From owner-freebsd-questions Fri Nov 15 17:37: 8 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9802637B401 for ; Fri, 15 Nov 2002 17:37:06 -0800 (PST) Received: from server2.highperformance.net (ip30.gte4.rb1.bel.nwlink.com [209.20.215.30]) by mx1.FreeBSD.org (Postfix) with ESMTP id 22EAB43E42 for ; Fri, 15 Nov 2002 17:36:58 -0800 (PST) (envelope-from jcw@highperformance.net) Received: from server2.highperformance.net (server2.highperformance.net [192.168.1.50]) (authenticated bits=0) by server2.highperformance.net (8.12.6/8.12.3) with ESMTP id gAG1agi0041661 for ; Fri, 15 Nov 2002 17:36:49 -0800 (PST) (envelope-from jcw@highperformance.net) Date: Fri, 15 Nov 2002 17:36:42 -0800 (PST) From: "Jason C. Wells" To: freebsd-questions@freebsd.org Subject: SMTP AUTH works, but not enforced Message-ID: <20021115171253.H41642-100000@server2.highperformance.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I have been wrangling with SMTP AUTH for some time now. I don't want to require auth for everything, just those messages not already allowed by access.db or local-hostnames. I have successfully used SMTP AUTH with pine to relay a message. The problem is that SMTP AUTH is not enforced. If I reconfigure pine to not perform auth, the relay still occurs. This is not what I want. Any idea what I am missing? The second question is: What precedence are local-host-names, access.db, and SMTP-AUTH given? What I desire is if local-host-names or access.db ok then relay else if AUTH ok then relay else go away Below from the sendmail.org site. I added M=a which the cf/README says is needed to cause auth to be required. This config didn't seem to help. Any idea what is buggered? DAEMON_OPTIONS(`Port=587, Name=MSA, M=E, M=a')dnl See below for my config. Please cc me if you reply. Thanks, Jason C. Wells From /etc/mail/acces 192.168.1 RELAY 127.0.0.1 RELAY From /etc/mail/local-host-names highperformance.net jasoncwells.com From the sendmail mc ( i cooked booked these from sendmail.org for the most part) dnl The group needs to be mail in order to read the sasldb2 file define(`confRUN_AS_USER',`root:mail') TRUST_AUTH_MECH(`DIGEST-MD5 CRAM-MD5 LOGIN PLAIN') define(`confAUTH_MECHANISMS',`DIGEST-MD5 CRAM-MD5 LOGIN PLAIN') define(`confDONT_BLAME_SENDMAIL',`GroupReadableSASLDBFile')dnl dnl DAEMON_OPTIONS(`Port=587, Name=MSA, M=E, M=a')dnl dnl END SMTP AUTH modifications dnl Allow all relaying. Do not enable without STMP AUTH dnl FEATURE(promiscuous_relay) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message