On Sat, Jan 12, 2019 at 05:36:11PM +0100, Flipchan wrote: > Hey, am tryin to upgrade my opensmtpd > email server running on openbsd 6.3 towards a new one on 6.4, > i have used a simple config with the new syntax: > cat /etc/mail/smtpd.conf > > table aliases file:/etc/mail/aliases > > #table other-relays file:/etc/mail/other-relays > > pki mail.example.com cert "/etc/ssl/mail.example.com.crt" > pki mail.example.com key "/etc/ssl/private/mail.example.com.key" > > listen on lo0 > listen on vio0 port 587 hostname example.com tls-require pki mail.example.com > auth mask-source > listen on vio0 port 25 hostname example.com tls pki mail.example.com > > action "mbox" mbox alias <aliases> > action "relay" relay > > match for local action "mbox" > match for any action "relay" > match from any for domain example.com action "mbox" > > > i cant login with a users regular username and passwd which is weird. > In the documentation it says that it is suppose to take regular user creds if > not a table is defined which it is not. > https://man.openbsd.org/smtpd.conf#listen_on > > "Users are authenticated against either their own normal login credentials > or a credentials table authtable, the format of which is described in > table(5)." > > Does anyone know what im doing wrong here? > > maillog: > Jan 12 16:47:49 host smtpd[95842]: XXXXXXXXXXXXXXX smtp connected address=ip > host=ip Jan 12 16:47:49 host > smtpd[95842]: XXXXXXXXXXXXXXX smtp starttls address=ip host=ip > ciphers="version=TLSv1.2, cipher=ECDHE-RSA-AES256-GCM-SHA384, bits=256" Jan > 12 16:47:49 host > smtpd[95842]: XXXXXXXXXXXXXXX smtp authentication user=user address=ip > host=ip result=permfail Jan 12 16:47:49 host > smtpd[95842]: XXXXXXXXXXXXXXX smtp failed-command address=ip host=ip > command="AUTH PLAIN (...)" result="535 Authentication failed" Jan 12 16:47:49 > host > smtpd[95842]: XXXXXXXXXXXXXXX smtp authentication user=user address=ip > host=ip result=permfail Jan 12 16:47:50 host > smtpd[95842]: XXXXXXXXXXXXXXX smtp failed-command address=ip host=ip > command="AUTH LOGIN (password)" result="535 Authentication failed" > > > Sincerely flipchan
works for me smtpd.conf listen on egress port 588 pki pkistuff auth openssl s_client -connect host:588 -starttls smtp lots of output... 250 HELP ehlo laptop.my.domain 250-host Hello laptop.my.domain [ip], pleased to meet you 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-SIZE 36700160 250-DSN 250-AUTH PLAIN LOGIN 250 HELP auth plain "base64 encoded user/password" 235 2.0.0: Authentication succeeded quit 221 2.0.0: Bye maillog Jan 12 13:08:15 mail smtpd[37141]: cbd466550ed95895 smtp connected address=ip host=<unknown> Jan 12 13:08:15 mail smtpd[37141]: cbd466550ed95895 smtp tls ciphers=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256 Jan 12 13:08:37 mail smtpd[37141]: cbd466550ed95895 smtp authentication user=edgar result=ok Jan 12 13:09:49 mail smtpd[37141]: cbd466550ed95895 smtp disconnected reason=quit