Sendmail AUTH
Justin Willmert
justin at jdjlab.com
Thu Aug 4 15:47:32 UTC 2005
Thanks for that reply. I came to the solution by trial-and-error, but I
didn't know why; you answered that for me. Thanks!
Justin
Alexander Dalloz wrote:
> Am Do, den 04.08.2005 schrieb Justin Willmert um 17:28:
>
>
>>I've been trying to get my Sendmail server to use authentication to send
>>emails. Right now I can get by with just using my 'access' file and
>>allowing my home network's IP address, but when we go on vacation, I
>>can't send emails without creating a tunnel with putty to my server at
>>home to make Sendmail think I'm sending it from localhost.
>
>
> Correct, SMTP AUTH is the route to go here for being able to send mail
> through your MTA from untrusted because changing IP addresses.
>
>
>>The problem is I can't get authentication to work. I've followed a
>>couple different tutorials on-line, and by all appearances, it should
>>work, but it doesn't.
>>
>>First, the text below is the settings I added to sendmail.mc. This is
>>where I deviate from some of the tutorials. Many of them also set up for
>>encryption, but until I get at least this part to work, I don't even
>>want to think about that, though I'll probably add that in later sometime.
>>
>> define(`confAUTH_OPTIONS', `A')dnl
>> TRUST_AUTH_MECH(`LOGIN PLAIN')dnl
>> define(`confAUTH_MECHANISMS', `LOGIN PLAIN')dnl
>
>
> Looks good for using those 2 mechs. Better to combine that in second
> step with STARTTLS to not send auth data unencrypted through the net.
>
>
>>And then I just want to login with my system accounts and not have to
>>worry about keeping SASL accounts in sync with my system (stored in an
>>LDAP server) accounts, I have this in my /usr/lib/sasl2/Sendmail.conf file:
>>
>> pwcheck_method:pam
>
>
> That is wrong. This _was_ valid with SASL v1.5 but no longer with
> SASLv2. So change it back to be
>
> pwcheck_method:saslauthd
>
>
>>When I try to send an email, Thunderbird asks me for my password (after
>>I put my username in the properties for my SMTP server, of course) and
>>it fails. I can enter my password a couple different time, but it always
>>fails.
>
>
> It can't work with that setup.
>
>
>>Justin Willmert
>
>
> Run "service saslauthd start" and "chkconfig saslauthd on". As soon as
> started the saslauthd you are able to SMTP AUTH. The default setup is to
> use shadow with saslauthd which is basically the same as using pam
> (default). Only if you change your /etc/pam.d/smtp setup to be different
> for specific purposes you get something different and it will require to
> change in /etc/sysconfig/saslauthd to MECH=pam to use PAM.
>
> http://www.joreybump.com/code/howto/smtpauth.html
>
> That is a good howto for Fedora use of Sendmail and SMTP AUTH.
>
> Alexander
>
>
>
More information about the fedora-list
mailing list