On Wed, Sep 25, 2013 at 04:15:01AM -0400, Daniel Ouellet wrote: > Hi, >
Hi, > Is this still true from the man himself: > > "What is not yet possible is to use alternate authentication sources." > > http://marc.info/?l=openbsd-misc&m=129230912814295&w=2 > It's officially still true, unofficially you can do it on recent versions by declaring a table (i'll use a static table for the example but you can use a file, db, sqlite or ldap one): $ encrypt mypassword $2a$06$BTOM8Ck.HEInGF888KbjiORoXSOFT.McbLZIS85gMSmHTPA5Tds2S $ smtpd.conf: table mycreds { gilles = gilles:$2a$06$BTO[...]PA5Tds2S } listen on [...] auth <mycreds> and now, user 'gilles' can authenticate with password 'mypassword' The feature has now stabilized, documented and will be officially supported in the next stable release we do shortly after OpenBSD 5.4 > I try any and every way I could think of without success. I thought that > may be there was a way to do so using some kind of variation of this > from the man page: > > accept from any for any relay via smtps+auth://label@localhost auth > <secrets> > You won't have success with that because relaying auth and incoming auth are completely unrelated, you're only adding one indirection to the same issue. However you successfully turned your setup into an open relay with: from any for any > So, is this correct to assume the option to do so is still not available > yet? Not a huge deal, I just would like to know so that I stop beating > myself trying to get it to work. > summary: For OpenSMTPD versions earlier than 5.3.3, it's correct to assume that. For OpenSMTPD 5.3.3, it's a hidden feature that does work. For next stable OpenSMTPD release, it'll no longer be hidden ;-) -- Gilles Chehade https://www.poolp.org @poolpOrg
