On Fri, Jun 02, 2000 at 01:31:21PM +0200, Jaume Teixi wrote: > I'm testing sendmail on frozen dist > What I need to setup in order to get SMTP AUTH running ? > > I've put "pwcheck_method: passwd" on Sendmail.conf and on > saslpasswd.conf, > but still users' cannot autenticate their smtp's > > I need to add any entry on my sendmail.mc ? > > thanks and bests,
Wow. Where to begin. You'll need sendmail and libsasl. Sendmail will need to be linked to/use sasl. I didnt use a package, I put the following in my /sendmail-8.10.0/devtools/Site/site.config.m4 APPENDDEF(`confENVDEF', `-DSASL') APPENDDEF(`conf_sendmail_LIBS', `-lsasl') After I built sendmail, I set it up to use smtp auth by adding the following to my sendmai.mc to enable the needed auth mechanisms. TRUST_AUTH_MECH(`DIGEST-MD5 CRAM-MD5 PLAIN LOGIN') define(`confAUTH_MECHANISMS', `GSSAPI DIGEST-MD5 LOGIN PLAIN') Please note. This was just a test/educational thing for me. Unless you wrap the auth in ssl, LOGIN and PLAIN are very insecure. There's lots of FAQ type stuff available for this. I was just seeing if I could get smtp auth to work against my ldap database. I did. After I decide on how to deal with the ssl issue, I may proceed. I'm thinking of maybe a second mail server that runs an ssl wraped sendmail may do the trick. Unfortunately, it wont instantly support all clients. You really need to research what you want to support and act acordingly. Otherwise you're going to have a lot of password files to keep synchronized... Good luck. If you need more info, I'll see if I can dig up my notes and urls. The RFC for smtp auth is a good starting point. -- Mental GPG 1.0.1 Public Key: http://www.neverlight.com/mental-gpg.asc
