Sent the first one from a broken mail acct... Here is my postconf -n and
saslfinger outputs:
alias_maps = hash:/etc/mailman/aliases
bounce_queue_lifetime = 4d
broken_sasl_auth_clients = yes
command_directory = /usr/sbin
config_directory = /etc/postfix
daemon_directory = /usr/libexec/postfix
data_directory = /var/lib/postfix
default_destination_concurrency_limit = 5
default_privs = nobody
default_process_limit = 300
disable_vrfy_command = yes
home_mailbox = Maildir/
html_directory = no
in_flow_delay = 1s
local_destination_concurrency_limit = 5
local_recipient_maps =
mail_owner = postfix
mailbox_command = /usr/libexec/dovecot/deliver
mailbox_transport = dovecot
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
maximal_queue_lifetime = 4d
message_size_limit = 10485760
minimal_backoff_time = 3600s
mydestination = $myhostname
mydomain = cruiseplanners.com
myhostname = mail.cruisesystem.com
mynetworks = 127.0.0.0/8, 192.168.0.0/24, 192.168.5.0/24, 66.175.103.224/28,
72.17.187.154/32
newaliases_path = /usr/bin/newaliases
owner_request_special = no
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/postfix-2.7.4/README_FILES
recipient_delimiter = +
sample_directory = /usr/share/doc/postfix-2.7.4/samples
sendmail_path = /usr/sbin/sendmail.postfix
setgid_group = postdrop
smtp_connect_timeout = 300s
smtp_helo_timeout = 300s
smtpd_client_connection_count_limit = 20
smtpd_client_connection_rate_limit = 20
smtpd_client_message_rate_limit = 20
smtpd_client_restrictions = permit_mynetworks,
hash:/etc/postfix/access,
permit_sasl_authenticated, permit
smtpd_data_restrictions = permit_mynetworks,
permit_sasl_authenticated, reject_unauth_pipelining,
permit
smtpd_etrn_restrictions = reject
smtpd_helo_required = yes
smtpd_recipient_restrictions = permit_mynetworks,
permit_sasl_authenticated,
check_recipient_access hash:/etc/postfix/whitelist_recipient,
check_client_access hash:/etc/postfix/whitelist_client,
reject_unauth_destination,
check_client_access regexp:/etc/postfix/permit_client_nots25r,
reject_unauth_pipelining,
reject_non_fqdn_sender, reject_non_fqdn_recipient,
reject_unknown_sender_domain,
reject_unknown_recipient_domain,
reject_invalid_hostname,
reject_multi_recipient_bounce, check_helo_access
regexp:/etc/postfix/reject_helo
check_sender_ns_access hash:/etc/postfix/reject_ns
check_sender_mx_access hash:/etc/postfix/reject_mx
check_sender_ns_access regexp:/etc/postfix/check_ns
check_recipient_access mysql:/etc/postfix/mysql-recipient.cf,
check_client_access regexp:/etc/postfix/prepend_client
reject
smtpd_restriction_classes = check_sender_apacheinfo check_helo_19info
check_sender_info reject_client_blackip
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = yes
smtpd_sasl_path = /var/spool/postfix/private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_sender_restrictions = permit_mynetworks,
hash:/etc/postfix/access,
permit_sasl_authenticated,
reject_unknown_sender_domain,
reject_non_fqdn_sender, permit
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/postfix/postfix.pem
smtpd_tls_key_file = $smtpd_tls_cert_file
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = yes
soft_bounce = no
strict_rfc821_envelopes = no
tls_random_source = dev:/dev/urandom
unknown_local_recipient_reject_code = 550
virtual_alias_maps =
hash:/var/lib/mailman/data/virtual-mailman,mysql:/etc/postfix/
mysql-virtual.cf
virtual_mailbox_base = /home/vmail
virtual_mailbox_domains = mysql:/etc/postfix/mysql-virtual-domains.cf
virtual_mailbox_maps = mysql:/etc/postfix/mysql-virtual-maps.cf
virtual_transport = maildrop
-------------------------------------------------------------------------------------------------
saslfinger -c
------------------------------------------------------------------------------------------
[root@newmail ~]# saslfinger -c
saslfinger - postfix Cyrus sasl configuration Sun Jun 26 17:53:40 EDT 2011
version: 1.0.2
mode: client-side SMTP AUTH
-- basics --
Postfix: 2.7.4
System: Fedora release 14 (Laughlin)
-- smtp is linked to --
libsasl2.so.2 => /usr/lib64/libsasl2.so.2 (0x00007f7d2cba9000)
-- active SMTP AUTH and TLS parameters for smtp --
No active SMTP AUTH and TLS parameters for smtp in main.cf!
SMTP AUTH can't work!
-----------------------------------------------------------------------------------------------------
saslfinger -s
-----------------------------------------------------------------------------------
[root@newmail ~]# saslfinger -s
saslfinger - postfix Cyrus sasl configuration Sun Jun 26 17:45:20 EDT 2011
version: 1.0.2
mode: server-side SMTP AUTH
-- basics --
Postfix: 2.7.4
System: Fedora release 14 (Laughlin)
-- smtpd is linked to --
libsasl2.so.2 => /usr/lib64/libsasl2.so.2 (0x00007f646f313000)
-- active SMTP AUTH and TLS parameters for smtpd --
broken_sasl_auth_clients = yes
smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = yes
smtpd_sasl_path = /var/spool/postfix/private/auth
smtpd_sasl_security_options = noanonymous
smtpd_sasl_type = dovecot
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/postfix/postfix.pem
smtpd_tls_key_file = $smtpd_tls_cert_file
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = yes
-- listing of /usr/lib64/sasl2 --
total 180
drwxr-xr-x. 2 root root 4096 Apr 9 2010 .
dr-xr-xr-x. 69 root root 40960 Jun 26 03:41 ..
