[Postfix-es] OT: Sasl + postfix
Israel Pérez
iperez en pacificstar.com.mx
Mar Ago 16 20:48:16 CEST 2005
el parametro
smtpd_sasl_security_options = noanonymous, noplaintext
en main.cf creo que esta impidiendo que liste la autenticacion PLAIN, el
default para este parametro es noanymous solamente, el problema de enviar
los datos de usuario en texto plano se soluciona habilitando TLS tambien.
Saludos.
----- Original Message -----
From: "Emiliano" <emiliano en climafin.com.ar>
To: "Israel Pérez" <iperez en pacificstar.com.mx>; <postfix-es en lists.wl0.org>
Sent: Tuesday, August 16, 2005 10:12 AM
Subject: Re: [Postfix-es] OT: Sasl + postfix
> pues este archivo lo tengo
> /usr/local/lib/sasl2/smtpd.conf
>
> pwcheck_method: auxprop
> auxprop_plugin: sql
> mech_list: plain login cram-md5 digest-md5
> sql_engine: mysql
> sql_hostnames: localhost
> sql_user: XX
> sql_passwd: XX
> sql_database: maildb
> sql_select: SELECT clear FROM users WHERE address = '%u'
>
> Mas datos:
> /var/log/auth
> Aug 16 11:41:05 rosario postfix/smtpd[18436]: sql auxprop plugin using
> mysql engine
> Aug 16 11:42:59 rosario postfix/smtpd[18492]: sql auxprop plugin using
> mysql engine
>
> y postfix me da este error
> /var/log/maillog
> Aug 16 11:41:05 rosario postfix/smtpd[29726]: warning:
> rosario.climafin.com.ar[127.0.0.1]: SASL PLAIN authentication failed
>
> Saludos, Emiliano.
> pd: la version de cyrus-sasl es la 2.1.21 por si acaso.
>
>
> ----- Original Message -----
> From: "Israel Pérez" <iperez en pacificstar.com.mx>
> To: "Emiliano" <emiliano en climafin.com.ar>; <postfix-es en lists.wl0.org>
> Sent: Tuesday, August 16, 2005 11:59 AM
> Subject: Re: [Postfix-es] OT: Sasl + postfix
>
>
>> existe un archivo /usr/local/lib/sasl2smtpd.conf para SASL donde le debes
>> especificar los mecanismos de autenticacion ahi debe aparecer PLAIN.
>>
>>
>> Saludos.
>> ----- Original Message -----
>> From: "Emiliano" <emiliano en climafin.com.ar>
>> To: <postfix-es en lists.wl0.org>
>> Sent: Tuesday, August 16, 2005 9:32 AM
>> Subject: [Postfix-es] OT: Sasl + postfix
>>
>>
>>> Buenas, este es un ot, porque creo que el problema lo tengo con SASL
>>> El tema es que no puedo obtener PLAIN autentificacion.
>>>
>>> Instalo cyrus-sasl -2.1.21
>>> ./configure --enable-sql --with-mysql=/usr --enable-login --without-pam
>>> make
>>> make install
>>>
>>> cuando hago un telnet:
>>>
>>> [root en rosario emiliano]# telnet localhost 25
>>> Trying 127.0.0.1...
>>> Connected to localhost.localdomain (127.0.0.1).
>>> Escape character is '^]'.
>>> 220 localhost.localdomain ESMTP Postfix
>>> ehlo localhost
>>> 250-localhost.localdomain
>>> 250-PIPELINING
>>> 250-SIZE 10240000
>>> 250-VRFY
>>> 250-ETRN
>>> 250-AUTH CRAM-MD5 DIGEST-MD5
>>> 250-AUTH=CRAM-MD5 DIGEST-MD5
>>> 250 8BITMIME
>>> quit
>>> 221 Bye
>>> Connection closed by foreign host.
>>>
>>> no tengo PLAIN autentificacion!!!
>>> ( ESTA LINEA, 250-AUTH CRAM-MD5 DIGEST-MD5 )
>>> si lo especifique ? que paso ?
