[no subject]
- From: admin@xxxxxxxxx
- Date: Sun, 18 Sep 2005 21:55:25 +0300 (EEST)
- Delivered-to: lug-bg-list@xxxxxxxxxxxxxxxxxx
subject; Postfix + pam_mysql+saslauthd - SASL LOGIN authentication failed
Zdraveite grupa
Imam edno malko problemche s Postfix-a
Dava mi slednata greshka:
Ako niakoi polzva Postfix + pam_mysql+saslauthd moje i da e imal takav problem....
Tova se sluchva kato se opitam da pratia poshta ot moia SMTP pri prashtaneto se iziskva user authentication
Blagodaria na vsichki
Leka
Krasimir Kovachki
icq# 4987601
syslog:
Sep 18 21:12:54 coprobot postfix/smtpd[22832]: warning: server.com[00.00.00.00]: SASL LOGIN authentication failed
Sep 18 21:12:54 coprobot postfix/smtpd[22832]: disconnect from server.com[[00.00.00.00]
Sep 18 21:12:55 coprobot postfix/smtpd[22832]: connect from server.com[[00.00.00.00]
Sep 18 21:12:56 coprobot postfix/smtpd[22832]: warning: SASL authentication failure: cannot connect to saslauthd server: Permission denied
master.cf
# only used by postfix-tls
smtp inet n - n - - smtpd -o smtpd_tls_wrappermode=no -o smtpd_sasl_auth_enable=yes
#587 inet n - n - - smtpd -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes
--------------------------------------------------------
postconf -n
access_map_reject_code = 550
alias_database = hash:/etc/postfix/aliases
alias_maps = $alias_database
allow_mail_to_commands = alias
append_dot_mydomain = no
body_checks = regexp:/etc/postfix/body_checks
bounce_queue_lifetime = 24h
bounce_size_limit = 1024
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/lib/postfix
debug_peer_list = 127.0.0.1
default_process_limit = 1000
disable_vrfy_command = yes
header_checks = regexp:/etc/postfix/header_checks
inet_interfaces = all
invalid_hostname_reject_code = 550
mail_owner = postfix
mailq_path = /usr/bin/mailq
maps_rbl_domains = blackholes.five-ten-sg.com, t1.dnsbl.net.au, dnsbl.sorbs.net, sbl-xbl.spamhaus.org, relays.ordb.org, opm.blitzed.org, list.dsbl.org, dul.ru,
maps_rbl_reject_code = 550
maximal_backoff_time = 600s
maximal_queue_lifetime = 96h
message_size_limit = 20480000
minimal_backoff_time = 300s
mydestination = $myhostname
mydomain = server.com
myhostname = server.com
mynetworks = 127.0.0.0/8
myorigin = $mydomain
newaliases_path = /usr/bin/newaliases
non_fqdn_reject_code = 550
proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks proxy:mysql:/etc/postfix/login_sender_match.mysql
qmqpd_authorized_clients = $mynetworks
queue_directory = /var/spool/postfix
queue_minfree = 40960000
relay_domains = server.com
relay_domains_reject_code = 550
relay_recipient_maps = $virtual_alias_maps
relay_transport = lmtp:unix:/var/run/cyrus/socket/lmtp
sendmail_path = /usr/sbin/sendmail
setgid_group = postdrop
show_user_unknown_table_name = no
smtpd_banner = $myhostname ESMTP Smuggler (NO UCE)(NO UBE)
smtpd_client_restrictions = regexp:/etc/postfix/ip_whitelist.regexp reject_unauth_pipelining, reject_rbl_client dnsbl.isoc.bg, reject_rbl_client bl.spamcop.net, reject_rbl_client dnsbl.njabl.org, reject_rbl_client blacklist.spambag.org
smtpd_delay_reject = no
smtpd_helo_required = yes
smtpd_helo_restrictions = permit_mynetworks, reject_rbl_client dnsbl.isoc.bg, reject_rbl_client bl.spamcop.net, reject_rbl_client dnsbl.njabl.org, reject_rbl_client blacklist.spambag.org
smtpd_recipient_limit = 100
smtpd_recipient_restrictions = permit_sasl_authenticated, reject_unknown_recipient_domain, reject_non_fqdn_recipient, reject_unknown_address, hash:/etc/postfix/protected_destinations, regexp:/etc/postfix/protected_destinations_regexp, reject_unauth_destination
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
smtpd_sender_login_maps = proxy:mysql:/etc/postfix/login_sender_match.mysql
smtpd_sender_restrictions = hash:/etc/postfix/access, regexp:/etc/postfix/patterns_sender, reject_unknown_sender_domain, reject_non_fqdn_sender, reject_rbl_client dnsbl.isoc.bg, reject_rbl_client bl.spamcop.net, reject_rbl_client dnsbl.njabl.org, reject_rbl_client blacklist.spambag.org, reject_sender_login_mismatch
