I am in the process of setting up postfix 2.9.6, postgrey, and dovecot
2.1.7 on a clean install of Debian wheezy 7.6 AMD. I'm doing this very
systematically in a VirtualBox virtual machine, which lets me experiment
and screw up the settings, since I just recreate the VM if I makes things
unusable.
I've gotten to the point that postfix, postgrey, and dovecot all work just
fine. I can send & receive eMails (relaying outgoing mail through my
comcast account). However, I'm stuck on setting up SASL authorization for
incoming SMTP connections. Up until the time I try to implement SASL
authorization, I can successfully telnet into the system for SMTP and IMAP
connections. Once I try to start SASL authorization it all goes horribly
wrong.
I can't even get SMTP to work.
#telnet localhost 25
Trying ::1...
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
Connection closed by foreign host.
/var/log/mail.info shows:
Oct 5 14:29:31 VMailServerTest postfix/smtpd[16181]: connect from
localhost[127.0.0.1]
Oct 5 14:29:31 VMailServerTest postfix/smtpd[16181]: warning: SASL:
Connect to private/auth failed: Permission denied
Oct 5 14:29:31 VMailServerTest postfix/smtpd[16181]: fatal: no SASL
authentication mechanisms
I'm probably doing something very simple wrong, but I can't see it. I
was hoping some of the august lurkers on this list could take a look at my
settings and see where I'm going wrong.
Here are my settings for postfix and dovecot
postconf -n
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
append_dot_mydomain = no
biff = no
config_directory = /etc/postfix
home_mailbox = Maildir/
inet_interfaces = all
inet_protocols = ipv4
mailbox_command =
mailbox_size_limit = 0
mydestination = Mydomain.org, VMailServerTest.Mydomain.org,
localhost.Mydomain.org, localhost
myhostname = VMailServerTest.Mydomain.org
mynetworks = 127.0.0.0/8 192.168.1.0/32
myorigin = /etc/mailname
queue_directory = /var/spool/postfix
readme_directory = no
recipient_delimiter = +
relayhost = smtp.comcast.net:587
smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
smtp_sasl_security_options = noanonymous
smtp_tls_CApath = /etc/ssl/certs
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
smtpd_client_restrictions = permit_mynetworks, permit_sasl_authenticated,
reject_unknown_client_hostname, reject_unauth_pipelining,
check_policy_service inet:127.0.0.1:60000
smtpd_recipient_restrictions = permit_sasl_authenticated,
permit_mynetworks, reject_invalid_hostname, reject_unauth_destination,
smtpd_sasl_auth_enable = yes
smtpd_sasl_path = private/auth
smtpd_sasl_type = dovecot
smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file = /etc/ssl/private/ssl-cert-snakeoil.key
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtpd_use_tls = yes
doveconf -n
# 2.1.7: /etc/dovecot/dovecot.conf
# OS: Linux 3.2.0-4-amd64 x86_64 Debian 7.6
auth_mechanisms = plain login
base_dir = /var/run/dovecot/
login_greeting = Welcome to Dovecot
mail_location = maildir:~/Maildir
namespace inbox {
inbox = yes
location =
mailbox Drafts {
special_use = \Drafts
}
mailbox Junk {
special_use = \Junk
}
mailbox Sent {
special_use = \Sent
}
mailbox "Sent Messages" {
special_use = \Sent
}
mailbox Trash {
special_use = \Trash
}
prefix =
}
passdb {
driver = pam
}
plugin {
sieve = ~/.dovecot.sieve
sieve_dir = ~/sieve
}
protocols = " imap pop3"
service auth {
group = postfix
unix_listener /var/spool/postfix/private/auth {
mode = 0660
}
user = postfix
}
ssl_cert = </etc/dovecot/dovecot.pem
ssl_key = </etc/dovecot/private/dovecot.pem
userdb {
driver = passwd
}
Thank you in advance for any ideas or insights!
--
Casey Bralla
