From owner-freebsd-questions@FreeBSD.ORG Fri Jan 8 09:29:59 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 255A710656A3 for ; Fri, 8 Jan 2010 09:29:59 +0000 (UTC) (envelope-from m.seaman@infracaninophile.co.uk) Received: from smtp.infracaninophile.co.uk (gate6.infracaninophile.co.uk [IPv6:2001:8b0:151:1::1]) by mx1.freebsd.org (Postfix) with ESMTP id 4685A8FC1F for ; Fri, 8 Jan 2010 09:29:58 +0000 (UTC) Received: from happy-idiot-talk.infracaninophile.co.uk (localhost [IPv6:::1]) (authenticated bits=0) by smtp.infracaninophile.co.uk (8.14.4/8.14.3) with ESMTP id o089Trxg085840; Fri, 8 Jan 2010 09:29:54 GMT (envelope-from m.seaman@infracaninophile.co.uk) X-DKIM: Sendmail DKIM Filter v2.8.3 smtp.infracaninophile.co.uk o089Trxg085840 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=infracaninophile.co.uk; s=201001-infracaninophile; t=1262942994; bh=bo9k/djlkXCi4NcLsfQ4NQPG3SY6HlvSlxVXOqwTrdo=; h=Message-ID:Date:From:MIME-Version:To:CC:Subject:References: In-Reply-To:Content-Type:Cc:Content-Type:Date:From:In-Reply-To: Message-ID:Mime-Version:References:To; z=Message-ID:=20<4B46FB0A.20005@infracaninophile.co.uk>|Date:=20Fri ,=2008=20Jan=202010=2009:29:46=20+0000|From:=20Matthew=20Seaman=20 |Organization:=20Infracaninophile |User-Agent:=20Thunderbird=202.0.0.23=20(X11/20091129)|MIME-Versio n:=201.0|To:=20Matthias=20Apitz=20|CC:=20Glyn=20 Millington=20,=20=0D=0A=20freebsd-questions@ freebsd.org|Subject:=20Re:=20sendmail=20&&=20SMTP=20AUTH:=20questi on=20about=09/etc/mail/auth/client-info=0D=0A=20file|References:=2 0<20100107155451.GA26295@current.Sisis.de>=09<19270.54320.163083.2 61490@millingtons.org>=20<20100108090256.GA1998@current.Sisis.de>| In-Reply-To:=20<20100108090256.GA1998@current.Sisis.de>|X-Enigmail -Version:=200.95.6|Content-Type:=20multipart/signed=3B=20micalg=3D pgp-sha256=3B=0D=0A=20protocol=3D"application/pgp-signature"=3B=0D =0A=20boundary=3D"------------enig0726AF7C96F1CD090E6CBB46"; b=FnLKuO1u1m5iIJi6fQbvDmtYhovKp+7MwYn1gjJXxIacCFnmxXNzHdpigA1nvO+T6 dYsp7InpxBrXJ0lAeB1lzRgz7pTSz4UfKr1hxResFQnmoNjJwysQ1ULyjXV1axGVVV TsASV/NF/HxRsxFhzn8Dkg7k3JtYZ5PAiVhMq/mg= X-Authentication-Warning: happy-idiot-talk.infracaninophile.co.uk: Host localhost [IPv6:::1] claimed to be happy-idiot-talk.infracaninophile.co.uk Message-ID: <4B46FB0A.20005@infracaninophile.co.uk> Date: Fri, 08 Jan 2010 09:29:46 +0000 From: Matthew Seaman Organization: Infracaninophile User-Agent: Thunderbird 2.0.0.23 (X11/20091129) MIME-Version: 1.0 To: Matthias Apitz References: <20100107155451.GA26295@current.Sisis.de> <19270.54320.163083.261490@millingtons.org> <20100108090256.GA1998@current.Sisis.de> In-Reply-To: <20100108090256.GA1998@current.Sisis.de> X-Enigmail-Version: 0.95.6 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="------------enig0726AF7C96F1CD090E6CBB46" X-Virus-Scanned: clamav-milter 0.95.3 at happy-idiot-talk.infracaninophile.co.uk X-Virus-Status: Clean X-Spam-Status: No, score=-2.8 required=5.0 tests=AWL,BAYES_00,DKIM_SIGNED, DKIM_VERIFIED,NO_RELAYS autolearn=ham version=3.2.5 X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on happy-idiot-talk.infracaninophile.co.uk Cc: Glyn Millington , freebsd-questions@freebsd.org Subject: Re: sendmail && SMTP AUTH: question about /etc/mail/auth/client-info file X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 08 Jan 2010 09:29:59 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig0726AF7C96F1CD090E6CBB46 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable Matthias Apitz wrote: > I have read the above page during my configuration but it does not > explain to me which user must be configured in U: value; Is it me? Or i= s it > the userID the sendmail daemon is running as? It works with "U:root", > but what does this mean exactly? That's a SASL thing -- it has the concept of differentiating between authentication ID (who you are (and you can prove it because you have the= password or other security token)) and authorization ID (who you are logg= ing in as, and whose permissions you can use on the remote server). Accordin= g to /usr/share/sendmail/cf/README: > The RHS for an AuthInfo: entry in the access map should consists of a > list of tokens, each of which has the form: "TDstring" (including > the quotes). T is a tag which describes the item, D is a delimiter, > either ':' for simple text or '=3D' for a base64 encoded string. > Valid values for the tag are: >=20 > U user (authorization) id > I authentication id > P password > R realm > M list of mechanisms delimited by spaces You don't generally need all of these items. For the simplest case, all you'ld need is U:username and P:password -- if you don't give=20 I:authid explicitly it assumes it is the same as U:username (and vice versa, if you give I:authid and not U:username). Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW --------------enig0726AF7C96F1CD090E6CBB46 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.14 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEAREIAAYFAktG+xEACgkQ8Mjk52CukIznbQCfVuBEEIurvOgP0FfACl6BBGY0 q3EAnipHUt1tAedOjIcDbh/ngyQqitET =pLRz -----END PGP SIGNATURE----- --------------enig0726AF7C96F1CD090E6CBB46--