Sendmail as client via smarthost and ssl

Vincent Hoffman vince at unsane.co.uk
Fri Oct 29 15:36:14 UTC 2010


On 29/10/2010 14:49, Christopher Illies wrote:
> Thanks for your explanations, Vince. It got me one step further (I think).
>
> <...>
> Ok, when I use telnet, this happens:
>> telnet send.ki.se 587
> Trying 130.xxx.xxx.26...
> Connected to send.ki.se.
> Escape character is '^]'.
> 220 KIMSX09.user.ki.se Microsoft ESMTP MAIL Service ready at Fri, 29 Oct 2010 14:55:51 +0200
> EHLO
> 250-KIMSX09.user.ki.se Hello [136.xxx.xxx.214]
> 250-SIZE 10485760
> 250-PIPELINING
> 250-DSN
> 250-ENHANCEDSTATUSCODES
> 250-STARTTLS
> 250-AUTH GSSAPI NTLM      <<<<<<<
> 250-8BITMIME
> 250-BINARYMIME
> 250 CHUNKING
>
>
> Although I have no idea what GSSAPI and NTLM are, I remembered that I have
> seen these abbreviations before: NTLM is an OPTION for cyrus-sasl2, and yes,
> it is compiled in (WITH_NTLM=true). And GSSAPI appeared first in the mc file:
>
> define(`confAUTH_MECHANISMS', `EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
>
> So I changed the authinfo/client-info file to:
>
> AuthInfo:[send.ki.se] "U:smmsp" "I:XXX" "P:YYY" "M:GSSAPI"
>
> Still, it does not work:
>
> <<< 530 5.7.1 Client was not authenticated
I'd guess from here that the microsoft mail server (i'd say exchange but
its part of IIS these days i think) is being awkward. GSSAPI is kerberos
related i believe, NTLM is a windows method from what i remember. I'm
not familiar with either i'm afraid.

Vince
 
> Christopher
>



More information about the freebsd-questions mailing list