Re: [vchkpw] Vpopmail Postfix and SQL query for SMTP-Auth
Alessio Cecchi wrote:
Christopher Chan ha scritto:
Alessio Cecchi wrote:
Hello,
this is my situation, one qmail+vpopmail(MySQL)+dovecot server that
works like an MX record and provide access on mailbox via POP3 or IMAP.
Another server with postfix and SASL for SMTP-Auth only, with SASL
that query the vpopmail DB for user authentication.
My intention is to set a query into SASL for use the same flags for
SMTP-Auth that read vpopmail and qmail.
Do you run dovecot? If you do, just make use of dovecot's sasl
provisions. That is supported by postfix.
Thanks,
yes I run dovecot and I know the SASL + Postfix features, but on the
qmail server, postfix is on another server.
Summary:
server1
qmail + vpopmail with mysql backend + dovecot with vpopmail native
authentication ("passdb checkpassword" and "args =
/home/vpopmail/bin/vchkpw")
server2
postfix + SASL that read users from mysql on server1
How can postfix access to dovecot SASL auth mechanis?
I could install dovecot on server2, but dovecot can check vpopmail flags
on when run with "passdb checkpassword" and "args =
/home/vpopmail/bin/vchkpw" and in the same server with vpopmail binary.
Or not?
Eh? What version of dovecot are you running? dovecot can directly link
into vpopmail. Install vpopmail on server2, point it to the mysql
server, compile and install a dovecot version above 1.0 (prefereably
latest) and compile and install a version of postfix that can make use
of dovecot's sasl provision.
Quite a bit of fiddling I know...
postfix main.cf
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth (under postfix spool directory - need to
set this in dovecot.conf in the auth section under client subsection)
smtpd_sasl_auth_enable = yes
Read the SASL_README file for dovecot stuff:
Building Postfix with Dovecot SASL support
These instructions assume that you build Postfix from source code as
described
in the INSTALL document. Some modification may be required if you build
Postfix
from a vendor-specific source package.
Support for the Dovecot version 1 SASL protocol is available in Postfix
2.3 and
later. At the time of writing, only server-side SASL support is
available, so
you can't use it to authenticate to your network provider's server. Dovecot
uses its own daemon process for authentication. This keeps the Postfix build
process simple, because there is no need to link extra libraries into
Postfix.
To generate the necessary Makefiles, execute the following in the
Postfix top-
level directory:
% make makefiles CCARGS='-DUSE_SASL_AUTH -
DDEF_SERVER_SASL_TYPE=\"dovecot\"'
After this, proceed with "make" as described in the INSTALL document.
Notes:
* The "-DDEF_SERVER_SASL_TYPE" stuff is not necessary; it just makes
Postfix
configuration a little more convenient because you don't have to
specify
the SASL plug-in type in the Postfix main.cf file.
* If you also want support for LDAP or TLS, you will have to merge their
CCARGS and AUXLIBS into the above command line.
!DSPAM:4acd44cd32715512521434!
Re: [vchkpw] Vpopmail Postfix and SQL query for SMTP-Auth
Christopher Chan ha scritto:
Alessio Cecchi wrote:
Hello,
this is my situation, one qmail+vpopmail(MySQL)+dovecot server that
works like an MX record and provide access on mailbox via POP3 or IMAP.
Another server with postfix and SASL for SMTP-Auth only, with SASL
that query the vpopmail DB for user authentication.
My intention is to set a query into SASL for use the same flags for
SMTP-Auth that read vpopmail and qmail.
Do you run dovecot? If you do, just make use of dovecot's sasl
provisions. That is supported by postfix.
Thanks,
yes I run dovecot and I know the SASL + Postfix features, but on the
qmail server, postfix is on another server.
Summary:
server1
qmail + vpopmail with mysql backend + dovecot with vpopmail native
authentication ("passdb checkpassword" and "args =
/home/vpopmail/bin/vchkpw")
server2
postfix + SASL that read users from mysql on server1
How can postfix access to dovecot SASL auth mechanis?
I could install dovecot on server2, but dovecot can check vpopmail flags
on when run with "passdb checkpassword" and "args =
/home/vpopmail/bin/vchkpw" and in the same server with vpopmail binary.
Or not?
--
Alessio Cecchi is:
@ ILS -> http://www.linux.it/~alessice/
on LinkedIn -> http://www.linkedin.com/in/alessice
Assistenza Sistemi GNU/Linux -> http://www.cecchi.biz/
@ PLUG -> ex-Presidente, adesso senatore a vita, http://www.prato.linux.it
@ LOLUG -> Socio http://www.lolug.net
!DSPAM:4acc68ca32712464818583!
Re: [vchkpw] Vpopmail Postfix and SQL query for SMTP-Auth
Alessio Cecchi wrote: Hello, this is my situation, one qmail+vpopmail(MySQL)+dovecot server that works like an MX record and provide access on mailbox via POP3 or IMAP. Another server with postfix and SASL for SMTP-Auth only, with SASL that query the vpopmail DB for user authentication. My intention is to set a query into SASL for use the same flags for SMTP-Auth that read vpopmail and qmail. Do you run dovecot? If you do, just make use of dovecot's sasl provisions. That is supported by postfix. !DSPAM:4acc5f6032713644250262!
[vchkpw] Vpopmail Postfix and SQL query for SMTP-Auth
Hello, this is my situation, one qmail+vpopmail(MySQL)+dovecot server that works like an MX record and provide access on mailbox via POP3 or IMAP. Another server with postfix and SASL for SMTP-Auth only, with SASL that query the vpopmail DB for user authentication. My intention is to set a query into SASL for use the same flags for SMTP-Auth that read vpopmail and qmail. Now the SASL query is very simple: $ cat /etc/postfix/sasl/smtpd.conf pwcheck_method: auxprop auxprop_plugin: sql mech_list: PLAIN LOGIN #password_format: crypt sql_engine: mysql sql_hostnames: 10.0.0.1 sql_user: postfix sql_passwd: pippo sql_database: vpopmail sql_select: SELECT pw_clear_passwd FROM vpopmail WHERE pw_name='%u' and pw_domain='%r' and smtppostfix = '1' the only condition is the column "smtppostfix" that I must set manually. There is the way to change the SELECT query in order to check the original vpopmail flags? So i can manage SMTP users authentication from vpopmail command line and reflect this configuration into a postfix server :-) I have read this discussion: http://www.mail-archive.com/vchkpw@inter7.com/msg17260.html but I have not found a solution :-( Thanks -- Alessio Cecchi is: @ ILS -> http://www.linux.it/~alessice/ on LinkedIn -> http://www.linkedin.com/in/alessice Assistenza Sistemi GNU/Linux -> http://www.cecchi.biz/ @ PLUG -> ex-Presidente, adesso senatore a vita, http://www.prato.linux.it @ LOLUG -> Socio http://www.lolug.net !DSPAM:4acb4e5f32711494420535!
