Re: Testing SMTP Authentication CLI

2018-09-10 Thread Craig Skinner 
Hi Nino,

On Sun, 9 Sep 2018 04:16:42 + Antonino Sidoti wrote:
> openssl s_client -connect mail.example.com:25 -starttls smtp. 
> 
> The connection is successful and I can see TLS handshake, etc. 
> I now enter ‘helo’ and 'auth login’, each are successful.

587 is the mail user agent (MUA) authenticated mail submission port.

25 is for MTA to MTA duties, not for user authentication.

Regards,
-- 
Craig Skinner | http://linkd.in/yGqkv7

--
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org

Re: Testing SMTP Authentication CLI

2018-09-09 Thread Reio Remma 

On 09.09.2018 7:16, Antonino Sidoti wrote:

I would like to test the configuration from CLI on my MacBook and using;

openssl s_client -connect mail.example.com:25 -starttls smtp.

The connection is successful and I can see TLS handshake, etc.
I now enter ‘helo’ and 'auth login’, each are successful.

Now going further, how can I test the user credentials using an ‘openssl’ 
connection? I am confident that ‘smtpctl encrypt’ it is using BLF-CRYPT, though 
what do I do to input the username and password to test the credentials?


I just tested it out of curiousity:

AUTH login 
334 VXNlcm5hbWU6

334 UGFzc3dvcmQ6

235 2.0.0: Authentication succeeded

Good luck,
Reio

--
You received this mail because you are subscribed to misc@opensmtpd.org
To unsubscribe, send a mail to: misc+unsubscr...@opensmtpd.org

Re: Testing SMTP Authentication CLI

2018-09-08 Thread Antonino Sidoti 
Hi,

Here you go,

pki mail.example.com certificate "/etc/ssl/example.com.fullchain.pem"
pki mail.example.com key "/etc/ssl/private/example.com.key"

table aliases file:/etc/mail/aliases
table vdomains file:/etc/mail/vdomains
table vusers file:/etc/mail/vusers
table creds file:/etc/mail/creds

listen on lo
listen on lo port 10028 tag DKIM_OUT
listen on egress port smtp tls pki mail.example.com auth-optional
listen on egress port submission tls-require pki mail.example.com auth 

accept from local for local alias  deliver to lmtp "/var/dovecot/lmtp" 
rcpt-to
accept from any for domain  virtual  deliver to lmtp 
"/var/dovecot/lmtp" rcpt-to
accept tagged DKIM_OUT for any relay
accept from local for any relay via smtp://127.0.0.1:10027

Maybe I am using the openssl command wrong. I just want to confirm the SMTP 
user credentials via the CLI.


> On 9 Sep 2018, at 2:44 pm, ed...@pettijohn-web.com wrote:
> 
> Without your smtpd.conf it's hard to know, but I suspect you don't have 
> 'auth' on port 25. 
> On Sep 8, 2018 11:16 PM, Antonino Sidoti  wrote:
>> 
>> 
>> 
>> There was an error while decoding the 
>> message.(���z+�v�b�fj�ʋ���.n�+)z{&��h��{.n�+���zwZ���Ϯ�˛���m�)z{&��h�

Re: Testing SMTP Authentication CLI

2018-09-08 Thread edgar 
Without your smtpd.conf it's hard to know, but I suspect you don't have 'auth' 
on port 25. 
On Sep 8, 2018 11:16 PM, Antonino Sidoti  wrote:
>
>
>
> There was an error while decoding the message.