Re: saslauthd not working?
Hi, chmod 777 /usr/local/etc/sasldb As you are not sure which user is accessing the sasldb file. Regards SSR From: Charlie Schluting [EMAIL PROTECTED] To: Sunil Sunder Raj [EMAIL PROTECTED] Subject: Re: saslauthd not working? Date: Wed, 24 Sep 2003 08:39:14 -0700 (PDT) It looks like sasldb, because I get errrors like this sometimes: postfix/smtpd[7944]: unable to open Berkeley db /usr/local/etc/sasldb: Permission denied This is strange, because it has permissions set for group mail to rwx. :) Thanks for the response, Charlie On Wed, 24 Sep 2003, Sunil Sunder Raj wrote: Hi, What auth module do you want to use (sasldb, mysql). Regards SSR From: Charlie Schluting [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: saslauthd not working? Date: Tue, 23 Sep 2003 17:32:33 -0700 (PDT) Hi, Trying to configure sasl with postfix.. and I keep getting Login Failed Here's what I have: telnet localhost 25: AUTH PLAIN Y2hhcm... 535 Error: authentication failed The maillog simply shows: warning: localhost[127.0.0.1]: SASL PLAIN authentication failed /etc/rc.conf: sasl_saslauthd_enable=YES sasl_saslauthd_flags=-a getpwent /usr/local/lib/sasl2/smtpd.conf pwcheck_method: saslauthd mech_list: plain login I'm not using pam for anything else, so I figured that this method had the best chance of working :) Postfix is NOT chrooted, and postfix is in group mail. Postfix config: smtpd_sasl_auth_enable = yes smtpd_sasl_security_options = noanonymous smtpd_sasl_local_domain = broken_sasl_auth_clients = yes Here's the perms on saslauthd: drwxrwx--- 2 cyrus mail 512 Sep 23 17:27 saslauthd/ Am I missing anything? I tried adding -d to saslauthd_flags in rc.conf. When I started saslauthd, it just hung there, like I expected, only, I didn't get any output when I tried to login to postfix. help would be greatly appreciated. -Charlie ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] _ Interact with peers. Learn from experts. http://server1.msn.co.in/sp03/teched/index.asp Be tech-empowered! _ Attention NRIs! Banking worries? http://server1.msn.co.in/msnspecials/nriservices/index.asp Get smart tips. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: saslauthd not working?
why would you want to maintain 2 password databases ? I use saslautd -a pam On Thu, 25 Sep 2003, Sunil Sunder Raj wrote: Hi, chmod 777 /usr/local/etc/sasldb As you are not sure which user is accessing the sasldb file. Regards SSR From: Charlie Schluting [EMAIL PROTECTED] To: Sunil Sunder Raj [EMAIL PROTECTED] Subject: Re: saslauthd not working? Date: Wed, 24 Sep 2003 08:39:14 -0700 (PDT) It looks like sasldb, because I get errrors like this sometimes: postfix/smtpd[7944]: unable to open Berkeley db /usr/local/etc/sasldb: Permission denied This is strange, because it has permissions set for group mail to rwx. :) Thanks for the response, Charlie On Wed, 24 Sep 2003, Sunil Sunder Raj wrote: Hi, What auth module do you want to use (sasldb, mysql). Regards SSR From: Charlie Schluting [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: saslauthd not working? Date: Tue, 23 Sep 2003 17:32:33 -0700 (PDT) Hi, Trying to configure sasl with postfix.. and I keep getting Login Failed Here's what I have: telnet localhost 25: AUTH PLAIN Y2hhcm... 535 Error: authentication failed The maillog simply shows: warning: localhost[127.0.0.1]: SASL PLAIN authentication failed /etc/rc.conf: sasl_saslauthd_enable=YES sasl_saslauthd_flags=-a getpwent /usr/local/lib/sasl2/smtpd.conf pwcheck_method: saslauthd mech_list: plain login I'm not using pam for anything else, so I figured that this method had the best chance of working :) Postfix is NOT chrooted, and postfix is in group mail. Postfix config: smtpd_sasl_auth_enable = yes smtpd_sasl_security_options = noanonymous smtpd_sasl_local_domain = broken_sasl_auth_clients = yes Here's the perms on saslauthd: drwxrwx--- 2 cyrus mail 512 Sep 23 17:27 saslauthd/ Am I missing anything? I tried adding -d to saslauthd_flags in rc.conf. When I started saslauthd, it just hung there, like I expected, only, I didn't get any output when I tried to login to postfix. help would be greatly appreciated. -Charlie ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] _ Interact with peers. Learn from experts. http://server1.msn.co.in/sp03/teched/index.asp Be tech-empowered! _ Attention NRIs! Banking worries? http://server1.msn.co.in/msnspecials/nriservices/index.asp Get smart tips. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: saslauthd not working?
