Re: sendmail user name and password authentication

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Am Sa, den 24.07.2004 schrieb Jonathan T. Steadman um 3:15:

> I have created a certificate so that I would be able to send passwords
> securely, but now my problem is actually sending the password, right now
> the user is asked to accept certificate which is wonderful, but my
> server is not requiring users to use a user name and password (actually
> it doesn't work if you try user name and password) to relay mail, I want
> it to, I read up on it a little and thought it was because of AUTH_MECH
> options, but I changed them to LOGIN and PLAIN so that PAM could deal
> with them, (yes I did specify in ~/sasl2/sendmail.conf that pwcheck was

Hope you just didn't take enough care when posting here. It must be
/usr/lib/sasl2/Sendmail.conf - ~ stands for $HOME and the sasl2 files
don't have to be there anywhere - and as you see Sendmail.conf starts
with a capital S.

> to be done with pam) do I somehow have to specify password file or
> something?  I have authentication for pop3 server working with
> PAM/Dovecot but that is a whole other story.  Anyways all of what I
> considered important values for what I want are listed below. anyways
> sorry about all my many send mail questions/issues, I am hoping this
> really will be the last of them, I guess they (thankfully) have many
> hoops to jump through in sendmail to help fight spammers.

A bit hard to say what's going on with your Sendmail from the given
information. Did you first check that SMTP AUTH works without using
STARTTLS? Do so by telneting on port 25. Have a close look at the
maillog and maybe increase the log level to 15. If SMTP AUTH works
without a previously established encryption then you know that your
STARTTLS does not work. It will be then certainly that you certificates
are not proper.

> define(`confAUTH_OPTIONS', `A p')dnl
> TRUST_AUTH_MECH(`LOGIN PLAIN')dnl
> define(`confAUTH_MECHANISMS', `LOGIN PLAIN')dnl
> define(`confCACERT_PATH',`/usr/share/ssl/certs')
> define(`confCACERT',`/usr/share/ssl/certs/ca-bundle.crt')
> define(`confSERVER_CERT',`/usr/share/ssl/certs/sendmail.pem')
> define(`confSERVER_KEY',`/usr/share/ssl/certs/sendmail.pem')
> define(`confTO_IDENT', `0')dnl

Looks ok so far.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG key 1024D/ED695653 1999-07-13
Fedora GNU/Linux Core 2 (Tettnang) kernel 2.6.6-1.435.2.3.ad.umlsmp 
Serendipity 17:01:31 up 2 days, 1:49, load average: 0.10, 0.04, 0.03

Attachment: signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil

[Index of Archives]     [Current Fedora Users]     [Fedora Desktop]     [Fedora SELinux]     [Yosemite News]     [Yosemite Photos]     [KDE Users]     [Fedora Tools]     [Fedora Docs]

  Powered by Linux