postfix, smtp-auth, Cyrus SASL for relay restriction troubles.
Tim Schutt
tschutt at gmail.com
Sat Jul 17 16:28:40 PDT 2004
Hey People,
ok... My hair is falling out fast enough without me pulling it, so I'm
looking for some help with this:
I've installed postfix and Cyrus SASL on FreeBSD 5.1 and I am having
the worst time getting any authentication to work for smtp-auth. I've
attached log and configuration snips below. Please forgive if there is
an ignorant mistake here... I admit to being fairly new to the whole
UNIX thing.
The short story is authentication always fails, mail won't relay, and
nothing even shows up in auth.log. Am I missing something to hook
these processes together?
Thanks!
Tim
tschutt at gmail.com
(apologies to digest readers because it's kinda long)
config: main.cf (snip)
===
virtual_alias_maps = hash:/usr/local/etc/postfix/virtual
alias_maps=hash:/usr/local/etc/postfix/aliases
alias_database=hash:/usr/local/etc/postfix/aliases
smtpd_client_restrictions = permit_mynetworks, reject_rbl_client relays.ordb.org
smtpd_sender_restrictions = permit_mynetworks
smtpd_recipient_restrictions =
permit_sasl_authenticated,
permit_mynetworks,
reject_unauth_destination
smtpd_data_restrictions =
reject_unauth_pipelining,
permit
default_rbl_reply = $rbl_code Service unavailable; $rbl_class
[$rbl_what] blocked using $rbl_domain${rbl_reason?;
$rbl_reason}
home_mailbox=$home/Maildir/
mailbox_size_limit = 20480000
message_size_limit = 0
virtual_mailbox_limit = 20480000
content_filter=smtp-amavis:[127.0.0.1]:10024
disable_dns_lookup = YES
smtpd_sasl_auth_enable = YES
smtpd_sasl_security_options = noanonymous
smtpd_sasl_local_domains =
broken_sasl_auth_clients = YES
smtpd_sasl_local_domain =
html_directory = no
smtp_sasl_password_maps = unix:password.byname
===
log snip from /var/maillog
===
Jul 17 19:14:59 www postfix/smtpd[4040]: smtpd_sasl_authenticate:
sasl_method PLAIN, init_response AHRzY2h1dHQAMXJlbmUx
Jul 17 19:14:59 www postfix/smtpd[4040]: smtpd_sasl_authenticate:
decoded initial response
Jul 17 19:14:59 www postfix/smtpd[4040]: warning:
roc-66-67-59-117.rochester.rr.com[66.67.59.117]: SASL PLAIN
authentication failed
Jul 17 19:14:59 www postfix/smtpd[4040]: >
roc-66-67-59-117.rochester.rr.com[66.67.59.117]: 535 Error:
authentication failed
Jul 17 19:14:59 www postfix/smtpd[4040]: watchdog_pat: 0x8086b88
Jul 17 19:14:59 www postfix/smtpd[4040]: smtp_get: EOF
Jul 17 19:14:59 www postfix/smtpd[4040]: match_hostname:
roc-66-67-59-117.rochester.rr.com ~? 127.0.0.0/8
Jul 17 19:14:59 www postfix/smtpd[4040]: match_hostaddr: 66.67.59.117
~? 127.0.0.0/8
Jul 17 19:14:59 www postfix/smtpd[4040]: match_hostname:
roc-66-67-59-117.rochester.rr.com ~? 66.67.59.0/24
Jul 17 19:14:59 www postfix/smtpd[4040]: match_hostaddr: 66.67.59.117
~? 66.67.59.0/24
Jul 17 19:14:59 www postfix/smtpd[4040]: lost connection after AUTH
from roc-66-67-59-117.rochester.rr.com[66.67.59.117]
===this is the tail of auth.log -- login attempt doesn't even show up ==
Jul 17 18:55:59 www saslauthd[3969]: detach_tty : master pid is: 3969
Jul 17 18:55:59 www saslauthd[3969]: ipc_init : listening on
socket: /var/state/saslauthd/mux
More information about the freebsd-questions
mailing list