Mail auth and FreeBSD/Sendmail
Ed Budd
ebudd at grokking.org
Tue Oct 5 06:50:27 PDT 2004
Andreas Widerøe Andersen wrote:
> Thanks! However, could you please give me some more specific directions?
> Today my sendmail.mc file looks like this:
>
> divert(0)
> VERSIONID(`$FreeBSD: src/etc/sendmail/freebsd.mc,v 1.10.2.18 2003/04/24
> 16:57:30 gshapiro Exp $')
> OSTYPE(freebsd4)
> DOMAIN(generic)
>
> FEATURE(access_db, `hash -o -T<TMPF> /etc/mail/access')
> FEATURE(blacklist_recipients)
> FEATURE(local_lmtp)
> FEATURE(mailertable, `hash -o /etc/mail/mailertable')
> FEATURE(virtusertable, `hash -o /etc/mail/virtusertable')
>
> INPUT_MAIL_FILTER(`spamassassin', `S=local:/var/run/spamass-milter.sock,
> F=, T=C:15m;S:4m;R:4m;E:10m')
>
> dnl set SASL options
> TRUST_AUTH_MECH(`GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN')dnl
> define(`confAUTH_MECHANISMS', `GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN')dnl
> define(`confDEF_AUTH_INFO', `/etc/mail/auth-info')dnl
>
> define(`confBIND_OPTS', `WorkAroundBrokenAAAA')
> define(`confNO_RCPT_ACTION', `add-to-undisclosed')
> define(`confPRIVACY_FLAGS', `authwarnings,noexpn,novrfy')
> MAILER(local)
> MAILER(smtp)
>
> Should I just replace the TRUST/SASL lines with:
>
> TRUST_AUTH_MECH(`LOGIN PLAIN')dnl
> define(`confAUTH_MECHANISMS', `LOGIN PLAIN')dnl
>
> Don't want to try it at the moment without knowing more since it is a
> live system.
>
Yes, that's correct (although I'd leave in CRAM-MD5 since mozilla et.
al. support it nicely).
Once you save the *.mc file, do this to build a proper sendmail.cf,
update all your database configs, install and restart sendmail:
cd /etc/mail
make all install restart
This should take only about 3 seconds and will give you console feedback
so watch for any errors in syntax. Then:
tail /var/log/maillog
So you can verify that everything started up properly.
Please note that I use 5.x (but same version of sendmail as you) so it
is possible that the exact steps I outline above will be slightly
different on a 4.x system (sorry but I don't know for sure -- been so
long since I used 4.x). You can always check the Makefile in /etc/mail
to verify this.
The basic point is that you merely need to update your *.mc, rebuild it
into a proper *.cf, install and restart sendmail.
Cheers,
EB
More information about the freebsd-questions
mailing list