From owner-freebsd-questions@FreeBSD.ORG Tue Oct 5 13:50:27 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id F249D16A4D9 for ; Tue, 5 Oct 2004 13:50:26 +0000 (GMT) Received: from mx1.sohotech.ca (mx1.sohotech.ca [64.26.169.251]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6E83E43D53 for ; Tue, 5 Oct 2004 13:50:26 +0000 (GMT) (envelope-from ebudd@grokking.org) Received: from [192.168.1.3] (heinlein.sohotech.ca [192.168.1.3]) (authenticated bits=0) by mx1.sohotech.ca (8.12.10/8.12.10) with ESMTP id i95DoO7n000412; Tue, 5 Oct 2004 09:50:25 -0400 (EDT) (envelope-from ebudd@grokking.org) Message-ID: <4162A6A0.5040008@grokking.org> Date: Tue, 05 Oct 2004 09:50:24 -0400 From: Ed Budd User-Agent: Mozilla Thunderbird 0.8 (X11/20040916) X-Accept-Language: en-us, en MIME-Version: 1.0 To: =?ISO-8859-1?Q?Andreas_Wider=F8e_Andersen?= References: <6.1.2.0.2.20041005133806.02180e20@malibu.wideroe.net> <416291F4.5040005@grokking.org> <6.1.2.0.2.20041005151009.022c7ec0@malibu.wideroe.net> In-Reply-To: <6.1.2.0.2.20041005151009.022c7ec0@malibu.wideroe.net> X-Enigmail-Version: 0.86.0.0 X-Enigmail-Supports: pgp-inline, pgp-mime Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 8bit X-Scanned-By: MIMEDefang 2.44 cc: freebsd-questions@freebsd.org Subject: Re: Mail auth and FreeBSD/Sendmail X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Oct 2004 13:50:27 -0000 Andreas Widerĝe Andersen wrote: > Thanks! However, could you please give me some more specific directions? > Today my sendmail.mc file looks like this: > > divert(0) > VERSIONID(`$FreeBSD: src/etc/sendmail/freebsd.mc,v 1.10.2.18 2003/04/24 > 16:57:30 gshapiro Exp $') > OSTYPE(freebsd4) > DOMAIN(generic) > > FEATURE(access_db, `hash -o -T /etc/mail/access') > FEATURE(blacklist_recipients) > FEATURE(local_lmtp) > FEATURE(mailertable, `hash -o /etc/mail/mailertable') > FEATURE(virtusertable, `hash -o /etc/mail/virtusertable') > > INPUT_MAIL_FILTER(`spamassassin', `S=local:/var/run/spamass-milter.sock, > F=, T=C:15m;S:4m;R:4m;E:10m') > > dnl set SASL options > TRUST_AUTH_MECH(`GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN')dnl > define(`confAUTH_MECHANISMS', `GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN')dnl > define(`confDEF_AUTH_INFO', `/etc/mail/auth-info')dnl > > define(`confBIND_OPTS', `WorkAroundBrokenAAAA') > define(`confNO_RCPT_ACTION', `add-to-undisclosed') > define(`confPRIVACY_FLAGS', `authwarnings,noexpn,novrfy') > MAILER(local) > MAILER(smtp) > > Should I just replace the TRUST/SASL lines with: > > TRUST_AUTH_MECH(`LOGIN PLAIN')dnl > define(`confAUTH_MECHANISMS', `LOGIN PLAIN')dnl > > Don't want to try it at the moment without knowing more since it is a > live system. > Yes, that's correct (although I'd leave in CRAM-MD5 since mozilla et. al. support it nicely). Once you save the *.mc file, do this to build a proper sendmail.cf, update all your database configs, install and restart sendmail: cd /etc/mail make all install restart This should take only about 3 seconds and will give you console feedback so watch for any errors in syntax. Then: tail /var/log/maillog So you can verify that everything started up properly. Please note that I use 5.x (but same version of sendmail as you) so it is possible that the exact steps I outline above will be slightly different on a 4.x system (sorry but I don't know for sure -- been so long since I used 4.x). You can always check the Makefile in /etc/mail to verify this. The basic point is that you merely need to update your *.mc, rebuild it into a proper *.cf, install and restart sendmail. Cheers, EB