-rwxr-xr-x. 1 root root 16408 Apr 9 2010 libanonymous.so
-rwxr-xr-x. 1 root root 16408 Apr 9 2010 libanonymous.so.2
-rwxr-xr-x. 1 root root 16408 Apr 9 2010 libanonymous.so.2.0.23
-rwxr-xr-x. 1 root root 22272 Apr 9 2010 libsasldb.so
-rwxr-xr-x. 1 root root 22272 Apr 9 2010 libsasldb.so.2
-rwxr-xr-x. 1 root root 22272 Apr 9 2010 libsasldb.so.2.0.23
-- listing of /etc/sasl2 --
total 32
drwxr-xr-x. 2 root root 4096 Jun 26 17:38 .
drwxr-xr-x. 92 root root 12288 Jun 26 17:21 ..
-rw-r--r-- 1 root root 49 Jun 26 16:40 smtpd.conf
-rw-r--r-- 1 root root 692 Jun 26 15:34 smtpd.conf.brit.edited
-rw-r--r-- 1 root root 702 Jun 26 11:25 smtpd.conf.brittney
-rw-r--r-- 1 root root 51 Jun 26 15:35 smtpd.conf.orig
-- content of /etc/sasl2/smtpd.conf --
pwcheck_method: saslauthd
mech_list: plain login
-- active services in /etc/postfix/master.cf --
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
smtp inet n - n - 100 smtpd
-o content_filter=smtp-amavis:[127.0.0.1]:10024
-o smtp_connect_timeout=30
-o smtp_helo_timeout=30
1025 inet n - n - 100 smtpd
-o content_filter=smtp-amavis:[127.0.0.1]:10024
-o smtp_connect_timeout=30
-o smtp_helo_timeout=30
submission inet n - n - - smtpd
-o smtpd_etrn_restrictions=reject
-o smtpd_sasl_auth_enable=yes
-o smtpd_client_restrictions=permit_sasl_authenticated,reject
-o content_filter=smtp-amavis:[127.0.0.1]:10026
smtps inet n - n - - smtpd
-o smtpd_tls_wrappermode=yes
-o smtpd_sasl_auth_enable=yes
-o smtpd_client_restrictions=permit_sasl_authenticated,reject
-o content_filter=smtp-amavis:[127.0.0.1]:10024
pickup fifo n - n 60 1 pickup
cleanup unix n - n - 0 cleanup
qmgr fifo n - n 300 1 qmgr
tlsmgr unix - - n 1000? 1 tlsmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
trace unix - - n - 0 bounce
verify unix - - n - 1 verify
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - n - 50 smtp
-o receive_override_options=no_address_mappings
-o content_filter=smtp-amavis:[127.0.0.1]:10024
-o smtp_connect_timeout=30
-o smtp_helo_timeout=30
relay unix - - n - - smtp
-o fallback_relay=
-o smtp_helo_timeout=30 -o smtp_connect_timeout=30
showq unix n - n - - showq
error unix - - n - - error
discard unix - - n - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - n - 1 anvil
scache unix - - n - 1 scache
maildrop unix - n n - - pipe
flags=ODRu user=vmail argv=/usr/bin/maildrop -d ${recipient}
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
($recipient)
ifmail unix - n n - - pipe
flags=F user=ftn argv=/var/spool/postfix/private/ifmail -r $nexthop
($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=foo argv=/var/spool/postfix/private/bsmtp -f $sender
$nexthop $recipient
dovecot unix - n n - - pipe
flags=DRhu user=vmail:vmail argv=/usr/libexec/dovecot/deliver -f ${sender}
-d ${user}@${nexthop} -n -m ${extension}
smtp-amavis unix - - n - 4 smtp
-o smtp_data_done_timeout=1200
-o disable_dns_lookups=yes
-o smtp_send_xforward_command=yes
-o disable_mime_output_conversion=yes
-o max_use=20
-o smtp_connect_timeout=30
-o smtp_helo_timeout=30
lmtp-amavis unix - - n - 2 lmtp
-o lmtp_data_done_timeout=1200
-o lmtp_send_xforward_command=yes
-o disable_dns_lookups=yes
-o max_use=20
10025 inet n - n - - smtpd
-o content_filter=
-o mynetworks=127.0.0.1,[::1]/128,192.168.0.0/16
-o smtpd_authorized_xforward_hosts=127.0.0.0/8,[::1]/128,192.168.0.0/16
-o smtpd_delay_reject=no
-o smtpd_recipient_restrictions=permit_mynetworks,reject
-o smtpd_data_restrictions=reject_unauth_pipelining
-o smtpd_restriction_classes=
-o strict_rfc821_envelopes=yes
retry unix - - n - - error
proxywrite unix - - n - 1 proxymap
-- mechanisms on localhost --
250-AUTH PLAIN
250-AUTH=PLAIN
-- end of saslfinger output --
