PASSWORD"


When trying to send email the returned email from the
"Mail Delivery Subsystem <MAILER-DAEMON>" contains the following
error message:

   ----- The following addresses had permanent fatal errors -----
<christopher.illies at web.de>
    (reason: 530 5.7.1 Client was not authenticated)

   ----- Transcript of session follows -----
... while talking to send.ki.se.:
>>> MAIL From:<christopher.illies at ki.se> SIZE=473 AUTH=<>
<<< 530 5.7.1 Client was not authenticated
554 5.0.0 Service unavailable


In /var/log/maillog the following error messages appear:

Oct 28 13:52:53 muck sm-mta[19110]: STARTTLS=client, relay=send.ki.se.,
version=TLSv1/SSLv3, verify=FAIL, cipher=AES128-SHA, bits=128/128
Oct 28 13:52:58 muck sm-mta[19110]: o9SBqqHs019108:
to=<christopher.illies at web.de>, ctladdr=<chris at muck.ks.se> (1001/1001),
delay=00:00:06, xdelay=00:00:06, mailer=relay, pri=30473,
relay=send.ki.se. [130.229.20.26], dsn=5.0.0, stat=Service unavailable
Oct 28 13:52:58 muck sm-mta[19110]: o9SBqqHs019108: o9SBqwHs019110:
DSN: Service unavailable

Any suggestions to help me send email from my computer are gratefully
appreciated. The system is 8-stable.

Christopher

More information about the freebsd-questions mailing list