You are not logged in.

Pages: 1

#1 2003-06-06 20:23:16

jemann.chen
Member
From: taiwan
Registered: 2003-06-06
Posts: 34

Postfix+Cyrus-sasl pwcheck not work?

(It work on RedHat 8.0 & Mandrake 9.0)

Linux box: Arch linux v0.4
Postfix v2.0.10 -> PKGBUILD:
...
make OPT="${CFLAGS}" CCARGS="-DUSE_SASL_AUTH -I/usr/include/sasl"
    AUXLIBS="-L/usr/lib/sasl2 -lsasl2" || return 1
...

Cyrus-sasl v2.1.13 -> PKGBUILD:
...
./configure --prefix=/usr --enable-login --disable-krb4 --disable-gssapi
  --enable-anon --with-pwcheck=/var/pwcheck --enable-plain

...

the pwcheck method don't work, error messengs:
---------
Jun  7 01:19:44 arch postfix/smtpd[8909]: connect from 2k-pro.xxx.xx[192.168.1.50]
Jun  7 01:19:44 arch postfix/smtpd[8909]: warning: SASL authentication failure: Userid not found
Jun  7 01:19:44 arch postfix/smtpd[8909]: warning: 2k-pro.xxx.xx[192.168.1.50]: SASL LOGIN authentication failed
Jun  7 01:19:45 arch postfix/smtpd[8909]: lost connection after AUTH from 2k-pro.xxx.xx[192.168.1.50]
Jun  7 01:19:45 arch postfix/smtpd[8909]: disconnect from 2k-pro.xxx.xx[192.168.1.50]
-----------
/usr/local/lib/sasl2/smtpd.conf:
pwcheck_method: pwcheck

/etc/postfix/main.cf:
...
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain = $myhostname
smtpd_recipient_restrictions = permit_sasl_authenticated, reject_unauth_destination
smtpd_client_restrictions = permit_sasl_authenticated
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes

/etc/postfix/master.cf:
smtp      inet  n       n       n       -       -       smtpd
...

the client is win 2k Pro with Outlook Express v6.00.2800.1123 & Forte Agent v1.91/32.654

I know to add "permit_mynetworks" to smtpd_recipient_restrictions that will not do AUTH, but I just to test it.
Sorry for my poor english(I come from Taiwan)

Offline

#2 2003-06-06 21:55:39

orelien
Forum Fellow
From: France
Registered: 2002-12-05
Posts: 220
Website

Re: Postfix+Cyrus-sasl pwcheck not work?

warning: SASL authentication failure: Userid not found

I don't know postfix and sasl enough to provide you a relevant answer.
I can only advice you to ask for postfix and sasl mailing lists (if not already done) what are the different circunstances leading to this error.
Based on that, it will be easier for us to know if your problem is related to Arch itself or to a wrong configuration, for instance.

Offline

#3 2003-06-06 22:56:58

jemann.chen
Member
From: taiwan
Registered: 2003-06-06
Posts: 34

Re: Postfix+Cyrus-sasl pwcheck not work?

orelien wrote:
warning: SASL authentication failure: Userid not found

I don't know postfix and sasl enough to provide you a relevant answer.
I can only advice you to ask for postfix and sasl mailing lists (if not already done) what are the different circunstances leading to this error.
Based on that, it will be easier for us to know if your problem is related to Arch itself or to a wrong configuration, for instance.

The same configuration worked on RedHat 8.0 & Mandrake 9.0  8)
Does anyone work for the condition?
In fact, I had ever search google and read a lot of doc, but only for RedHat/Mandrake/Debian/Slackware/Gentoo/FreeBSD... sad

Offline

#4 2003-06-07 09:45:30

jemann.chen
Member
From: taiwan
Registered: 2003-06-06
Posts: 34

Re: Postfix+Cyrus-sasl pwcheck not work?

/etc/postfix/main.cf
...
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain =
smtpd_recipient_restrictions = permit_sasl_authenticated, reject_unauth_destination
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtp_sasl_auth_enable = yes

/etc/postfix/master.cf
...
smtp      inet  n       -       n       -       -       smtpd
...

Offline

#5 2003-06-20 19:45:33

dariball
Member
From: Germany - Frankfurt
Registered: 2002-10-20
Posts: 118
Website

Re: Postfix+Cyrus-sasl pwcheck not work?

my 5 cents ....

there is a cyrus-sasl pkg in incoming, and there _was_ a postfix with cyrus support there

( btw. why is postfix _not_ compiled with Cyrus, WHO really uses postfix without authentification, in a productive enviroment?? )....

you should use "saslauthd" in your smtpd.conf in /usr/lib/sasl2
then start the saslauthdaemon : there is a rc.d script in the incoming pkg ....

then add folllowing to your main.cf from postfix : 

smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = $myhostname
broken_sasl_auth_clients = yes
smtpd_delay_reject = yes
smtpd_client_restrictions =
        permit_sasl_authenticated,
        permit_mynetworks,
        check_relay_domains

smtpd_recipient_restrictions =
        permit_mynetworks,
        permit_sasl_authenticated,
        permit_auth_destination,
        reject

smtpd_sasl_security_options = noanonymous

then start postfix ... and you should be able to auth on your smtp ....
(recently had a lot of trouble with it, if u have further problems just visit the irc channel, i'm there and can surely help u )

greetz

nothing,
maybe I have a perfect signature _someday_

Offline

Pages: 1

Board footer

Powered by FluxBB