View Single Post
Old 17th January 2010, 13:12
aurasdoom aurasdoom is offline
Junior Member
Join Date: Jan 2010
Posts: 12
Thanks: 0
Thanked 0 Times in 0 Posts

Hm... I found the reason for:
Jan 17 02:49:41 wip postfix/local[5447]: 149681BCD111: to=<>, relay=local, delay=0.08, delays=0.01/0.06/0/0.01, dsn=5.1.1, status=bounced (unknown user: "emailuser")
The user emailuser doesn't exist on linux. If I add it:

Jan 17 15:06:26 wip postfix/local[28336]: 848591BCD137: to=<>, relay=local, delay=0.19, delays=0.04/0.1/0/0.06, dsn=2.0.0, status=sent (delivered to mailbox)
But obviously it goes to the mailbox of the linux user and not the virtual mailbox.

So here lies the problem. Which module handles this? And what's wrong with it's configuration? Note that before this I told ISPConfig to remake it's configuration files.

LE: The problem must be in SASL and in postfix. I'm running CentOS 5.4 i think (either this or 5.3) and the first thing I found is that the smtpd.conf file was not configured.
SASL's smtpd.conf file in centos is in /usr/lib/sasl2/smtpd.conf and ISPConfig tries to write /etc/postfix/sasl/smptd.conf
Anyway I configured them both properly.. I think:
Originally Posted by smtpd.conf
[root@wip saslauthd]# cat /etc/postfix/sasl/smtpd.conf
pwcheck_method: saslauthd
mech_list: plain login
allow_plaintext: true
auxprop_plugin: mysql
sql_hostnames: localhost
sql_user: ispconfig
sql_passwd: blablabla
sql_database: dbispconfig
sql_select: select password from mail_user where email = '%u'
Originally Posted by saslauthd
[root@wip saslauthd]# cat /etc/sysconfig/saslauthd
# Directory in which to place saslauthd's listening socket, pid file, and so
# on. This directory must already exist.

# Mechanism to use when checking passwords. Run "saslauthd -v" to get a list
# of which mechanism your installation was compiled with the ablity to use.

# Additional flags to pass to saslauthd on the command line. See saslauthd(8)
# for the list of accepted flags.
FLAGS="-n 2"
[root@wip saslauthd]# saslauthd -v
saslauthd 2.1.22
authentication mechanisms: getpwent kerberos5 pam rimap shadow ldap
Originally Posted by
readme_directory = /usr/share/doc/postfix-2.3.3/README_FILES
myhostname =
mynetworks = [::1]/128
virtual_alias_domains =
virtual_alias_maps = proxy:mysql:/etc/postfix/, mysql:/etc/postfix/
virtual_mailbox_domains = proxy:mysql:/etc/postfix/
virtual_mailbox_maps = proxy:mysql:/etc/postfix/
virtual_mailbox_base = /var/vmail
virtual_uid_maps = static:5000
virtual_gid_maps = static:5000
smtpd_authorized_xforward_hosts =
smtpd_sasl_auth_enable = yes
broken_sasl_auth_clients = yes
smtpd_sasl_authenticated_header = yes
smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, check_recipient_access mysql:/etc/postfix/, reject_unauth_destination
#smtpd_recipient_restrictions = permit_mynetworks, check_recipient_access pcre:/etc/postfix/, permit_sasl_authenticated, reject_unauth_destination
smtpd_use_tls = yes
smtpd_tls_security_level = may
smtpd_tls_cert_file = /etc/postfix/smtpd.cert
smtpd_tls_key_file = /etc/postfix/smtpd.key
transport_maps = proxy:mysql:/etc/postfix/
relay_domains = mysql:/etc/postfix/
virtual_create_maildirsize = yes
virtual_maildir_extended = yes
virtual_mailbox_limit_maps = proxy:mysql:/etc/postfix/
virtual_mailbox_limit_override = yes
virtual_maildir_limit_message = "The user you are trying to reach is over quota."
virtual_overquota_bounce = yes
proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $virtual_mailbox_limit_maps
smtpd_sender_restrictions = check_sender_access mysql:/etc/postfix/
smtpd_client_restrictions = check_client_access mysql:/etc/postfix/
maildrop_destination_concurrency_limit = 1
maildrop_destination_recipient_limit = 1
virtual_transport = maildrop
header_checks = regexp:/etc/postfix/header_checks
mime_header_checks = regexp:/etc/postfix/mime_header_checks
nested_header_checks = regexp:/etc/postfix/nested_header_checks
body_checks = regexp:/etc/postfix/body_checks
content_filter = amavis:[]:10024
receive_override_options = no_address_mappings
relayhost =
mailbox_size_limit = 0
message_size_limit = 0
Even later edit: I don't see anywhere in postfix to configure SASL parameters

Last edited by aurasdoom; 17th January 2010 at 14:00.
Reply With Quote