soft_bounce = no
strict_rfc821_envelopes = yes
swap_bangpath = no
transport_maps = hash:/etc/postfix/transport
unknown_address_reject_code = 550
unknown_client_reject_code = 550
unknown_hostname_reject_code = 550
unknown_local_recipient_reject_code = 550
virtual_alias_maps = hash:/etc/postfix/virtual proxy:mysql:/etc/postfix/relay_recipients.mysql
virtual_transport = lmtp:/var/run/cyrus/socket/lmtp
----------------------------------------------------------------------------------------
coprobot:/etc/postfix# ldd /usr/lib/postfix/smtpd
libpostfix-master.so.1 => /usr/lib/libpostfix-master.so.1 (0x4001e000)
libpostfix-tls.so.1 => /usr/lib/libpostfix-tls.so.1 (0x40025000)
libpostfix-dns.so.1 => /usr/lib/libpostfix-dns.so.1 (0x40031000)
libpostfix-global.so.1 => /usr/lib/libpostfix-global.so.1 (0x40036000)
libpostfix-util.so.1 => /usr/lib/libpostfix-util.so.1 (0x4005e000)
libssl.so.0.9.7 => /usr/lib/i686/cmov/libssl.so.0.9.7 (0x40085000)
libcrypto.so.0.9.7 => /usr/lib/i686/cmov/libcrypto.so.0.9.7 (0x400b7000)
libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0x401b9000)
libdb-4.2.so => /usr/lib/libdb-4.2.so (0x401ce000)
libnsl.so.1 => /lib/libnsl.so.1 (0x402a4000)
libresolv.so.2 => /lib/libresolv.so.2 (0x402b8000)
libc.so.6 => /lib/libc.so.6 (0x402ca000)
libdl.so.2 => /lib/libdl.so.2 (0x403e5000)
/lib/ld-linux.so.2 (0x40000000)
Sasl testa minava
coprobot:/etc/postfix# strace testsaslauthd -u jacki@xxxxxxxxxx -p password
execve("/usr/sbin/testsaslauthd", ["testsaslauthd", "-u", jacki@xxxxxxxxxx, "-p", "password"], [/* 19 vars */]) = 0
uname({sys="Linux", node="coprobot", ...}) = 0
brk(0) = 0x804a81c
access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
access("/etc/ld.so.preload", R_OK) = -1 ENOENT (No such file or directory)
open("/etc/ld.so.cache", O_RDONLY) = 3
fstat64(3, {st_mode=S_IFREG|0644, st_size=23520, ...}) = 0
old_mmap(NULL, 23520, PROT_READ, MAP_PRIVATE, 3, 0) = 0x40017000
close(3) = 0
access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
open("/lib/libresolv.so.2", O_RDONLY) = 3
read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0p$\0\000"..., 512) = 512
fstat64(3, {st_mode=S_IFREG|0644, st_size=59212, ...}) = 0
old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x4001d000
old_mmap(NULL, 71848, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x4001e000
old_mmap(0x4002c000, 8192, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0xd000) = 0x4002c000
old_mmap(0x4002e000, 6312, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x4002e000
close(3) = 0
access("/etc/ld.so.nohwcap", F_OK) = -1 ENOENT (No such file or directory)
open("/lib/libc.so.6", O_RDONLY) = 3
read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\320T\1"..., 512) = 512
fstat64(3, {st_mode=S_IFREG|0755, st_size=1142620, ...}) = 0
old_mmap(NULL, 1152436, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) = 0x40030000
old_mmap(0x40143000, 16384, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x112000) = 0x40143000
old_mmap(0x40147000, 9652, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x40147000
close(3) = 0
mprotect(0x40143000, 4096, PROT_READ) = 0
munmap(0x40017000, 23520) = 0
fstat64(1, {st_mode=S_IFCHR|0620, st_rdev=makedev(136, 3), ...}) = 0
old_mmap(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x40017000
socket(PF_FILE, SOCK_STREAM, 0) = 3
connect(3, {sa_family=AF_FILE, path="/var/run/saslauthd/mux"}, 110) = 0
writev(3, [{"\0\25jacki@xxxxxxxxxx\0\5password\0\4"..., 38}], 1) = 38
read(3, "\0\2", 2) = 2
read(3, "OK", 2) = 2
close(3) = 0
write(1, "0: OK \"Success.\"\n", 170: OK "Success."
) = 17
munmap(0x40017000, 4096) = 0
exit_group(0)
------------------------------------------------------
coprobot:/var/run/saslauthd# ls -ls
total 16396
0 -rw------- 1 root root 0 Sep 17 19:24 cache.flock
16392 -rw------- 1 root root 16783360 Sep 17 19:24 cache.mmap
0 srwxrwxrwx 1 root root 0 Sep 17 19:24 mux
4 -rw------- 1 root root 5 Sep 17 19:24 saslauthd.pid
--------------------------------------------------
|