Problima me postfix+sasl2+mysql apotyxia epibebaioseis stoixiwn apo thunderbird gia apostoli email debian lenny

nik0s abcnull at gmail.com
Sat Apr 4 11:27:09 EEST 2009 

Xairetismata stin lista k eyxaristies prokatabolika gia osous "spasoun
to kefali" tous me to sygkekrimeno problima.
To problima einai ws exis: exw akolouthisi to sikgekrimeno tutorial
http://flurdy.com/docs/postfix/ k exw riksi maties se auto
http://www.howtoforge.com/virtual-users-domains-postfix-courier-mysql-squirrelmail-debian-lenny
ola paizoun ektos apo to na mporw na steilw e-mail apo thunderbird san
na min diabazei config katholou to sasl.to thunderbird pernei to
pistopoiitiko bgazei koutaki gia password alla den to pernei k
ksanapetaei prompt (oute gia tous local)o server akouei stin 25.

Cofig files:
index:
#--1AB /etc/postfix/sasl/smtpd.conf
#--2AC /etc/postfix/main.cf
#--3DB /etc/default/saslauthd k /etc/pam.d/smtp
#--4FG logs auth.log,mail.log,syslog me oti afora sasl

#--2AC /etc/postfix/main.cf pedia se sxesi me TLS k SASL

#SASL
smtpd_sasl_auth_enable = yes
broken_sasl_auth_clients = yes
smtpd_sasl_path = /etc/postfix/sasl:/usr/lib/sasl2
smtpd_sasl_security_options = noanonymous
smtpd_sasl_local_domain =

#TLS
smtp_tls_CAfile = /etc/postfix/cacert.pem
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtp_tls_security_level = may
smtp_tls_note_starttls_offer = yes
smtpd_tls_CAfile = /etc/postfix/cacert.pem
smtpd_tls_cert_file = /etc/postfix/cert.pem
smtpd_tls_key_file = /etc/postfix/key.pem
smtpd_tls_received_header = yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtpd_tls_auth_only = no
smtpd_tls_session_cache_timeout = 3600s
smtpd_tls_loglevel = 1
smtpd_tls_security_level = may
tls_random_source = dev:/dev/urandom

"Access control" mipws mou diefyge ekei kati k gia sxolia kalytereysis k
asfaleias

#ACL

# Requirements for the HELO statement
smtpd_helo_restrictions = permit_mynetworks, warn_if_reject
reject_non_fqdn_hostname, reject_invalid_hostname, permit

# Requirements for the sender details
smtpd_sender_restrictions = permit_sasl_authenticated,
permit_mynetworks, reject_non_fqdn_sender, reject_unknown_sender_domain,
reject_unauth_pipelining, permit

# Requirements for the connecting server
smtpd_client_restrictions = reject_rbl_client sbl.spamhaus.org,
reject_rbl_client blackholes.easynet.nl, reject_rbl_client dnsbl.njabl.org

# Requirement for the recipient address
smtpd_recipient_restrictions = reject_unauth_pipelining,
permit_mynetworks, permit_sasl_authenticated, reject_non_fqdn_recipient,
reject_unknown_recipient_domain, reject_unauth_destination,
check_policy_service inet:127.0.0.1:60000, permit

#--1AB /etc/postfix/sasl/smtpd.conf opws einai twra exoun gynei polles
dokimes
kme sketo saslauthd se pam-mysql xwris pali epytixia oute gia local users

pwcheck_method: saslauthd auxprop
mech_list: PLAIN LOGIN
allow_plaintext: true
auxprop_plugin: sql
sql_hostnames: 127.0.0.1
sql_user: mail_user
sql_passwd: mail_pass
sql_database: mail_basi
sql_select: select clear from users where id='%u@%r' and enabled = 1

to parapanw query epistrfi timi xeirokinita.

#--3DB /etc/default/saslauthd to postfix einai sto sasl group

MECHANISMS="pam"
OPTIONS="-c -m /var/spool/postfix/var/run/saslauthd"

/etc/pam.d/smtp.conf ektos ton mysql ta ypolipa prosthethikan meta xwris
kanena mynima sto auth.log

auth required /lib/security/pam_nologin.so

auth required /lib/security/pam_mysql.so user=mail passwd=lMi1vpEs
host=127.0.0.1 db=maildb table=users usercolumn=id passwdcolumn=clear
crypt=1

auth required pam_env.so

account sufficient /lib/security/pam_mysql.so user=mail passwd=lMi1vpEs
host=127.0.0.1 db=maildb table=users usercolumn=id passwdcolumn=clear
crypt=1

account required /lib/security/pam_unix.so

#--4FG Logs: tin wra pou prospathw na steilw apo thunderbird

auth.log

postfix/smtpd[1]: sql_select option missing
postfix/smtpd[1]: auxpropfunc error no mechanism available
postfix/smtpd[1]: _sasl_plugin_load failed on sasl_auxprop_plug_init for
plugin: sql
k to idio mynima me saslpasswd2: (afou esbisa tin sasldb)

k genika pernaei apo module se module xwris epitixeia (plain login
cram-md5 ntlm)

den briskei k tin sasldb2 logo oti tin esbisa mias k den eixe
xreisimopoiithi k para tin metafora tis sto chroot tou postfix den eixe
allaksi kati:
saslpasswd2: error deleting entry from sasldb: DB_NOTFOUND: No matching
key/data pair found

se ola ta log pou proanefera exei to idio pragma den eida kati
diaforetiko se antitheti periptwsi tha to steilw.to saslauthd
parepimptotos akouei kanonika sto socket pou dilwsa apoti leei to syslog.

ola einai egkatestimena me saslpluginviewer den deixni kati gia sql to
saslfinger deixni kanonika
ta path to smtpd to exw kanei link episeis sto /usr/lib/sasl2 mpas kai
paizei kati.

to systima eixe perasi apo exim me dokimes apo ti eida gia ldap ypirxe k
ena config /etc/saslauthd se sxesei me ldap epeisis ena diastima perase
se pam-ldap to systima (oxi gia mail omws) alla exoun fygei auta.sta log
episeis ebgaze synexeia slapcat ..sasl..kati (to opoio to ekane k
slapcat _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin:
sql kapia stigmi) k mexri to purge se ldap kioti ypolipo brika xwris na
bgazw tin periptosi oti mporei na exw ksexasei kati pou na kanei override.

exw googlarei apisteyta exw psaxei gia documentation k exw peiramatisti
alla den exw kataferi kati edw k kapies meres.otidipote mporei na einai
boithitiko apo logs peite na to anebasw.

y.g.:
zitw sygnomi prokatabolika se periptosi pou ofeilete kati se diko mou
lathos logo aprosexias i "asxetosinis" gia pithanwn xameno xrono.

More information about the Linux-greek-users mailing list