From owner-freebsd-questions@FreeBSD.ORG Sat Mar 29 13:31:36 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id A1936C4D for ; Sat, 29 Mar 2014 13:31:36 +0000 (UTC) Received: from mailout05.t-online.de (mailout05.t-online.de [194.25.134.82]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 5CC6D15C for ; Sat, 29 Mar 2014 13:31:36 +0000 (UTC) Received: from fwd19.aul.t-online.de (fwd19.aul.t-online.de ) by mailout05.t-online.de with smtp id 1WTtM8-0001PV-DZ; Sat, 29 Mar 2014 14:31:28 +0100 Received: from t-online.de (ZqH8sEZBghk-Zwi4JrLhsrzyFRTRovH8M2OJR4WsMfWx3RGON9Zywovdb006WUGgqx@[84.152.239.145]) by fwd19.t-online.de with esmtp id 1WTtM5-0JYOdE0; Sat, 29 Mar 2014 14:31:25 +0100 Received: by t-online.de (nbSMTP-1.00) for uid 1001 johannes-maria@t-online.de; Sat, 29 Mar 2014 15:15:01 +0100 (CET) Date: Sat, 29 Mar 2014 15:15:00 +0100 From: Johannes-Maria Kaltenbach To: Ondra Knezour , freebsd-questions@freebsd.org Subject: Re: (still) problems with email/ssl and t-online.de/telekom.de Message-ID: <20140329141500.GC2248@jmk.org> References: <20140326145149.GB2031@jmk.org> <20140327161804.GB23824@jmk.org> <5334D72B.9010406@bananmonarki.se> <20140328102129.GA2387@jmk.org> <20140328143822.GB20777@jmk.org> <20140328162936.GA34081@jmk.org> <53363B8C.8080302@weboutsourcing.cz> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <53363B8C.8080302@weboutsourcing.cz> User-Agent: Mutt/1.4.2.3i X-ID: ZqH8sEZBghk-Zwi4JrLhsrzyFRTRovH8M2OJR4WsMfWx3RGON9Zywovdb006WUGgqx X-TOI-MSGID: c1799414-07f7-4853-b8a0-631339bf553f X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 29 Mar 2014 13:31:36 -0000 Hello, On Sat, Mar 29, 2014 at 04:18:36AM +0100, Ondra Knezour wrote: > You are probably looking for authinfo feature? > > See https://www.dnsexit.com/support/mailrelay/sendmail.html for example. yes, it is probably the authinfo feature but I was not able to do it correctly. I created an authinfo file (and .db) right from the start as mentioned in the link http://www.dawoodfall.net/index.php/en/relaying-sendmail-a-ssl which was sent to me by Christian Schmidt. For easier reference I copy here the link you sent me: from https://www.dnsexit.com/support/mailrelay/sendmail.html: | For Sendmail V8.12 and above | 1. Set your authorization informations by putting the following line \ | to /etc/mail/authinfo file: | | AuthInfo:relay.dnsexit.com "U:USERNAME" "P:PASSWORD" "M:PLAIN" | Note: Replace USERNAME and PASSWORD with the DNSEXIT mail \ | relay username and PASSWORD. | | 2. Add following lines to /etc/mail/sendmail.mc (check if apropriate \ | settings doesn't already exists): | | define(`SMART_HOST', `relay.dnsexit.com') | FEATURE(`authinfo') | | 3. Update sendmail.cf and access.db files: | | # cd /etc/mail | # m4 sendmail.mc >sendmail.cf | # makemap hash authinfo < authinfo | | | 4. Reload or restart sendmail: | # /etc/init.d/sendmail restart I created an authinfo file with | AuthInfo:relay-domain "U:johannes-maria" "P:PASSWORD" "M:PLAIN" and with | AuthInfo:relay-domain:2525 "U:johannes-maria" "P:PASSWORD" "M:PLAIN" and with both where PASSWORD was replaced by the password I use for getting my mails (with this user name and password [base64-encoded] I was able to get a connection via telnet as shown in my last email and at the end of this email). I have the U: and P: part in plain ascii but I also tried it base64-encoded, but this didn't help either. I also inlcuded a "I: