Re: SASL2 Config File

From: Patrick Ben Koetter (p at state-of-mind dot de)
Date: Wed Sep 01 2004 - 19:02:56 EDT

• Next message: Voytek: "Re: OT: body-check false attachement rejects, what trips it ?"
• Previous message: Alex van den Bogaerdt: "Re: smtpd_delay_reject - did I miss something?"
• Maybe in reply to: Ian Chilton: "SASL2 Config File"
• Next in thread: Ian Chilton: "Re: SASL2 Config File"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

* Ian Chilton <> [040901 14:20]:
> Hi,
>
> > ./configure --prefix=/usr/local/sasl2 .......
>
> I used the Debian package rather than compiled myself.
>
>
> > /usr/local/sasl2/sbin/saslauthd -a shadow

>
> Interesting - I have not had to use saslauthd - do I need to?

Yes, only saslauthd can access (root!) /etc/shadow and /etc/passwd.

Your /etc/postfix/sasl/smtpd.conf should look like this:

pwcheck_method: saslauthd
mech_list: PLAIN LOGIN

mech_list is required because saslauthd only supports plaintext
mechanisms. If you don't set it SASL will have Postfix offer ALL
available mechanisms and you can start counting until the first users
calls you up to tell that SMTP AUTH doesn't work anymore...

p at rick

-- 
I take the freedom to ignore offlist messages. Open Source software
requires open access to information that tells all of us how to run it.
Don't deprive the community of that!
SMTP AUTH HOWTO: <http://postfix.state-of-mind.de/patrick.koetter/>

• Next message: Voytek: "Re: OT: body-check false attachement rejects, what trips it ?"
• Previous message: Alex van den Bogaerdt: "Re: smtpd_delay_reject - did I miss something?"
• Maybe in reply to: Ian Chilton: "SASL2 Config File"
• Next in thread: Ian Chilton: "Re: SASL2 Config File"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]