----- Original Message ----- From: "H. Wade Minter" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, November 13, 2003 7:48 AM Subject: Postfix and SASL2 authentication
> -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > I've been able to get Postfix and SASL1 to authenticate to system accounts > under FreeBSD with no problem, but now I'm trying to use SASL2. I'm > running into problems. > > I built postfix and sasl2 from ports with no problems. I created > /usr/local/lib/sasl2/smtpd.conf: > > pwcheck_method: saslauthd > mech_list: plain login > > saslauthd is being run with the "-a getpwent" flags from /etc/rc.conf. > > Postfix is set up to use SASL: > > enable_sasl_authentication = yes > smtpd_sasl_auth_enable = yes > smtpd_sasl_security_options = noanonymous > smtpd_sasl_local_domain = $myhostname > broken_sasl_auth_clients = yes > > However, when I test with a base64-encoded username\0username\0password > string, it doesn't authenticate: > > Nov 13 07:46:29 taz postfix/smtpd[327]: < localhost[127.0.0.1]: AUTH PLAIN > bWludGVyAG1pbnRlcgBjaGFuZ2VtZQ== > Nov 13 07:46:29 taz postfix/smtpd[327]: smtpd_sasl_authenticate: > sasl_method PLAIN, init_response bWludGVyAG1pbnRlcgBjaGFuZ2VtZQ== > Nov 13 07:46:29 taz postfix/smtpd[327]: smtpd_sasl_authenticate: decoded > initial response minter > Nov 13 07:46:29 taz postfix/smtpd[327]: warning: SASL authentication > failure: Password verification failed > Nov 13 07:46:29 taz postfix/smtpd[327]: warning: localhost[127.0.0.1]: > SASL PLAIN authentication failed > Nov 13 07:46:29 taz postfix/smtpd[327]: > localhost[127.0.0.1]: 535 Error: > authentication failed > > Does anyone know what I'm doing wrong? Yep. I went through the same headache. See my post here: http://lists.freebsd.org/pipermail/freebsd-security/2003-July/000517.html Cheers, Drew _______________________________________________ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"