>>>
>>>
>>> [root en rosario emiliano]# ls /usr/local/lib/sasl2
>>> libanonymous.la libdigestmd5.so.2 libotp.la libsasldb.so.2
>>> libanonymous.so libdigestmd5.so.2.0.21 libotp.so
>>> libsasldb.so.2.0.21
>>> libanonymous.so.2 libgssapiv2.la libotp.so.2 libsql.la
>>> libanonymous.so.2.0.21 libgssapiv2.so libotp.so.2.0.21
>>> libsql.so
>>> libcrammd5.la libgssapiv2.so.2 libplain.la libsql.so.2
>>> libcrammd5.so libgssapiv2.so.2.0.21 libplain.so
>>> libsql.so.2.0.21
>>> libcrammd5.so.2 liblogin.la libplain.so.2 smtpd.conf
>>> libcrammd5.so.2.0.21 liblogin.so libplain.so.2.0.21
>>> smtpd.conf.rpmsave
>>> libdigestmd5.la liblogin.so.2 libsasldb.la
>>> libdigestmd5.so liblogin.so.2.0.21 libsasldb.so
>>>
>>> mi postconf -n
>>>
>>> body_checks = regexp:/etc/postfix/body_checks
>>> broken_sasl_auth_clients = yes
>>> command_directory = /usr/sbin
>>> config_directory = /etc/postfix
>>> content_filter = smtp-amavis:[127.0.0.1]:10024
>>> daemon_directory = /usr/libexec/postfix
>>> debug_peer_level = 2
>>> header_checks = regexp:/etc/postfix/header_checks
>>> home_mailbox = Maildir/
>>> html_directory = /usr/share/doc/postfix-2.2.5-documentation/html
>>> local_recipient_maps = $alias_maps $virtual_mailbox_maps
>>> mail_owner = postfix
>>> mailbox_command = /usr/local/bin/maildrop -d "$USER" -f "$SENDER"
>>> "$EXTENSION"
>>> mailq_path = /usr/bin/mailq.postfix
>>> manpage_directory = /usr/share/man
>>> mydestination = $myhostname
>>> mydomain = xxx.com
>>> myhostname = test.xxx.com.ar
>>> myorigin = $mydomain
>>> newaliases_path = /usr/bin/newaliases.postfix
>>> queue_directory = /var/spool/postfix
>>> readme_directory = /usr/share/doc/postfix-2.2.5-documentation/readme
>>> receive_override_options = no_address_mappings
>>> sample_directory = /etc/postfix
>>> sendmail_path = /usr/sbin/sendmail.postfix
>>> setgid_group = postdrop
>>> smtpd_client_restrictions = permit_mynetworks, check_client_access
>>> mysql:/etc/postfix/virtual_dominios.cf
>>> smtpd_helo_required = yes
>>> smtpd_recipient_restrictions = permit_sasl_authenticated,
>>> permit_mynetworks, reject_unauth_destination,
>>> reject_unauth_pipelining, reject_unknown_sender_domain,
>>> reject_unknown_recipient_domain, reject_non_fqdn_recipient,
>>> reject_rbl_client relays.ordb.org, permit
>>> smtpd_sasl_auth_enable = yes
>>> smtpd_sasl_security_options = noanonymous, noplaintext
>>> transport_maps = mysql:/etc/postfix/transport.cf
>>> unknown_local_recipient_reject_code = 550
>>> virtual_alias_maps = mysql:/etc/postfix/virtual.cf
>>> virtual_gid_maps = static:5000
>>> virtual_mailbox_base = /home/dominios/
>>> virtual_mailbox_domains = mysql:/etc/postfix/virtual_dominios.cf
>>> virtual_mailbox_maps = mysql:/etc/postfix/mysql_virt.cf
>>> virtual_minimum_uid = 5000
>>> virtual_transport = maildrop:
>>> virtual_uid_maps = static:5000
>>>
>>> Alguna idea ?
>>> Gracias...Emiliano.
>>>
>>>
>>> _______________________________________________
>>> List de correo Postfix-es
>>> Postfix-es en lists.wl0.org
>>> http://lists.wl0.org/mailman/listinfo/postfix-es
>>
>>
>
>
Más información sobre la lista de distribución Postfix-es