Re: [vchkpw] Vpopmail Postfix and SQL query for SMTP-Auth
Alessio Cecchi wrote: Christopher Chan ha scritto: Alessio Cecchi wrote: Hello, this is my situation, one qmail+vpopmail(MySQL)+dovecot server that works like an MX record and provide access on mailbox via POP3 or IMAP. Another server with postfix and SASL for SMTP-Auth only, with SASL that query the vpopmail DB for user authentication. My intention is to set a query into SASL for use the same flags for SMTP-Auth that read vpopmail and qmail. Do you run dovecot? If you do, just make use of dovecot's sasl provisions. That is supported by postfix. Thanks, yes I run dovecot and I know the SASL + Postfix features, but on the qmail server, postfix is on another server. Summary: server1 qmail + vpopmail with mysql backend + dovecot with vpopmail native authentication ("passdb checkpassword" and "args = /home/vpopmail/bin/vchkpw") server2 postfix + SASL that read users from mysql on server1 How can postfix access to dovecot SASL auth mechanis? I could install dovecot on server2, but dovecot can check vpopmail flags on when run with "passdb checkpassword" and "args = /home/vpopmail/bin/vchkpw" and in the same server with vpopmail binary. Or not? Eh? What version of dovecot are you running? dovecot can directly link into vpopmail. Install vpopmail on server2, point it to the mysql server, compile and install a dovecot version above 1.0 (prefereably latest) and compile and install a version of postfix that can make use of dovecot's sasl provision. Quite a bit of fiddling I know... postfix main.cf smtpd_sasl_type = dovecot smtpd_sasl_path = private/auth (under postfix spool directory - need to set this in dovecot.conf in the auth section under client subsection) smtpd_sasl_auth_enable = yes Read the SASL_README file for dovecot stuff: Building Postfix with Dovecot SASL support These instructions assume that you build Postfix from source code as described in the INSTALL document. Some modification may be required if you build Postfix from a vendor-specific source package. Support for the Dovecot version 1 SASL protocol is available in Postfix 2.3 and later. At the time of writing, only server-side SASL support is available, so you can't use it to authenticate to your network provider's server. Dovecot uses its own daemon process for authentication. This keeps the Postfix build process simple, because there is no need to link extra libraries into Postfix. To generate the necessary Makefiles, execute the following in the Postfix top- level directory: % make makefiles CCARGS='-DUSE_SASL_AUTH - DDEF_SERVER_SASL_TYPE=\"dovecot\"' After this, proceed with "make" as described in the INSTALL document. Notes: * The "-DDEF_SERVER_SASL_TYPE" stuff is not necessary; it just makes Postfix configuration a little more convenient because you don't have to specify the SASL plug-in type in the Postfix main.cf file. * If you also want support for LDAP or TLS, you will have to merge their CCARGS and AUXLIBS into the above command line. !DSPAM:4acd44cd32715512521434!
Re: [vchkpw] Vpopmail Postfix and SQL query for SMTP-Auth
Christopher Chan ha scritto: Alessio Cecchi wrote: Hello, this is my situation, one qmail+vpopmail(MySQL)+dovecot server that works like an MX record and provide access on mailbox via POP3 or IMAP. Another server with postfix and SASL for SMTP-Auth only, with SASL that query the vpopmail DB for user authentication. My intention is to set a query into SASL for use the same flags for SMTP-Auth that read vpopmail and qmail. Do you run dovecot? If you do, just make use of dovecot's sasl provisions. That is supported by postfix. Thanks, yes I run dovecot and I know the SASL + Postfix features, but on the qmail server, postfix is on another server. Summary: server1 qmail + vpopmail with mysql backend + dovecot with vpopmail native authentication ("passdb checkpassword" and "args = /home/vpopmail/bin/vchkpw") server2 postfix + SASL that read users from mysql on server1 How can postfix access to dovecot SASL auth mechanis? I could install dovecot on server2, but dovecot can check vpopmail flags on when run with "passdb checkpassword" and "args = /home/vpopmail/bin/vchkpw" and in the same server with vpopmail binary. Or not? -- Alessio Cecchi is: @ ILS -> http://www.linux.it/~alessice/ on LinkedIn -> http://www.linkedin.com/in/alessice Assistenza Sistemi GNU/Linux -> http://www.cecchi.biz/ @ PLUG -> ex-Presidente, adesso senatore a vita, http://www.prato.linux.it @ LOLUG -> Socio http://www.lolug.net !DSPAM:4acc68ca32712464818583!
Re: [vchkpw] Vpopmail Postfix and SQL query for SMTP-Auth
Alessio Cecchi wrote: Hello, this is my situation, one qmail+vpopmail(MySQL)+dovecot server that works like an MX record and provide access on mailbox via POP3 or IMAP. Another server with postfix and SASL for SMTP-Auth only, with SASL that query the vpopmail DB for user authentication. My intention is to set a query into SASL for use the same flags for SMTP-Auth that read vpopmail and qmail. Do you run dovecot? If you do, just make use of dovecot's sasl provisions. That is supported by postfix. !DSPAM:4acc5f6032713644250262!
[vchkpw] Vpopmail Postfix and SQL query for SMTP-Auth
Hello, this is my situation, one qmail+vpopmail(MySQL)+dovecot server that works like an MX record and provide access on mailbox via POP3 or IMAP. Another server with postfix and SASL for SMTP-Auth only, with SASL that query the vpopmail DB for user authentication. My intention is to set a query into SASL for use the same flags for SMTP-Auth that read vpopmail and qmail. Now the SASL query is very simple: $ cat /etc/postfix/sasl/smtpd.conf pwcheck_method: auxprop auxprop_plugin: sql mech_list: PLAIN LOGIN #password_format: crypt sql_engine: mysql sql_hostnames: 10.0.0.1 sql_user: postfix sql_passwd: pippo sql_database: vpopmail sql_select: SELECT pw_clear_passwd FROM vpopmail WHERE pw_name='%u' and pw_domain='%r' and smtppostfix = '1' the only condition is the column "smtppostfix" that I must set manually. There is the way to change the SELECT query in order to check the original vpopmail flags? So i can manage SMTP users authentication from vpopmail command line and reflect this configuration into a postfix server :-) I have read this discussion: http://www.mail-archive.com/vchkpw@inter7.com/msg17260.html but I have not found a solution :-( Thanks -- Alessio Cecchi is: @ ILS -> http://www.linux.it/~alessice/ on LinkedIn -> http://www.linkedin.com/in/alessice Assistenza Sistemi GNU/Linux -> http://www.cecchi.biz/ @ PLUG -> ex-Presidente, adesso senatore a vita, http://www.prato.linux.it @ LOLUG -> Socio http://www.lolug.net !DSPAM:4acb4e5f32711494420535!