SASL was compiled with --enable-sql. Here is the output of saslfinger:
=======================================================
saslfinger - postfix Cyrus sasl configuration pon cze 22 09:25:28 CEST 2009
version: 1.0.2
mode: server-side SMTP AUTH
-- basics --
Postfix: 2.6.2
System: CentOS release 5.3 (Final)
-- smtpd is linked to --
libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0x0692b000)
-- active SMTP AUTH and TLS parameters for smtpd --
broken_sasl_auth_clients = yes
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain = $mydomain
smtpd_sasl_path = smtpd
smtpd_sasl_security_options = noanonymous
-- listing of /usr/lib/sasl2 --
razem 2948
drwxr-xr-x 2 root root 4096 cze 22 2009 .
drwxr-xr-x 77 root root 36864 cze 22 04:08 ..
-rwxr-xr-x 1 root root 884 sty 7 2007 libanonymous.la
-rwxr-xr-x 1 root root 14372 sty 7 2007 libanonymous.so
-rwxr-xr-x 1 root root 14372 sty 7 2007 libanonymous.so.2
-rwxr-xr-x 1 root root 14372 sty 7 2007 libanonymous.so.2.0.22
-rwxr-xr-x 1 root root 856 sty 7 2007 liblogin.la
-rwxr-xr-x 1 root root 14752 sty 7 2007 liblogin.so
-rwxr-xr-x 1 root root 14752 sty 7 2007 liblogin.so.2
-rwxr-xr-x 1 root root 14752 sty 7 2007 liblogin.so.2.0.22
-rwxr-xr-x 1 root root 856 sty 7 2007 libplain.la
-rwxr-xr-x 1 root root 14848 sty 7 2007 libplain.so
-rwxr-xr-x 1 root root 14848 sty 7 2007 libplain.so.2
-rwxr-xr-x 1 root root 14848 sty 7 2007 libplain.so.2.0.22
-rwxr-xr-x 1 root root 930 sty 7 2007 libsasldb.la
-rwxr-xr-x 1 root root 905200 sty 7 2007 libsasldb.so
-rwxr-xr-x 1 root root 905200 sty 7 2007 libsasldb.so.2
-rwxr-xr-x 1 root root 905200 sty 7 2007 libsasldb.so.2.0.22
-rw-r--r-- 1 root root 25 mar 15 2007 Sendmail.conf
-rw-r--r-- 1 root root 227 cze 22 2009 smtpd.conf
-- listing of /usr/local/lib/sasl2 --
razem 16
drwxr-xr-x 2 root root 4096 cze 22 2009 .
drwxr-xr-x 4 root root 4096 cze 22 03:18 ..
-rw-r--r-- 1 root root 227 cze 22 2009 smtpd.conf
-- listing of /etc/sasl2 --
razem 28
drwxr-xr-x 2 root root 4096 cze 22 2009 .
drwxr-xr-x 89 root root 12288 cze 22 2009 ..
-rw-r--r-- 1 root root 227 cze 22 2009 smtpd.conf
-- content of /usr/lib/sasl2/smtpd.conf --
pwcheck_method: auxprop
sql_engine: pgsql
sql_user: --- replaced ---
sql_passwd: --- replaced ---
sql_hostnames: localhost
sql_database: postfix
sql_select: SELECT password FROM mailbox WHERE username='%...@%r'
mech_list: login plain
log_level: 4
-- content of /usr/local/lib/sasl2/smtpd.conf --
pwcheck_method: auxprop
sql_engine: pgsql
sql_user: --- replaced ---
sql_passwd: --- replaced ---
sql_hostnames: localhost
sql_database: postfix
sql_select: SELECT password FROM mailbox WHERE username='%...@%r'
mech_list: login plain
log_level: 4
-- content of /etc/sasl2/smtpd.conf --
pwcheck_method: auxprop
sql_engine: pgsql
sql_user: --- replaced ---
sql_passwd: --- replaced ---
sql_hostnames: localhost
sql_database: postfix
sql_select: SELECT password FROM mailbox WHERE username='%...@%r'
mech_list: login plain
log_level: 4
-- content of /etc/postfix/sasl/smtpd.conf --
pwcheck_method: auxprop
sql_engine: pgsql
sql_user: --- replaced ---
sql_passwd: --- replaced ---
sql_hostnames: localhost
sql_database: postfix
sql_select: SELECT password FROM mailbox WHERE username='%...@%r'
mech_list: login plain
log_level: 4
-- active services in /etc/postfix/master.cf --
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
smtp inet n - n - - smtpd
submission inet n - n - - smtpd
-o smtpd_sasl_auth_enable=yes
smtps inet n - n - - smtpd
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
pickup fifo n - n 60 1 pickup
cleanup unix n - n - 0 cleanup
qmgr fifo n - n 300 1 qmgr
tlsmgr unix - - n 1000? 1 tlsmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
trace unix - - n - 0 bounce
verify unix - - n - 1 verify
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
proxywrite unix - - n - 1 proxymap
smtp unix - - n - - smtp
relay unix - - n - - smtp
-o smtp_fallback_relay=
showq unix n - n - - showq
error unix - - n - - error
retry unix - - n - - error
discard unix - - n - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - n - 1 anvil
scache unix - - n - 1 scache
-- mechanisms on localhost --
-- end of saslfinger output --
=======================================================
I still get those errors in /var/log/maillog:
warning: SASL authenticatin problem: unable to open db etc/sasldb2: no such
file or directory
All smtpd.conf files from saslfingers' output are the same.
I've compiled everything (postgresql/sasl/postfix) from sources and now I'm
running out of ideas.
SASL was compiles with following options:
./configure --enable-sql --enable-plain --enable-login --enable-cram
--enable-digest --with-dbpath=/etc/sasldb2 --with-pgsql=/usr/local/pgsql/lib
--with-openssl=/usr/include/openssl --disable-otp --disable-krb4
--disable-anon --disable-gssapi --disable-ldapdb
Postfix:
make makefiles CCARGS="-DHAS_PGSQL -I/usr/local/pgsql/include
-DUSE_SASL_AUTH -DUSE_CYRUS_SASL -I/usr/include/sasl -DUSE_TLS
-I/usr/include" AUXLIBS="-L/usr/local/pgsql/lib -lpq -L/usr/lib -lsasl2
-L/usr/lib -lssl -lcrypto"
My /etc/sysconfig/saslauthd file:
SOCKETDIR=/var/run/saslauthd
MECH=pam
FLAGS="-V"
Any ideas? How to make postfix more verbose in logging (so maybe then
/var/log/maillog could contain some clues?)? Where is the log from
saslauthd?
Thank You very much for Your help.
I'm quite confused now :)
With regards,
R.
