From owner-freebsd-questions@FreeBSD.ORG Fri Jul 23 18:09:38 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BA9FB16A4CE for ; Fri, 23 Jul 2004 18:09:38 +0000 (GMT) Received: from pdx-s02.navi.net (pdx-s02.navi.net [209.95.37.2]) by mx1.FreeBSD.org (Postfix) with ESMTP id 48A4A43D39 for ; Fri, 23 Jul 2004 18:09:38 +0000 (GMT) (envelope-from amelkomukov@flexpop.net) Received: from localhost (amelkomukov@localhost) by pdx-s02.navi.net (8.9.1a/8.9.1) with ESMTP id LAA13358 for ; Fri, 23 Jul 2004 11:09:37 -0700 (PDT) Date: Fri, 23 Jul 2004 11:09:37 -0700 (PDT) From: Alex Melkomukov X-Sender: amelkomukov@pdx-s02.navi.net To: freebsd-questions@freebsd.org Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: chrooting Postfix+SASL+TLS X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 23 Jul 2004 18:09:38 -0000 Hi all, Has anyone successfully set up Postfix to run chrooted with saslauthd? I've been trying to get this to work for several days now and have run out of ideas. Everything works fine non-chrooted, but as soon as I run postfix/smtpd chrooted, I get the following messages in maillog: Jul 23 09:46:30 xxx postfix/smtpd[2472]: connect from yyy[999.999.999.999] Jul 23 09:46:30 xxx postfix/smtpd[2472]: setting up TLS connection from yyy[999.999.999.999] Jul 23 09:46:30 xxx postfix/smtpd[2472]: TLS connection established from yyy[999.999.999.99]: TLSv1 with cipher RC4-MD5 (128/128 bits) Jul 23 09:46:30 xxx postfix/smtpd[2472]: warning: SASL authentication failure: cannot connect to saslauthd server: No such file or directory Jul 23 09:46:30 xxx postfix/smtpd[2472]: warning: yyy[999.999.999.999]: SASL LOGIN authentication failed Jul 23 09:46:30 xxx postfix/smtpd[2472]: warning: Read failed in network_biopair_interop with errno=0: num_read=0, want_read=5 Jul 23 09:46:30 xxx postfix/smtpd[2472]: lost connection after AUTH from yyy[999.999.999.999] Jul 23 09:46:30 xxx postfix/smtpd[2472]: disconnect from yyy[999.999.999.999] Here is what I have installed: OS: FreeBSD 4.9-RELEASE ports installed: openssl-0.9.7d cyrus-sasl-2.1.18 cyrus-sasl-saslauthd-2.1.18_1 postfix installed from source with TLS patch applied: postfix-2.1.3 pfixtls-0.8.18-2.1.3-0.9.7d postfix chroot directory: /var/spool/postfix saslauthd startup options: /usr/local/sbin/saslauthd -a getpwent -m /var/spool/postfix/var/state/saslauthd tls/sasl options in /etc/postfix/main.cf: # sasl config # broken_sasl_auth_clients = yes smtpd_sasl_auth_enable = yes smtpd_sasl_local_domain = smtpd_sender_restrictions = permit_sasl_authenticated, permit_mynetworks smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, reject_unauth_destination # tls config # smtp_use_tls = yes smtpd_use_tls = yes smtp_tls_note_starttls_offer = yes smtpd_tls_key_file = /etc/postfix/ssl/smtpd.pem smtpd_tls_cert_file = /etc/postfix/ssl/smtpd.pem smtpd_tls_CAfile = /etc/postfix/ssl/smtpd.pem smtpd_tls_loglevel = 1 smtpd_tls_received_header = yes smtpd_tls_session_cache_timeout = 3600s tls_random_source = dev:/dev/urandom I have tried all kinds of tips from my archive searches and still no luck. Can anyone give me any pointers/instructions on how to run postfix chrooted with saslauthd using FreeBSD 4.9? any advice will be appreciated. thanks in advance, Alex M.