Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 08 Jan 2010 09:29:46 +0000
From:      Matthew Seaman <m.seaman@infracaninophile.co.uk>
To:        Matthias Apitz <guru@unixarea.de>
Cc:        Glyn Millington <glyn@millingtons.org>, freebsd-questions@freebsd.org
Subject:   Re: sendmail && SMTP AUTH: question about	/etc/mail/auth/client-info file
Message-ID:  <4B46FB0A.20005@infracaninophile.co.uk>
In-Reply-To: <20100108090256.GA1998@current.Sisis.de>
References:  <20100107155451.GA26295@current.Sisis.de>	<19270.54320.163083.261490@millingtons.org> <20100108090256.GA1998@current.Sisis.de>
next in thread | previous in thread | raw e-mail | index | archive | help 

[-- Attachment #1 --]
Matthias Apitz wrote:

> I have read the above page during my configuration but it does not
> explain to me which user must be configured in U: value; Is it me? Or is it
> the userID the sendmail daemon is running as? It works with "U:root",
> but what does this mean exactly?

That's a SASL thing -- it has the concept of differentiating between
authentication ID (who you are (and you can prove it because you have the
password or other security token)) and authorization ID (who you are logging
in as, and whose permissions you can use on the remote server).  According
to /usr/share/sendmail/cf/README:

> The RHS for an AuthInfo: entry in the access map should consists of a
> list of tokens, each of which has the form: "TDstring" (including
> the quotes).  T is a tag which describes the item, D is a delimiter,
> either ':' for simple text or '=' for a base64 encoded string.
> Valid values for the tag are:
> 
>         U       user (authorization) id
>         I       authentication id
>         P       password
>         R       realm
>         M       list of mechanisms delimited by spaces

You don't generally need all of these items.  For the simplest case,
all you'ld need is U:username and P:password -- if you don't give 
I:authid explicitly it assumes it is the same as U:username (and vice
versa, if you give I:authid and not U:username).

	Cheers,

	Matthew

-- 
Dr Matthew J Seaman MA, D.Phil.                   7 Priory Courtyard
                                                  Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey     Ramsgate
                                                  Kent, CT11 9PW


[-- Attachment #2 --]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (FreeBSD)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEAREIAAYFAktG+xEACgkQ8Mjk52CukIznbQCfVuBEEIurvOgP0FfACl6BBGY0
q3EAnipHUt1tAedOjIcDbh/ngyQqitET
=pLRz
-----END PGP SIGNATURE-----

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4B46FB0A.20005>