Date: Sat, 21 Oct 2006 08:16:40 +0200 From: Martin Schweizer <lists_freebsd@bluewin.ch> To: Mike Spenard <mikes@signull.com>, freebsd-questions@freebsd.org Cc: Martin Schweizer <info@pc-service.ch> Subject: Re: cyrus-sasl2 Message-ID: <20061021061640.GZ73560@saturn.pcs.ms> In-Reply-To: <4538C29B.3050600@signull.com> References: <45392181.3000306@signull.com> <20061020035902.GY73560@saturn.pcs.ms> <4538C29B.3050600@signull.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--3lEnBJ3eT4fJ0mBo Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hello Mike Attached you'll find the mail from Anish an me last year. Hope this helps. = Do=20 you use only sasldb2 or saslauthd? If not drop me a line. Am Fri, Oct 20, 2006 at 08:35:39AM -0400 Mike Spenard schrieb: > Just looking to get sendmail auth working with pwcheck >=20 > Martin Schweizer wrote: > >Hello Mike > > > >What do you need concretly? I use sendmail/cyrus imap (also replication = on=20 > >a second derver)/sieve (also websieve)/apache (incl. ssl). > > > >Am Fri, Oct 20, 2006 at 03:20:33PM -0400 Mike Spenard schrieb: > > =20 > >>Hey Martin, > >>I saw this post, could I get those hints too? > >> > >>Thanks! > >>Mike Spenard > >> > >>Hello Gerard > >> > >>I ran in the same trouble. With some changes you can use the article in= =20 > >>the handbook. Should I send you my hints? > >> > >>Am Tue, Nov 08, 2005 at 08:36:32AM -0500 Gerard Seibert schrieb: > >> =20 > >>>/ I found this notation on regarding cyrus-sasl on the FreeBSD site > >>> =20 > >>/>/=20 > >><http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/smtp-auth.ht= ml>. > >>/[snip] > >> =20 > >>>/ Does this apply to cyrus-sasl2 as well? I tried 'make config' but th= at > >>> =20 > >>/>/ produced nothing. I do not see any option for the 'pwcheck' option = in > >>/>/ the Makefile. What, if any compile options should I include on the > >>/>/ command line? I am running FreeBSD 5.4 at present. > >> =20 > > My goal is to use sendmail and cyrus impad 2.3. The problem is if I > change the mailer in sendmail.mc nothing appears. I also checked > sendmail.cf. There are no other mailers the the default ones. I'm > very confused about the problem. Any ideas are very welcome. I'm using cyrus-imapd22 in production on a few servers with the base=3D20 sendmail. I'm assuming you have cyrus-imapd23 setup correctly. # set the sendmail password check method touch /usr/local/lib/sasl2/Sendmail.conf # add "pwcheck_method: saslauthd" to use sasl database # or "pwcheck_method: passwd" for normal login password checking # add to /etc/make.conf SENDMAIL_CFLAGS+=3D3D -I/usr/local/include -DSASL=3D3D2 \ -D_FFR_SMTP_SSL -DSOCKETMAP SENDMAIL_LDFLAGS+=3D3D-L/usr/local/lib SENDMAIL_LDADD+=3D3D-lsasl2 # set box specific .mc file in /etc/make.conf so upgrades # don't wipe out our existing settings SENDMAIL_MC=3D3D/etc/mail/host.mydomain.com.mc # build shared sendmail libs cd /usr/src/lib/libsm && \ make cleandir && make depend && make obj && make cd /usr/src/lib/libsmutil && \ make cleandir && make depend && make obj && make # now rebuild sendmail in the base cd /usr/src/usr.sbin/sendmail && \ make cleandir && make depend && make obj && make && make install # in for box specific .mc add dnl set SASL options define(`confAUTH_OPTIONS', `A p y')dnl dnl define(`confDEF_AUTH_INFO', /etc/mail/auth-info')dnl DAEMON_OPTIONS(`Port=3D3Dsmtp, Name=3D3DMSA, M=3D3DE')dnl DAEMON_OPTIONS(`Port=3D3Dsmtps, Name=3D3DTLSMSA, M=3D3DEs')dnl define(`confLOG_LEVEL', `13')dnl TRUST_AUTH_MECH(`LOGIN PLAIN')dnl define(`confAUTH_MECHANISMS',`LOGIN PLAIN')dnl define(`confLOCAL_MAILER',`cyrusv2') # stop and restart sendmail cd /etc/mail make make install make stop make start # check if it worked! telnet localhost 25 ehlo localhost If you're trying to host mail for multiple domains you'll need to hack=3D20 the local ruleset to not strip the @domain.tld from the address=3D20 before it's passed to cyrus. The -DSOCKETMAP in the SENDMAIL_CFLAGS=3D20 is needed, but I use it with a special rule to verify the From:=3D20 address that comes from a locally hosted domain is actually valid by=3D20 looking it up via cyrus. =3D2D-=3D20 Anish Mistry --nextPart1950586.76sVkRoCBK Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQBD3Q4sxqA5ziudZT0RAr60AJ9peG8y/2Sw3CsOeWejr06v/GcmyQCaA6Nf QDiynagLlk2ngBGbhcUdUXQ=3D =3D2AAh -----END PGP SIGNATURE----- --nextPart1950586.76sVkRoCBK-- --=20 Regards Martin Schweizer <info@pc-service.ch> PC-Service M. Schweizer GmbH; Bannholzstrasse 6; CH-8608 Bubikon Tel. +41 55 243 30 00; Fax: +41 55 243 33 22; http://www.pc-service.ch; public key : http://www.pc-service.ch/pgp/public_key.asc;=20 fingerprint: EC21 CA4D 5C78 BC2D 73B7 10F9 C1AE 1691 D30F D239; --3lEnBJ3eT4fJ0mBo Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (FreeBSD) iD8DBQFFObtIwa4WkdMP0jkRAsAQAKClqHQXR5LrRG81RKTT/TNvriubbACfciIf 9XleWy4VOOWOxfPEnVmb7ys= =cyq5 -----END PGP SIGNATURE----- --3lEnBJ3eT4fJ0mBo--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20061021061640.GZ73560>