From: Roberto Sanchez (no email)
Date: Wed Oct 01 2003 - 10:04:42 EDT
Patrick Ben Koetter wrote:
> Hi,
>
Hi,
Thanks for quick reply.
> just for the books, can you send in a 'ldd /usr/sbin/postfix' to check
> what SASL Postfix was compiled with?
>
# ldd /usr/sbin/postfix
libpostfix-global.so.1 => /usr/lib/libpostfix-global.so.1
(0x40017000)
libpostfix-util.so.1 => /usr/lib/libpostfix-util.so.1 (0x4002f000)
libgdbm.so.1 => /usr/lib/libgdbm.so.1 (0x4004e000)
libdb3.so.3 => /usr/lib/libdb3.so.3 (0x40054000)
libnsl.so.1 => /lib/libnsl.so.1 (0x400fc000)
libresolv.so.2 => /lib/libresolv.so.2 (0x40110000)
libc.so.6 => /lib/libc.so.6 (0x40120000)
libdl.so.2 => /lib/libdl.so.2 (0x4023d000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
That seems kind of strange to me since I have postfix-tls installed on
the sytsem (Debian Woody) which has this description:
# apt-cache show postfix-tls
<snip>
Description: TLS and SASL support for Postfix
This package adds support for TLS (see RFC 2487) and SASL (see RFC
2554) to
Postfix.
> * Roberto Sanchez <> [031001 05:27]:
>
>>/usr/lib/sasl/smtpd.conf:
>>pwcheck_method:shadow
>>
>>[This is also symlinked to /usr/lib/sasl2/smtpd.conf and
>>/etc/postfix/sasl/smtpd.conf]
>>I have also tried pwcheck and saslauthd with identical results.
>
>
> did you start saslauthd with options? My Howto presumes that you use
> Tuomo's init-script which adds them automatically:
>
> If not, then start saslauthd this way:
>
> /usr/sbin/saslauthd -m /var/run/saslauthd/mux -a shadow
>
In the Debian package, /etc/init.d/saslauthd reads in
/etc/defaults/saslauthd, which contains:
# This needs to be uncommented before saslauthd will be run automatically
START=yes
# You must specify the authentication mechanisms you wish to use.
# This defaults to "pam" for PAM support, but may also include
# "shadow" or "sasldb"
MECHANISMS=shadow
> Make sure that /var/run/saslauthd exists and that the permissions are:
>
> drwxr-xr-x 2 root root 4096 Mar 24 2003 .
> drwxr-xr-x 8 root root 4096 Sep 30 22:11 ..
> srwxrwxrwx 1 root root 0 Mar 24 2003 mux
> -rw------- 1 root root 0 Mar 24 2003 mux.accept
> -rw------- 1 root root 4 Mar 24 2003 mux.pid
>
# ll -a /var/run/saslauthd/
total 12k
drwx------ 2 root root 4.0k Sep 30 20:31 .
drwxr-xr-x 6 root root 4.0k Oct 1 06:25 ..
srwxrwxrwx 1 root root 0 Sep 30 20:31 mux
-rw------- 1 root root 0 Sep 30 13:50 mux.accept
-rw------- 1 root root 6 Sep 30 20:31 mux.pid
> Before you start saslauthd change /usr/lib/sasl2/smtpd.conf to:
>
> pwcheck_method: saslauthd
>
I just tried that and am still getting a 535 error.
>
>>/etc/postfix/main.cf:
>>smtpd_sasl_auth_enable = yes
>>broken_sasl_auth_clients = yes
>>smtpd_sasl_local_domain =
>>smtpd_sasl_security_options = noanonymous
>>smtpd_recipient_restrictions = permit_sasl_authenticated,
>>permit_mynetworks, permit_tls_client_certs, reject_unauth_destination,
>>check_relay_domains, permit
>
>
> OK.
>
>
>>/etc/postfix/master.cf:
>>smtp inet n n n - - smtpd -v
>
>
> OK.
>
>
-Roberto
|
|
|