Sendmail smtp-auth issues
Posted
by
SlackO
on Server Fault
See other posts from Server Fault
or by SlackO
Published on 2012-06-16T17:46:44Z
Indexed on
2012/06/17
15:18 UTC
Read the original article
Hit count: 333
I'm running into a problem with Sendmail trying to implement SMTP- auth. I"m running 8.14.5 and have saslauthd running under FreeBSD 7.0-R.
I don't believe I have starttls enabled (but I also compiled a version with it and have been testing it too - same problem) - just looking for basic auth, but am wondering if my configuration is not compatible with modern mail clients? I don't think I have any certs set up.
It seems an older version of Microsoft Outlook Express works fine with SMTP-auth with no problems, but Outlook 2010 won't work, and neither will Eudora (basic settings to not use encryption and use same uid/pw as pop3 account name)
When trying to send mail the server reports: "550 571 Relaying Denied. Proper authentication required."
Is there some config that I am missing? Why does it work with Outlook Express but not other e-mail clients?
my site.config.m4 has:
APPENDDEF(confENVDEF',
-DSASL=2')
APPENDDEF(conf_sendmail_LIBS',
-lsasl2')
dnl APPENDDEF(confLIBDIRS',
-L/usr/local/lib/sasl2')
APPENDDEF(confLIBDIRS',
-L/usr/local/lib')
APPENDDEF(confINCDIRS',
-I/usr/local/include')
My sendmail.mc has:
define(ConfAUTH_OPTIONS',
A')
TRUST_AUTH_MECH(LOGIN PLAIN')dnl
define(
ConfAUTH_MECHANISMS',`LOGIN PLAIN')dnl
My /usr/local/lib/sasl2/Sendmail.conf has:
pwcheck_method: saslauthd
When I restart sendmail this shows up in the logs:
Jun 16 12:36:24 x sm-mta[79090]: restarting /usr/sbin/sendmail due to signal
Jun 16 12:36:24 x sm-mta[81145]: starting daemon (8.14.5): SMTP+queueing@00:30:00
Jun 16 12:36:24 x sm-mta[81147]: STARTTLS=client, relay=mxgw1.mail.nationalnet.com., version=TLSv1/SSLv3, verify=FAIL, cipher=DHE-RSA-AES256-SHA, bits=256/256
Jun 16 12:36:24 x sm-mta[81148]: STARTTLS=client, relay=mxgw1.mail.nationalnet.com., version=TLSv1/SSLv3, verify=FAIL, cipher=DHE-RSA-AES256-SHA, bits=256/256
testing on the cmd line:
telnet localhost 587
Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 xxxt ESMTP Sendmail 8.14.5/8.14.5; Fri, 15 Jun 2012 18:28:03 -0500 (CDT)
ehlo localhost
250-xxxx Hello localhost [127.0.0.1], pleased to meet you 250-ENHANCEDSTATUSCODES 250-PIPELINING 250-8BITMIME 250-SIZE 250-DSN 250-AUTH GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN 250-DELIVERBY 250 HELP
I am not using any certs or ssl right now - just trying to get basic auth to work. Anyone have any ideas?
© Server Fault or respective owner