You have right, I added 'noplaintext'. But main thing what I want to get -
no cram-md5 in dovecot and ability to send emails. All worked fine until I
set in dovecot.conf:
auth_mechanisms = plain login cram-md5
passdb {
#args = /etc/dovecot/dovecot-sql.conf
#driver = sql
driver = passwd-file
args = scheme=cram-md5 /etc/dovecot/cram-md5.pwd
}
Where default is:
auth_mechanisms = plain login
passdb {
args = /etc/dovecot/dovecot-sql.conf
driver = sql
# driver = passwd-file
# args = scheme=cram-md5 /etc/dovecot/cram-md5.pwd
}
and after I checked that sending emails worked I set again default settings
in dovecot.conf. After this change I can't send emails.
2017-02-23 10:24 GMT+01:00 Christian Kivalo <ml+postfix-us...@valo.at>:
>
>
> On 2017-02-23 10:06, Poliman - Serwis wrote:
>
>> I also turned on verbose log in dovecot and below is output in
>> mail.log:
>> Feb 23 10:03:51 vps342401 postfix/smtps/smtpd[3640]:
>> xsasl_dovecot_server_connect: auth reply: DONE
>> Feb 23 10:03:51 vps342401 postfix/smtps/smtpd[3640]:
>> xsasl_dovecot_server_mech_filter: skip mechanism: PLAIN
>> Feb 23 10:03:51 vps342401 postfix/smtps/smtpd[3640]:
>> xsasl_dovecot_server_mech_filter: skip mechanism: LOGIN
>> Feb 23 10:03:51 vps342401 postfix/smtps/smtpd[3640]: fatal: no SASL
>> authentication mechanisms
>>
> From your postconf -n you disabled the use of mechanisms that use
> plaintext password
> smtpd_sasl_security_options = noanonymous,noplaintext
> smtpd_sasl_tls_security_options = noanonymous,noplaintext
> The default for both is "noanonymous" see http://www.postfix.org/postcon
> f.5.html#smtpd_sasl_security_options
> Postfix defaults to use the cyrus sasl implementation with saslauthd and
> probably the cram-md5 is module is not installed.
> You should be using the dovecot sasl implementation in postfix, from your
> postconf -n i don't see that you are using the dovecot sasl implementation.
>
> In main.cf set (from: http://www.postfix.org/SASL_RE
> ADME.html#server_sasl_enable ):
>
> smtpd_sasl_type = dovecot
>
> and if you configured the dovecot auth socket in
> /var/spool/postfix/private/auth
>
> smtpd_sasl_path = private/auth
>
> from: http://www.postfix.org/SASL_README.html#server_dovecot
>
>> Feb 23 10:03:52 vps342401 postfix/master[25124]: warning: process
>> /usr/lib/postfix/smtpd pid 3640 exit status 1
>> Feb 23 10:03:52 vps342401 postfix/master[25124]: warning:
>> /usr/lib/postfix/smtpd: bad command startup -- throttling
>> Feb 23 10:04:12 vps342401 postfix/anvil[3328]: statistics: max
>> connection rate 27/60s for (submission:54.175.125.239) at Feb 23
>> 09:58:20
>> Feb 23 10:04:12 vps342401 postfix/anvil[3328]: statistics: max
>> connection count 1 for (submission:54.175.125.239) at Feb 23 09:58:08
>> Feb 23 10:04:12 vps342401 postfix/anvil[3328]: statistics: max message
>> rate 1/60s for (smtps:93.X.X.31) at Feb 23 10:00:37
>> Feb 23 10:04:12 vps342401 postfix/anvil[3328]: statistics: max cache
>> size 3 at Feb 23 09:58:21
>>
>> 2017-02-23 9:59 GMT+01:00 Poliman - Serwis <ser...@poliman.pl>:
>>
>> Ok, so I added in main.cf [3] at the bottom of the file the line:
>>> debug_peer_list = 127.0.0.1,93.X.X.31
>>>
>>> and in master.cf [1] (set 'n' in chroot column):
>>> submission inet n - n - - smtpd
>>> smtps inet n - n - - smtpd
>>>
>>> What is next step?
>>>
>>> 2017-02-23 9:42 GMT+01:00 wilfried.es...@essignetz.de
>>> <wilfried.es...@essignetz.de>:
>>>
>>> Hi,
>>>>
>>>> would suggest :
>>>> - Try turning off chroot operation in master.cf [1]
>>>> - Verbose logging for specific SMTP connections
>>>> (see http://www.postfix.org/DEBUG_README.html [2])
>>>>
>>>>
>>>> Willi
>>>>
>>>> Am 23.02.2017 um 09:21 schrieb Poliman - Serwis:
>>>>
>>>>> Hmm. I think that above is not working. Probably I tried sent
>>>>>
>>>> email too
>>>>
>>>>> fast after restart dovecot and new settings weren't loaded.
