> On Jun 2, 2017, at 1:20 AM, Roelof Wobben <r.wob...@home.nl> wrote:
>
> oke, you mean this config file :
>
> /etc/sasl/smtpd.conf
>
> pwcheck_method: auxprop
> auxprop_plugin: sasldb
> mech_list: PLAIN LOGIN CRAM-MD5 DIGEST-MD5 NTLM
If your Postfix build supports Cyrus SASL, and that's the
configured SASL driver, and that's the right directory, then
yes that file. As a wild guess of one possible issue, the
"postfix" user might need read access to the sasldb database.
Typically, one uses saslauthd, rather than direct sasldb
access. Also storing cleartext passwords is unwise, so
I'd go with PAM as a backend for saslauthd and not support
CRAM-MD5 or DIGEST-MD5, relying instead on TLS for keeping
the passwords safe from network wiretapping. By far the
greater risk is usually password database disclosure.
Find a good SASL guide and forum, the issues here are largely
not Postfix-specific.
--
Viktor.
