> http://www.postfix.org/SASL_README.html
Thank you. I have read that along with "The missing Cyrus SASL man pages.” And I have been scouring the Internet for answers. But there is some point that still eludes me. I’d be grateful if someone could point me in the right direction. > On Jan 8, 2015, at 6:39 PM, Edgar Pettijohn <ed...@pettijohn-web.com> wrote: > > > On 01/08/15 19:29, George Johnson wrote: >> I'm hoping someone here may have encountered this problem and can suggest a >> solution. I'm running postfix 2.5.14 on Snow Leopard for use as a personal >> mail >> server. My server is configured for SMTP relaying (using the MailServe gui) >> and >> to use the Mac user accounts (plaintext passwords) for authentication. Every >> 10 >> minutes, give or take a few seconds, the same eight lines appear in my mail >> log >> (with fresh process numbers for the smtp demon): >> >> postfix/smtpd[18872]: disconnect from sanacacio.net[65.19.28.60] >> postfix/smtpd[18872]: warning: sanacacio.net[65.19.28.60]: SASL PLAIN >> authentication failed postfix/smtpd[18872]: error: CF: Credentials could not >> be >> verified username or password is invalid. postfix/smtpd[18872]: connect from >> sanacacio.net[65.19.28.60] postfix/smtpd[18865]: disconnect from >> sanacacio.net[65.19.28.60] sanacacio postfix/smtpd[18865]: warning: >> sanacacio.net[65.19.28.60]: SASL PLAIN authentication failed sanacacio > http://www.postfix.org/SASL_README.html > >> postfix/smtpd[18865]: error: CF: Credentials could not be verified username >> or >> password is invalid. sanacacio postfix/smtpd[18865]: connect from >> sanacacio.net[65.19.28.60] >> >> My domain is sanacacio.net. >> >> In addition, whenever I send an email I get an error like this: >> >> sanacacio postfix/local[19315]: od[getpwnam_ext]: no attribute >> dsAttrTypeStandard:MailAttribute in record for user . . . >> >> Can anyone suggest how I can fix this? As a workaround I've set up the >> server so >> it doesn't require SSL for smtp relay. But I want to be sure it is secure as >> possible. >> >> Thanks in advance. Here are more details: >> >> Postconf -a cyrus dovecot: >> >> saslauthd -v saslauthd 2.1.22 authentication mechanisms: getpwent kerberos5 >> rimap >> >> Postconf |grep sasl: >> >> broken_sasl_auth_clients = yes cyrus_sasl_config_path = >> lmtp_sasl_auth_cache_name = lmtp_sasl_auth_cache_time = 90d >> lmtp_sasl_auth_enable = no lmtp_sasl_auth_soft_bounce = yes >> lmtp_sasl_mechanism_filter = lmtp_sasl_password_maps = lmtp_sasl_path = >> lmtp_sasl_security_options = noplaintext, noanonymous >> lmtp_sasl_tls_security_options = $lmtp_sasl_security_options >> lmtp_sasl_tls_verified_security_options = $lmtp_sasl_tls_security_options >> lmtp_sasl_type = cyrus proxy_write_maps = $smtp_sasl_auth_cache_name >> $lmtp_sasl_auth_cache_name send_cyrus_sasl_authzid = no >> smtp_sasl_auth_cache_name = smtp_sasl_auth_cache_time = 90d >> smtp_sasl_auth_enable = no smtp_sasl_auth_soft_bounce = yes >> smtp_sasl_mechanism_filter = smtp_sasl_password_maps = smtp_sasl_path = >> smtp_sasl_security_options = noanonymous smtp_sasl_tls_security_options = >> $smtp_sasl_security_options smtp_sasl_tls_verified_security_options = >> $smtp_sasl_tls_security_options smtp_sasl_type = cyrus >> smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, >> reject_unauth_destination, check_recipient_access >> hash:/usr/local/cutedge/postfix/etc/access smtpd_sasl_auth_enable = yes >> smtpd_sasl_authenticated_header = no smtpd_sasl_exceptions_networks = >> smtpd_sasl_local_domain = $mydomain smtpd_sasl_path = smtpd >> smtpd_sasl_security_options = noanonymous smtpd_sasl_tls_security_options = >> $smtpd_sasl_security_options smtpd_sasl_type = cyrus >> >> >