>>>>>
>>>>> 2017-02-23 9:18 GMT+01:00 Poliman - Serwis <ser...@poliman.pl>:
>>>>>
>>>>> By the way I did some test. I removed cram-md5 from
>>>>>>
>>>>> auth_mechanisms line
>>>>
>>>>> and I uncommented default lines in passdb block and also left
>>>>>>
>>>>> uncommented
>>>>
>>>>> two lines added by me like below:
>>>>>> auth_mechanisms = plain login
>>>>>>
>>>>>> passdb {
>>>>>> args = /etc/dovecot/dovecot-sql.conf
>>>>>> driver = sql
>>>>>> driver = passwd-file
>>>>>> args = scheme=cram-md5 /etc/dovecot/cram-md5.pwd
>>>>>> }
>>>>>>
>>>>>> I can send emails but I have no idea which setting is used -
>>>>>>
>>>>> these two
>>>>
>>>>> lines:
>>>>>> args = /etc/dovecot/dovecot-sql.conf
>>>>>> driver = sql
>>>>>>
>>>>>> or these
>>>>>>
>>>>>
>>>> driver = passwd-file
>>>>>> args = scheme=cram-md5 /etc/dovecot/cram-md5.pwd
>>>>>>
>>>>>> 2017-02-23 8:17 GMT+01:00 Dominic Raferd
>>>>>>
>>>>> <domi...@timedicer.co.uk>:
>>>>
>>>>>
>>>>>> On 23 February 2017 at 07:01, Poliman - Serwis
>>>>>>>
>>>>>> <ser...@poliman.pl> wrote:
>>>>
>>>>> ...
>>>>>>>> All worked fine. Then I added in dovecot.conf file:
>>>>>>>> auth_mechanisms = plain login cram-md5 #added cram-md5
>>>>>>>>
>>>>>>>> passdb {
>>>>>>>> #args = /etc/dovecot/dovecot-sql.conf
>>>>>>>> #driver = sql
>>>>>>>> driver = passwd-file
>>>>>>>> args = scheme=cram-md5 /etc/dovecot/cram-md5.pwd
>>>>>>>> }
>>>>>>>>
>>>>>>>> In passdb block commented out default lines and add two (I
>>>>>>>>
>>>>>>> can put whole
>>>>
>>>>> dovecot config). All things still worked fine. Then - in
>>>>>>>>
>>>>>>> dovecot.conf
>>>>
>>>>> file I
>>>>>>>
>>>>>>>> changed back setting to default. After this I can't send
>>>>>>>>
>>>>>>> emails. In log
>>>>
>>>>> I
>>>>>>>
>>>>>>>> have:
>>>>>>>> Feb 23 06:46:49 vps301 postfix/smtps/smtpd[24919]: fatal: no
>>>>>>>>
>>>>>>> SASL
>>>>
>>>>> authentication mechanisms
>>>>>>>> Feb 23 06:47:50 vps301 postfix/smtps/smtpd[24942]: fatal: no
>>>>>>>>
>>>>>>> SASL
>>>>
>>>>> authentication mechanisms
>>>>>>>>
>>>>>>>
>>>>>>> I suspect it is not permitted to have # comments in dovecot
>>>>>>>
>>>>>> conf files
>>>>
>>>>> except on a line of their own, though I admit I can't find
>>>>>>>
>>>>>> this
>>>>
>>>>> documented. Try removing '#added cram-md5' or putting it on a
>>>>>>>
>>>>>> line of
>>>>
>>>>> its own.
>>>>>>>
>>>>>>>
>>>>>>
>>>>>>
>>>>>> --
>>>>>>
>>>>>> *Pozdrawiam / Best Regards*
>>>>>> *Piotr Bracha*
>>>>>>
>>>>>>
>>>>>>
>>>>>>
>>>>>> *tel. 534 555 877*
>>>>>>
>>>>>> *ser...@poliman.pl <ser...@poliman.pl>*
>>>>>>
>>>>>>
>>>>>
>>>>>
>>>>>
>>> --
>>>
>>> Pozdrawiam / Best Regards
>>> _Piotr Bracha_
>>>
>>> tel. 534 555 877
>>> ser...@poliman.pl
>>>
>>
>> --
>>
>> Pozdrawiam / Best Regards
>> _Piotr Bracha_
>>
>> tel. 534 555 877
>> ser...@poliman.pl
>>
>>
>> Links:
>> ------
>> [1] http://master.cf
>> [2] http://www.postfix.org/DEBUG_README.html
>> [3] http://main.cf
>>
>
> --
> Christian Kivalo
>
--
*Pozdrawiam / Best Regards*
*Piotr Bracha*
*tel. 534 555 877*
*ser...@poliman.pl <ser...@poliman.pl>*
