On 3/4/2009 10:19 AM, Brian Evans - Postfix List wrote:
Robert A. Ober wrote:
On 3/4/2009 9:56 AM, Scent-Sations Support wrote:
Robert A. Ober wrote:
On 3/4/2009 9:48 AM, Charles Marcus wrote:
No, postfix -n does not return anything except a posfix generated
error. It does not like the -n .
Charles means 'postconf -n'.
This gives us a better picture of what Postfix is using and avoids fat
finger mistakes.
Brian
But of course!
Here it is;
mynetworks = 76.224.200.64/29
I would add in 127.0.0.1 to that too.
smtpd_client_restrictions = permit_mynetworks,
permit_sasl_authenticated, check_client_access
hash:/etc/postfix/pop-before-smtp
If there are no REJECTs in that hash, then it has no effect.
smtpd_recipient_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject_unauth_destination
smtpd_sasl_auth_enable = yes
This means use cyrus SASL unless smtpd_sasl_type=dovecot and
smtpd_sasl_path are set.
smtpd_sasl_local_domain = robob.com
smtpd_sasl_security_options = noanonymous
smtpd_sender_restrictions = permit_mynetworks, permit_sasl_authenticated
This restriction has no meaning other than: permit,permit,permit.
Robert;-)
PS:Turned off the sasl_auth_type = dovecot as it kept my IMAP from
sending as well.
You mentioned having issues with Dovecot.
Have you read over http://www.postfix.org/SASL_README.html#server_dovecot ?
Brian
I have read so much I am not sure. Very tired!
I did :
vi /etc/sysconfig/saslauthd :
/# SASL library configuration file for postfix
# all parameters are documented into:
# /usr/share/doc/cyrus-sasl/options.html
# The mech_list parameters list the sasl mechanisms to use,
# default being all mechs found.
mech_list: plain login
# To authenticate using the separate saslauthd daemon, (e.g. for
# system or ldap users). Also see /etc/sysconfig/saslauthd.
pwcheck_method: saslauthd
saslauthd_path: /var/lib/sasl2/mux
# To authenticate against users stored in sasldb.
#pwcheck_method: auxprop
#auxprop_plugin: sasldb
#sasldb_path: /var/lib/sasl2/sasl.db
The options were commented so I previously thought they were the defaults.
That did not actually fix it. So I did: vi /etc/smtpd.conf:
# SASL library configuration file for postfix
# all parameters are documented into:
# /usr/share/doc/cyrus-sasl/options.html
# The mech_list parameters list the sasl mechanisms to use,
# default being all mechs found.
mech_list: plain login
# To authenticate using the separate saslauthd daemon, (e.g. for
# system or ldap users). Also see /etc/sysconfig/saslauthd.
pwcheck_method: saslauthd
saslauthd_path: /var/lib/sasl2/mux
# To authenticate against users stored in sasldb.
#pwcheck_method: auxprop
#auxprop_plugin: sasldb
#sasldb_path: /var/lib/sasl2/sasl.db
There is some issue with Mandriva 2009.0 that requires
SASL_AUTHMECH=shadow in /etc/sasl2/saslauthd.
Now it works for Thunderbird and OL2007. OL2003 and OLXP still give
relay access denied. Any OL workarounds? Have outgoing server requires
authentication checked and with/without same as incoming.
Robert
