Thanks for your reply Dave!
replaced my junk in sasl2/smtpd.conf with yours (changed mysql user & pw
:-)
added the line to main.cf
and the /var/log/maillog output is:
----------------
Oct 18 14:00:12 smtp postfix/smtpd[4786]: warning: SASL authentication
problem: unable to open Berkeley db /etc/sasldb2: No such file or
directory
Oct 18 14:00:12 smtp last message repeated 3 times
Oct 18 14:00:12 smtp postfix/smtpd[4786]: warning: SASL authentication
failure: Password verification failed
---------------
now why SASL is looking for a Berkely db is above me
could it be my /etc/pam.d/smtp which is broken? (see way below)
(I dream of walkthroughs, complete docs and compatible methods :-)))
thanks for all
Alex
On Mon, 2004-10-18 at 13:21, David Rebarchik wrote:
> the part after the @ is split off to become the realm. You need to set up
> saslauthd to use the realm and then add it back in when querying the database.
>
> I've got my setup to use the auxprop.
> My sasl2/smtpd.conf is:
> sasl_pwcheck_method: auxprop
> sasl_auxprop_plugin: mysql
> sasl_auto_transition: no
> sasl_mech_list: PLAIN LOGIN, CRAM-MD5
> sql_user: ****
> sql_passwd:****
> sql_hostnames: localhost
> sql_database: dbmail
> sql_statement: select passwd from users
> where userid = IF('%r'='dbmail','%u','[EMAIL PROTECTED]')
> (no return in the sql statement, added for line wrap in the e-mail)
>
> and in my main.cf for postfix is
> smtpd_sasl_local_domain = dbmail
> (and a few more lines that I you already have)
>
> Hope it helps....
>
> Dave
>
>
> Quoting Alex Broens <[EMAIL PROTECTED]>:
>
> > Good Day,
> >
> > DBmail 2.0 / Fedora Core2 .
> > Imap & Pop are working fine
> >
> > trying got get to get SASL to work for SMTP auth.
> > (its a test box)
> >
> > userid is [EMAIL PROTECTED]
> >
> > Postfix main.cf
> > ---------------
> > local_recipient_maps = mysql:/etc/postfix/sql-recipients.cf
> > #
> > broken_sasl_auth_clients = yes
> > smtpd_sasl_auth_enable = yes
> > smtpd_sasl_security_options = noanonymous
> > smtpd_sasl_local_domain =
> > smtpd_recipient_restrictions =
> > permit_sasl_authenticated,reject_unauth_destination
> > check_recipient_access = permit_sasl_authenticated,check_relay_domains
> > ---------------
> >
> >
> >
> > /etc/postfix/sql-recipients.cf
> > ----------------
> >
> > user = <username>
> > password = <password>
> > hosts = <dbhost>
> > dbname = <dbname>
> > table = dbmail_users
> > select_field = userid
> > where_field = userid
> > -------------------------------------------
> >
> > /etc/pam.d/smtp
> > ---
> >
> > auth required pam_mysql.so user=dbmail passwd=dbmail
> > host=localhost
> > db=dbmail table=dbmail_users usercolumn=userid passwdcolumn=passwd
> > crypt=0
> >
> > --------------------------------------------
> > /var/log/messages:
> >
> >
> > Oct 18 09:05:01 smtp saslauthd[2258]: pam_sm_authenticate called.
> > Oct 18 09:05:01 smtp saslauthd[2258]: dbuser changed.
> > Oct 18 09:05:01 smtp saslauthd[2258]: dbpasswd changed.
> > Oct 18 09:05:01 smtp saslauthd[2258]: host changed.
> > Oct 18 09:05:01 smtp saslauthd[2258]: database changed.
> > Oct 18 09:05:01 smtp saslauthd[2258]: table changed.
> > Oct 18 09:05:01 smtp saslauthd[2258]: usercolumn changed.
> > Oct 18 09:05:01 smtp saslauthd[2258]: passwdcolumn changed.
> > Oct 18 09:05:01 smtp saslauthd[2258]: crypt changed.
> > Oct 18 09:05:01 smtp saslauthd[2258]: db_connect called.
> > Oct 18 09:05:01 smtp saslauthd[2258]: returning 0 .
> > Oct 18 09:05:01 smtp saslauthd[2258]: db_checkpasswd called.
> > Oct 18 09:05:01 smtp saslauthd[2258]: pam_mysql: where clause =
> > Oct 18 09:05:01 smtp saslauthd[2258]: SELECT passwd FROM dbmail_users
> > WHERE userid='jd'
> > Oct 18 09:05:01 smtp saslauthd[2258]: pam_mysql: select returned more
> > than one resultOct 18 09:05:01 smtp saslauthd[2258]: returning 7 after
> > db_checkpasswd.
> > Oct 18 09:05:01 smtp saslauthd[2258]: do_auth : auth failure:
> > [user=jd] [service=smtp] [realm=] [mech=pam] [reason=PAM auth error]
> >
> > ----------------------------
> >
> > can someone give me a hint why [user=] is not seeing the @domain.tld?
> > or is there a better way to implement smtp auth?
> >
> > happily driving me nuts!
> >
> > thanks
> >
> > Alex
> >
> >
> >
> > _______________________________________________
> > Dbmail mailing list
> > [email protected]
> > https://mailman.fastxs.nl/mailman/listinfo/dbmail
> >
>
>
>
