Secure SMTP not working?

Discussion in 'HOWTO-Related Questions' started by binjured, Jun 13, 2006.

  1. binjured

    binjured New Member

    Reference: http://www.howtoforge.com/virtual_postfix_mysql_quota_courier

    Okay, I am finally getting things setup... however, secure smtp refuses to work right now. I can use regular smtp just fine, but secure simply hangs in Evolution and won't deliver mail (no error). The mail.log file gives no indication of an attempted connection. My netstat -tap has this entry twice:
    Code:
    tcp6       0      0 *:ssmtp                 *:*                     LISTEN     21597/master
    So it seems to me that postfix is "listening", I am just not sure on which port (assumed 465?). I am not sure what else could be the problem.
     
  2. binjured

    binjured New Member

    After doing what I believe was... uhhh.... nothing I can now connect, but I can't authenticate :(
    Code:
    Jun 12 23:21:53 toolbox postfix/smtpd[21652]: warning: SASL authentication failure: cannot connect to saslauthd server: Permission denied
    Jun 12 23:21:53 toolbox postfix/smtpd[21652]: warning: SASL authentication failure: Password verification failed
    Jun 12 23:21:53 toolbox postfix/smtpd[21652]: warning: <ip address>[<ip address>]: SASL PLAIN authentication failed
    
     
    Last edited: Jun 13, 2006
  3. binjured

    binjured New Member

    Back again! Not sure what the hell I did, I think I added root to the group sasl or something, anyway now I get this nice one :(

    Code:
    Jun 12 23:41:12 toolbox postfix/smtpd[21849]: warning: SASL authentication failure: cannot connect to saslauthd server: No such file or directory
    Jun 12 23:41:12 toolbox postfix/smtpd[21849]: warning: SASL authentication failure: Password verification failed
    Jun 12 23:41:12 toolbox postfix/smtpd[21849]: warning: <ip address>[<ip address>]: SASL PLAIN authentication failed
    Jun 12 23:41:14 toolbox postfix/smtpd[21849]: disconnect from <ip address>[<ip address>]
    
    I have read quite a few solutions, but all of them were already handled by the tutorial and I went ahead and confirmed everything (as far as I can tell).
     
  4. falko

    falko Super Moderator Howtoforge Staff Moderator HowtoForge Supporter ISPConfig Developer

    I guess you didn't configure saslauthd to run from within Postfix's chroot jail?
     
  5. binjured

    binjured New Member

    Near as I can tell, I did! What else am I missing? I can connect and authorize with the pop3d-ssl server perfectly fine, I just can't send mail...

    The thing that pisses me off more than anything is that secure SMTP was working perfectly fine before I had to restart the server, now suddenly only plain/TLS works.
     
    Last edited: Jun 16, 2006
  6. falcon5

    falcon5 New Member

    What about:

    /etc/postfix/sasl/smtpd.conf:
    pwcheck_method: saslauthd auxprop
    mech_list: plain login
    allow_plaintext: true
    auxprop_plugin: sql
    sql_engine: mysql
    sql_hostnames: localhost
    sql_user: ***
    sql_passwd: ***
    sql_database: ***
    sql_select: select password from users where email = '%u'
    sql_verbose: yes

    and:
    /etc/default/saslauthd:
    # This needs to be uncommented before saslauthd will be run automatically
    START=yes

    # You must specify the authentication mechanisms you wish to use.
    # This defaults to "pam" for PAM support, but may also include
    # "shadow" or "sasldb", like this:
    # MECHANISMS="pam shadow"

    MECHANISMS="pam"
    PARAMS="/var/spool/postfix/var/run/saslauthd -r"

    Just give it a try, don't know if it will solve the problem
     

Share This Page