Alessio Cecchi wrote:
Christopher Chan ha scritto:
Alessio Cecchi wrote:
Hello,

this is my situation, one qmail+vpopmail(MySQL)+dovecot server that works like an MX record and provide access on mailbox via POP3 or IMAP.

Another server with postfix and SASL for SMTP-Auth only, with SASL that query the vpopmail DB for user authentication.

My intention is to set a query into SASL for use the same flags for SMTP-Auth that read vpopmail and qmail.



Do you run dovecot? If you do, just make use of dovecot's sasl provisions. That is supported by postfix.


Thanks,

yes I run dovecot and I know the SASL + Postfix features, but on the qmail server, postfix is on another server.

Summary:

server1

qmail + vpopmail with mysql backend + dovecot with vpopmail native authentication ("passdb checkpassword" and "args = /home/vpopmail/bin/vchkpw")

server2

postfix + SASL that read users from mysql on server1

How can postfix access to dovecot SASL auth mechanis?

I could install dovecot on server2, but dovecot can check vpopmail flags on when run with "passdb checkpassword" and "args = /home/vpopmail/bin/vchkpw" and in the same server with vpopmail binary.

Or not?


Eh? What version of dovecot are you running? dovecot can directly link into vpopmail. Install vpopmail on server2, point it to the mysql server, compile and install a dovecot version above 1.0 (prefereably latest) and compile and install a version of postfix that can make use of dovecot's sasl provision.

Quite a bit of fiddling I know...


postfix main.cf

smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth (under postfix spool directory - need to set this in dovecot.conf in the auth section under client subsection)
smtpd_sasl_auth_enable = yes

Read the SASL_README file for dovecot stuff:

Building Postfix with Dovecot SASL support

These instructions assume that you build Postfix from source code as described in the INSTALL document. Some modification may be required if you build Postfix
from a vendor-specific source package.

Support for the Dovecot version 1 SASL protocol is available in Postfix 2.3 and later. At the time of writing, only server-side SASL support is available, so
you can't use it to authenticate to your network provider's server. Dovecot
uses its own daemon process for authentication. This keeps the Postfix build
process simple, because there is no need to link extra libraries into Postfix.

To generate the necessary Makefiles, execute the following in the Postfix top-
level directory:

    % make makefiles CCARGS='-DUSE_SASL_AUTH -
    DDEF_SERVER_SASL_TYPE=\"dovecot\"'

After this, proceed with "make" as described in the INSTALL document.

Notes:

* The "-DDEF_SERVER_SASL_TYPE" stuff is not necessary; it just makes Postfix configuration a little more convenient because you don't have to specify
    the SASL plug-in type in the Postfix main.cf file.

  * If you also want support for LDAP or TLS, you will have to merge their
    CCARGS and AUXLIBS into the above command line.

!DSPAM:4acd44cd32715512521434!

Reply via email to