Jay G. Scott a écrit : > Greetings, > > client = thunderbird 3.0 beta 3 > postfix 2.3.3 > linux, host == jgstoy > > doing TLS encryption and authentication. > > windows/thunderbird 2.0.0.22 works > windows/outlook 2003 works > > looking at /var/log/maillog i see that thunderbird 3 is setting > up a TLS connection okay. > > but the authentication fails: > Aug 13 14:51:40 smail postfix/smtpd[3128]: warning: SASL authentication > failure: no secret in database > Aug 13 14:51:40 smail postfix/smtpd[3128]: warning: > jgstoy.arlut.utexas.edu[10.3.16.56]: SASL CRAM-MD5 authentication failed: > authentication failure > > 1. i can't seem to tell thunderbird not to use cram-md5, but > that might be a short-term workaround. if i change smtpd.conf > to be just plain login then thunderbird says the server doesn't > authenticate. >
if you don't want cram-md5, do not enable "secure authentication" in Thunderbird. Make sure to use TLS (not the option Thunderbird calls "SSL") so that the password doesn't travel in clear text. (in postfix, smtpd_tls_auth_only=yes...). note that cram-md5 is no more considered secure. so TLS is still needed. but then, why care about cram-md5? > 2. some people who should know were saying in feb 2007 that > saslauthd did not support cram-md5. but.... it looks like > it should. does it work nowadays? > I have no idea. I prefer dovecot-auth over cyrus-sasl. > 3. i CAN use openssl to "telnet" in and send mail from the > linux client jgstoy. but i used > auth plain > not auth cram-md5. so the problem is getting cram-md5 to > work on the server, right? > > j. >
