Re: LMTP AUTH with sendmail?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi! Casper schrieb: i have a murder with different servers like imap smtp, configure cyrus with murder enabled and add the things i wrote before + many other things like authentication and so on... then it work. ok, I see... I was rather looking for a solution without cyrus-murder. It seems to be possible with postfix or exim which seem to have integrated the mail delivery functionality using LMTP (using UNIX or INET socket family) directly into the MTA (can anyone confirm that?), but sendmail seems to rely on the external cyrus deliver program and I don't know how to configure this combination to use LMTP AUTH (without cyrus murder) - if it is possible at all! Has anyone been there before? - - andreas - -- Andreas Haumer | mailto:[EMAIL PROTECTED] *x Software + Systeme | http://www.xss.co.at/ Karmarschgasse 51/2/20 | Tel: +43-1-6060114-0 A-1100 Vienna, Austria | Fax: +43-1-6060114-71 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGFgc+xJmyeGcXPhERApSNAJ4tDNdkmH+hEfMwNJLVNU/ybuCd0ACfXxsq eaT0VLPZxymLb/wgNGdzJZs= =CbPX -END PGP SIGNATURE- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: LMTP AUTH with sendmail?
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi Andrzej! Thanks for your reply! Andrzej Adam Filip schrieb: You use older MAILER(`cyrus'). Take a look at newer MAILER(`cyrusv2'). I *am* using cyrusv2 mailer already (as I wrote in my first mail) Cyrusv2 supports direct LMTP over unix socket. I don't want to use LMTP over unix domain socket (which of course works and of course gives me access control using unix file permissions) but over INET sockets (i.e. LMTP over TCP), as machines running sendmail and cyrus imapd are distinct and connected through a TCP/IP network. As I wrote, I already have LMTP over TCP running, but only with pre-authorization (lmtpd -a) and I want to configure real authentication now if possible... For AUTH over LMTP ask at news:comp.mail.sendmail Ok, I'll try that. Just makes me wonder if anybody here has ever used this setup... - - andreas - -- Andreas Haumer | mailto:[EMAIL PROTECTED] *x Software + Systeme | http://www.xss.co.at/ Karmarschgasse 51/2/20 | Tel: +43-1-6060114-0 A-1100 Vienna, Austria | Fax: +43-1-6060114-71 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGFkACxJmyeGcXPhERAtk6AJ9C85QWr1HjqQU3WCt3N+eGAy8VrwCgwewj dubcnXeOFJeY5g5Rn9jGVSo= =nocR -END PGP SIGNATURE- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: LMTP AUTH with sendmail?
On Fri, Apr 06, 2007 at 02:41:41PM +0200, Andreas Haumer wrote: Andrzej Adam Filip schrieb: You use older MAILER(`cyrus'). Take a look at newer MAILER(`cyrusv2'). I *am* using cyrusv2 mailer already (as I wrote in my first mail) Cyrusv2 supports direct LMTP over unix socket. I don't want to use LMTP over unix domain socket (which of course works and of course gives me access control using unix file permissions) but over INET sockets (i.e. LMTP over TCP), as machines running sendmail and cyrus imapd are distinct and connected through a TCP/IP network. Here's an example of a mailer definition that does LMTP over TCP: Mlocal, P=[IPC], F=lsDFMnqSmXzwWA5@/:|, S=EnvFromL/HdrFromL, R=EnvToL/HdrToL, E=\r\n, T=DNS/RFC822/X-Unix, A=TCP [cyrus-server-host.domain] lmtp I wrote my own m4 feature to generate this definition. -- -Gary Mills--Unix Support--U of M Academic Computing and Networking- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: LMTP AUTH with sendmail?
on the sendmail lmtp server in imapd.conf look for lmtpproxy_authname: user lmtpproxy_password: pwd lmtpsocket: /spool/lmtp.socket and on the imap add proxyusers. imapserver_password: pwd proxy_authname: user All in the manual. -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi! I'm about to set up a Cyrus IMAP server machine and want to have several other machines running sendmail to deliver mail to the IMAP server using LMTP over TCP (btw: all machines are running Linux) This raises the question of authenticating the mail delivery machines to the IMAP server. I already have a setup running with pre-authorization (lmtpd option -a) using the following configuration settings: In /etc/cyrus.conf on the IMAP server machine: SERVICES { [...] lmtp cmd=lmtpd -a listen=lmtp prefork=1 [...] } In /etc/hosts.allow on the IMAP server machine: [...] lmtp: a.b.c.72, a.b.c.80, a.b.c.91 [...] In /etc/hosts.deny on the IMAP server machine: [...] lmtp: ALL [...] In /etc/mail/sendmail.mc on the mail delivery machines: [...] define(`confLOCAL_MAILER', `cyrusv2')dnl define(`CYRUSV2_MAILER_ARGS', `TCP my.cyrus.server.tld lmtp')dnl [...] In order to improve security I'd rather use real authentication for the LMTP client against the LMTP server, but I have not found a single piece of documentation or example of how to do this with sendmail (I have found examples for postfix or exim, though) I know how to set up SMTP AUTH with sendmail (both as client and as server), but not LMTP AUTH (as client) Is real LMTP AUTH with sendmail possible at all? Has anyone already set up such a beast? I'd appreciate any hints or configuration examples! Thanks! - - andreas - -- Andreas Haumer | mailto:[EMAIL PROTECTED] *x Software + Systeme | http://www.xss.co.at/ Karmarschgasse 51/2/20 | Tel: +43-1-6060114-0 A-1100 Vienna, Austria | Fax: +43-1-6060114-71 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGFN2rxJmyeGcXPhERAuiXAKCVQms7Nc3x7ghZlanbKhYFha+aHQCgu530 mcW+T3kbwyMGzg6G2EKYbhc= =gRCt -END PGP SIGNATURE- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: LMTP AUTH with sendmail?
i have a murder with different servers like imap smtp, configure cyrus with murder enabled and add the things i wrote before + many other things like authentication and so on... then it work. -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi! Many thanks for your reply! Casper schrieb: on the sendmail lmtp server in imapd.conf look for lmtpproxy_authname: user lmtpproxy_password: pwd I guess this configuration settings are used by the cyrus deliver program, correct? lmtpsocket: /spool/lmtp.socket I want to use LMTP over TCP (sendmail and cyrus imap server run on different machines, connected by TCP/IP network), how does the configuration of a Unix domain socket fit into scenario? and on the imap add proxyusers. imapserver_password: pwd proxy_authname: user All in the manual. Hm, which cyrus imapd version are you talking about? I'm using 2.2.13 and lmtpproxy_authname, lmtpproxy_password and imapserver_password are neither mentioned in the manual page nor in the HTML docs (or in any of the cyrus-imapd-2.2.13 distribution source files...). Is this a new feature? - - andreas - -- Andreas Haumer | mailto:[EMAIL PROTECTED] *x Software + Systeme | http://www.xss.co.at/ Karmarschgasse 51/2/20 | Tel: +43-1-6060114-0 A-1100 Vienna, Austria | Fax: +43-1-6060114-71 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFGFU44xJmyeGcXPhERAirIAJ9TOh/Ye/zqZjnT/NrpnxsuSFUq5gCfRwCG RMrQ54q3nhbI95BxGl3UBd8= =cFTZ -END PGP SIGNATURE- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html