johannes-maria@t-online.de", | AuthInfo:relay-domain "I: johannes-maria@t-online.de" "U:... (as in http://www.dawoodfall.net/index.php/en/relaying-sendmail-a-ssl) I also tried securesmtp.t-online.de instead of relay-domain. In each step I created authinfo.db and restarted sendmail. I don't have an access.db; is this neccessary in my case? [and if: what should it contain?] At first I got the following error message in /var/log/maillog: | hash map "authinfo": unsafe map file /etc/mail/authinfo.db: Permission denied After changing the owner of /etc/mail/authinfo.db to smmsp this message didn't occur again; is this the (or a) correct way to do it? I have a | FEATURE(`authinfo') in my .mc file and added | define(`SMART_HOST', `relay-domain') and alternatively | define(`SMART_HOST', `relay-domain:2525') [with relay-domain: stunnel /usr/local/etc/stunnel/stunnel.conf -c -d relay-domain:2525 ] But then I always got something like | sendmail[7815]: s2TB4Ilq007815: from=jmk, size=53, class=0, nrcpts=1, \ | msgid=<201403291104.s2TB4Ilq007815@jmk.org>, relay=root@localhost | sendmail[7815]: s2TB4Ilq007815: timeout waiting for input from \ | relay-domain.org. during client greeting | sendmail[7815]: s2TB4Ilq007815: to=johannes-maria@t-online.de, \ | ctladdr=jmk (1001/1001), delay=00:05:10, xdelay=00:05:10, mailer=relay, \ | pri=30053, relay=relay-domain.org. [62.157.140.133], dsn=4.0.0, \ | stat=Deferred: Operation timed out with relay-domain.org. in /var/log/maillog,i. e. relay-domain.org. [62.157.140.133] instead of relay-domain [127.0.0.1] or localhost [127.0.0.1]. [I have 127.0.0.1 localhost 127.0.0.1 relay-domain in /etc/hosts] Then I changed this to | define(`SMART_HOST', `securesmtp.t-online.de:465') which gives me now in /var/log/maillog: | sendmail[18888]: s2TDUkhM018888: from=jmk, size=53, class=0, nrcpts=1, \ | msgid=<201403291330.s2TDUkhM018888@jmk.org>, relay=root@localhost | sendmail[18888]: STARTTLS=client, relay=sfwdallmx.t-online.de., \ | version=TLSv1/SSLv3, verify=FAIL, cipher=ECDHE-RSA-AES256-GCM-SHA384, \ | bits=256/256 | sendmail[18888]: s2TDUkhM018888: to=johannes-maria@t-online.de, \ | ctladdr=jmk (1001/1001), delay=00:00:09, xdelay=00:00:09, mailer=relay, \ | pri=30053, relay=sfwdallmx.t-online.de. [194.25.134.46], dsn=5.0.0, \ | stat=Service unavailable | sendmail[18888]: s2TDUkhM018888: s2TDUkhN018888: DSN: Service unavailable | sm-mta[18890]: s2TDUt7C018890: from=<>, size=1909, class=0, nrcpts=1, \ | msgid=<201403291330.s2TDUkhN018888@jmk.org>, proto=ESMTP, daemon=IPv4, \ | relay=localhost [127.0.0.1] I still get the message | sm-mta[18879]: auxpropfunc error invalid parameter supplied in /var/log/messages after each (re)start of sendmail. I don't know what it means, how to fix it, and if it's related to my mail problem. Thanks in advance, Johannes-Maria | # telnet relay-domain 2525 | Trying 127.0.0.1... | Connected to relay-domain. | Escape character is '^]'. | 220 fwd14.t-online.de T-Online ESMTP receiver fmsad15465 ready. \ | / T-Online ESMTP receiver securesmtp.t-online.de ready. | EHLO localhost | 250-fwd14.t-online.de ready. | 250-SIZE 52428800 | 250-8BITMIME | 250-AUTH=LOGIN PLAIN | 250-AUTH LOGIN PLAIN | 250-ENHANCEDSTATUSCODES | 250 HELP | MAIL From: | 530 5.7.0 Authentication required. | AUTH PLAIN ... | 235 2.5.0 Authentication successful. / Authentifizierung erfolgreich. | quit | 221 2.0.0 fwd14.t-online.de closing. / Verbindung wird getrennt. | Connection closed by foreign host.