Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > Linux Forums > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 3rd December 2007, 07:17
leblanc leblanc is offline
Junior Member
 
Join Date: Sep 2007
Posts: 14
Thanks: 0
Thanked 0 Times in 0 Posts
Default postfix smtp authentication; permission to relay

Problem:
By enabling sasl by default it uses local accounts.
I want to test using hash:/etc/postfix/postgresql/smtp_sasl_passwd.cf
once that is working i want to move to pgsql:/....samepath

I've created the smtp_sasl_passwd.cf.db file already.



I disabled sasl in main.cf and successfully relayed anonymously.
When i enable sasl in main.cf it correctly denies users attempting to relay anonymously.
Quote:
Dec 2 22:39:49 linux-server postfix/smtpd[1442]: disconnect from unknown[192.168.1.1]
Dec 2 22:39:49 linux-server postfix/smtp[1503]: fatal: specify a password table via the `smtp_sasl_password_maps' configuration parameter


I specified the following in main.cf
smtp_sasl_password_maps = hash:/etc/postfix/postgresql/smtp_sasl_passwd.cf

but it doesn't seem to be using that to authenticate users... instead it uses local accounts. so where else do i need to specify to use my hash password table?

smtp.conf
PHP Code:
pwcheck_methodsaslauthd
mech_list
plain login 

what are these other sasl* binaries?
PHP Code:
linux-server:/home/vmailuser/mailboxes/mixhacks.com/leblanc.meneses/new # ls /usr/sbin/ | grep sasl
saslauthd
sasldblistusers2
saslpasswd2
testsaslauthd


#currently running sasl binary
linux-server:/home/vmailuser/mailboxes/mixhacks.com/leblanc.meneses/new # ps -ax | grep sasl
Warningbad ps syntaxperhaps a bogus '-'See http://procps.sf.net/faq.html
 
2979 ?        Ss     0:00 /usr/sbin/saslauthd -a pam -n 5
 2980 
?        S      0:00 /usr/sbin/saslauthd -a pam -n 5
 2981 
?        S      0:00 /usr/sbin/saslauthd -a pam -n 5
 2982 
?        S      0:00 /usr/sbin/saslauthd -a pam -n 5
 2983 
?        S      0:00 /usr/sbin/saslauthd -a pam -n 5
 3846 pts
/7    R+     0:00 grep sasl 
Reply With Quote
Sponsored Links
  #2  
Old 3rd December 2007, 09:09
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 35,983
Thanks: 825
Thanked 5,372 Times in 4,219 Posts
Default

Hi,

please have a look at one of the "Virtual Users And Domains With Postfix" howtos here at howtoforge. They are available for several linux distributions. The howtos contain the configuration of sasl for mysql based users.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #3  
Old 3rd December 2007, 15:13
leblanc leblanc is offline
Junior Member
 
Join Date: Sep 2007
Posts: 14
Thanks: 0
Thanked 0 Times in 0 Posts
Default

I would really like to understand what i'm doing rather than type lots of commands without any explanation.

Example many of the articles lack ways to incrementally test the server. What ends up happening is the user completes the article and nothing works.. whoops! An email article should use local accounts to show the theory and remove dependencies which add an extra layer of difficulty.. database .. once the user gets local accounts working transitioning to a database would be much easier.

Also lack of explanation. whats the difference of all these binaries?
saslauthd
sasldblistusers2
saslpasswd2
testsaslauthd

just a note these are different in different OS. Some articles have better explanation but commands are different.

I know it has to do with pwcheck_method: saslauthd inside smtp.conf

I can send mail, receive, using posgresql backend. I'm missing relay and courier configurations.

I would really like a better answer than just RTFM.

Last edited by leblanc; 3rd December 2007 at 15:16.
Reply With Quote
  #4  
Old 3rd December 2007, 15:29
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 35,983
Thanks: 825
Thanked 5,372 Times in 4,219 Posts
Default

What you want to know is described in the documentation of the packages and the manpages. You should visit the homepages of the different software projects for this. It is not the function of a howto to copy the content of the software documentation. The function of a howto is to provide a easy to follow solution for a problem.

If you dont want a solution for your problem, then you should not read the howto of course
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #5  
Old 3rd December 2007, 18:18
leblanc leblanc is offline
Junior Member
 
Join Date: Sep 2007
Posts: 14
Thanks: 0
Thanked 0 Times in 0 Posts
Default

wow no insight. what a moderator, what a troll
what is the purpose of these forums?


good riddance to this community



only trolls delete messages.
Reply With Quote
  #6  
Old 3rd December 2007, 20:13
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 35,983
Thanks: 825
Thanked 5,372 Times in 4,219 Posts
 
Default

Quote:
wow no insight. what a moderator, what a troll
By the way, its not my tutorial I dont comment on the last comment.

Quote:
what is the purpose of these forums?
To ask questions about linux. I answered your question in post #2. Sorry that I did not quote the complete tutorial and that I did not copy the SASL documentation into this post too.

Quote:
only trolls delete messages.
Who deleted a message in which thread?
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Mail server attack princebenin Server Operation 1 19th November 2007 14:02
Centos 4.4 32bit Hangs, High Server load 3cwired_com Server Operation 11 16th November 2006 15:47
Verify email setup meekish Installation/Configuration 28 27th October 2006 15:36
smtp authentication (postfix and courier imap) chrno Installation/Configuration 1 8th May 2006 21:22
Postfix - SMTP - authentication failed Hans Server Operation 4 2nd April 2006 10:30


All times are GMT +2. The time now is 09:54.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.