On Tue, 23 Sep 2003 17:32:33 -0700 (PDT), Charlie Schluting [EMAIL PROTECTED] wrote: Hi, Trying to configure sasl with postfix.. and I keep getting Login Failed I had a hell of a tough time getting this configured on my system. As I recall, once one knows about the Postfix bug (which you do based on your Postfix config), the default install works. Here's what I have: telnet localhost 25: AUTH PLAIN Y2hhcm... 535 Error: authentication failed The maillog simply shows: warning: localhost[127.0.0.1]: SASL PLAIN authentication failed /etc/rc.conf: sasl_saslauthd_enable=YES sasl_saslauthd_flags=-a getpwent I am using 4.8-STABLE as of 06/29/03. I have nothing in my rc.conf regarding saslauthd. I do have in /usr/local/etc/rc.d/saslauthd.sh. By default, it runs saslauthd -a pam. This is the script that came with the port. I've made no mods. /usr/local/lib/sasl2/smtpd.conf pwcheck_method: saslauthd mech_list: plain login I also have auto_transition: yes in this file. I don't know what it means or does. I'm not using pam for anything else, so I figured that this method had the best chance of working :) Postfix is NOT chrooted, and postfix is in group mail. Postfix config: smtpd_sasl_auth_enable = yes smtpd_sasl_security_options = noanonymous smtpd_sasl_local_domain = This line is the bug I mentioned. Must be null, as you have it. broken_sasl_auth_clients = yes Here's the perms on saslauthd: drwxrwx--- 2 cyrus mail 512 Sep 23 17:27 saslauthd/ Am I missing anything? I tried adding -d to saslauthd_flags in rc.conf. When I started saslauthd, it just hung there, like I expected, only, I didn't get any output when I tried to login to postfix. Everything seems similar to my setup except your rc.conf. As I recall, /etc/pam.conf did not need any additions because the last section defaults to using getpwnam(). Good luck! It's great when it works. HTH, Drew ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
saslauthd not working?
Hi, Trying to configure sasl with postfix.. and I keep getting Login Failed Here's what I have: telnet localhost 25: AUTH PLAIN Y2hhcm... 535 Error: authentication failed The maillog simply shows: warning: localhost[127.0.0.1]: SASL PLAIN authentication failed /etc/rc.conf: sasl_saslauthd_enable=YES sasl_saslauthd_flags=-a getpwent /usr/local/lib/sasl2/smtpd.conf pwcheck_method: saslauthd mech_list: plain login I'm not using pam for anything else, so I figured that this method had the best chance of working :) Postfix is NOT chrooted, and postfix is in group mail. Postfix config: smtpd_sasl_auth_enable = yes smtpd_sasl_security_options = noanonymous smtpd_sasl_local_domain = broken_sasl_auth_clients = yes Here's the perms on saslauthd: drwxrwx--- 2 cyrus mail 512 Sep 23 17:27 saslauthd/ Am I missing anything? I tried adding -d to saslauthd_flags in rc.conf. When I started saslauthd, it just hung there, like I expected, only, I didn't get any output when I tried to login to postfix. help would be greatly appreciated. -Charlie ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: saslauthd not working?
On Tue, Sep 23, 2003 at 05:32:33PM -0700, Charlie Schluting wrote: Hi, Trying to configure sasl with postfix.. and I keep getting Login Failed Not a massive help this one but maybe a small nudge :) Have you tried using the testsaslauthd util to test whether saslauthd is actually authenticating ok? I think you may need to build the utility manually - I don't think it's installed by the freebsd port by default. There should be instructions in the port somewhere about it. Ok: cd /usr/ports/security/cyrus-sasl2-saslauthd/ make configure cd /usr/ports/security/cyrus-sasl2-saslauthd/work/cyrus-sasl-2.1.15/saslauthd make testsaslauthd should work :) To use - this is from the file /usr/ports/security/cyrus-sasl2-saslauthd/work/cyrus-sasl-2.1.15/saslauthd/LDAP_SASLAUTHD: -snip- 3. TESTING -- First build testsaslauthd: cd $sasl_src/saslauthd make testsaslauthd Run test utility: ./testsaslauthd -u igor -p secret 0: OK Success. If you get output other then Success, check the auth.* syslog facility. Hopefully this will give you enough information to make adjustements in the startup and/or configuration files. -snip- No idea about postfix I'm afraid - saslauthd works very nicely with Exim though :) -- Jez http://www.munk.nu/ ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: saslauthd not working?
On Wed, 24 Sep 2003, Jez Hancock wrote: On Tue, Sep 23, 2003 at 05:32:33PM -0700, Charlie Schluting wrote: Hi, Trying to configure sasl with postfix.. and I keep getting Login Failed Run test utility: ./testsaslauthd -u igor -p secret 0: OK Success. If you get output other then Success, check the auth.* syslog facility. Hopefully this will give you enough information to make adjustements in the startup and/or configuration files. -snip- No idea about postfix I'm afraid - saslauthd works very nicely with Exim though :) -- Jez Unfortunately, I got: 0: OK Success. Thanks much though.. at least I know how to test that part now :) -Charlie ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]