Hello list.
I'm trying to figure out why my postfix+dovecot successfully
authenticates MS Outlook users when sending smtp, but fails when
Entourage 2004 (Mac) tries to authenticate (gives the error
"Authentication failed because Entourage doesn't support any of the
available authentication methods.")
The weird part: EHLO doesnt mention AUTH at all, but if I type "AUTH
LOGIN" it responds with "334 VXNlcm5hbWU6", AUTH PLAIN and AUTH
CRAM-MD5 also responds with similar challenges.
Anyone have a slightes idea of whats going on? Why isnt EHLO
mentioning authentication?
Sorry if this is something that should be brought to dovecot list, I
thought this was a better place to ask (since POP3/IMAP auth works
just fine).
I've included config files and outputs below:
## mail.log when Mac-clients try to authenticate
Sep 4 15:12:48 ext02 postfix/smtpd[27123]: connect from unknown[192.xx.xx.147]
Sep 4 15:12:48 ext02 postfix/smtpd[27123]: lost connection after EHLO
from unknown[192.xx.xx.147]
Sep 4 15:12:48 ext02 postfix/smtpd[27123]: disconnect from
unknown[192.xx.xx.147]
## output of EHLO
220 ext02.xx.no ESMTP Postfix
EHLO test.com
250-ext02.xx.no
250-PIPELINING
250-SIZE 52428800
250-VRFY
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
## software versions
postfix 2.3.8-2+etch1
dovecot 1.0.rc15-2etch4
## output of postconf -n:
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
append_dot_mydomain = no
biff = no
broken_sasl_auth_clients = no
config_directory = /etc/postfix
inet_interfaces = all
mailbox_size_limit = 0
message_size_limit = 52428800
mydestination = ext02.xx.no, localhost.xx.no, localhost
myhostname = ext02.xx.no
mynetworks = 127.0.0.0/8, xx.xx.22.0/24, xx.xx.23.0/24
myorigin = /etc/mailname
recipient_delimiter = +
relayhost = softscan-relay.softcom.dk
smtp_tls_session_cache_database = btree:${queue_directory}/smtp_scache
smtpd_banner = $myhostname ESMTP $mail_name
smtpd_recipient_restrictions = reject_non_fqdn_recipient
reject_non_fqdn_sender reject_unknown_recipient_domain
permit_mynetworks permit_sasl_authenticated
reject_unauth_destination check_client_access
cidr:/etc/postfix/allowed_clients
smtpd_sasl_auth_enable = yes
smtpd_sasl_exceptions_networks = $mynetworks
smtpd_sasl_path = private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file = /etc/ssl/private/ssl-cert-snakeoil.key
smtpd_tls_session_cache_database = btree:${queue_directory}/smtpd_scache
smtpd_use_tls = yes
transport_maps = hash:/etc/postfix/transport
virtual_alias_maps = proxy:mysql:/etc/postfix/mysql_virtual_alias_maps.cf
virtual_gid_maps = static:104
virtual_mailbox_base = /home/vmail/
virtual_mailbox_domains = proxy:mysql:/etc/postfix/mysql_virtual_domains_maps.cf
virtual_mailbox_limit = 112400000
virtual_mailbox_maps = proxy:mysql:/etc/postfix/mysql_virtual_mailbox_maps.cf
virtual_minimum_uid = 101
virtual_transport = virtual
virtual_uid_maps = static:101
## output of /etc/dovecot/dovecot.conf:
protocols = imap imaps pop3 pop3s
disable_plaintext_auth = no
log_timestamp = "%Y-%m-%d %H:%M:%S "
mail_location = maildir:/home/vmail/%d/%n
mail_privileged_group = mail
first_valid_uid = 101
last_valid_uid = 101
protocol imap {
imap_client_workarounds = outlook-idle
}
protocol pop3 {
pop3_uidl_format = %08Xu%08Xv
pop3_client_workarounds = outlook-no-nuls
}
auth_verbose = no
auth_debug = no
auth_debug_passwords = no
auth default {
mechanisms = plain login cram-md5
passdb sql {
args = /etc/dovecot/dovecot-mysql.conf
}
userdb sql {
args = /etc/dovecot/dovecot-mysql.conf
}
user = root
socket listen {
client {
path = /var/spool/postfix/private/auth
mode = 0660
user = postfix
group = postfix
}
}
}
- Erik
