From owner-freebsd-questions@FreeBSD.ORG Tue Aug 24 22:57:01 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id BE64116A4CE for ; Tue, 24 Aug 2004 22:57:01 +0000 (GMT) Received: from mail.tinkerbox.org (adsl-64-168-139-138.dsl.snfc21.pacbell.net [64.168.139.138]) by mx1.FreeBSD.org (Postfix) with ESMTP id 70EC543D39 for ; Tue, 24 Aug 2004 22:57:01 +0000 (GMT) (envelope-from bruno@tinkerbox.org) Received: from localhost (unknown [127.0.0.1]) by mail.tinkerbox.org (Postfix) with ESMTP id 3EDC218E4 for ; Tue, 24 Aug 2004 22:57:00 +0000 (GMT) Received: from mail.tinkerbox.org ([127.0.0.1]) by localhost (router.bschwand.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 69471-04 for ; Tue, 24 Aug 2004 15:56:49 -0700 (PDT) Received: from duron (duron.bschwand.net [192.168.137.4]) by mail.tinkerbox.org (Postfix) with ESMTP id 51D3A18E1 for ; Tue, 24 Aug 2004 15:56:49 -0700 (PDT) Date: Tue, 24 Aug 2004 15:56:49 -0700 (PDT) From: bruno schwander X-X-Sender: bruno@duron.bschwand.net To: freebsd-questions@freebsd.org Message-ID: <20040824135619.S41514@duron.bschwand.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Virus-Scanned: by amavisd-new at tinkerbox.org Subject: postfix smtp auth TLS , cyrus sasl SSL/TLS X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Aug 2004 22:57:01 -0000 Trying to get cyrus with SSL/TLS, as well as postfix with smtp auth what I did: follow the howtos http://postfix.state-of-mind.de/patrick.koetter/smtpauth/sasldb_configuration.html http://yocum.org/faqs/postfix-tls-sasl.html things working so far: I can login to imap accounts using SSL or TLS, and CRAM-MD5, etc. This is with sasldb, as cyrus is configured with sasl_pwcheck_method: auxprop saslauthd is not running. strange issue: whenever login in successfully, /var/log/messages shows (IP changed) Aug 24 13:55:55 www imaps[2004]: login: adsl-X-X-X.pacbell.net [XX.XX.XX.XX] bruno CRAM-MD5+TLS User logged in and in /var/log/auth: Aug 24 13:55:55 www imaps[2004]: no user in db sasldblistusers2 shows the user is there. Stranger: when changing/adding/removing users to the sasldb database, I get this in /var/log/messages: Aug 24 14:04:37 www saslpasswd2: setpass succeeded for bruno Aug 24 14:04:37 www saslpasswd2: Couldn't update db Aug 24 14:04:37 www last message repeated 2 times I do not know which db is not being updated, because I can list users, and check they are in there. Since encrypted login to imaps essentially works, I would not care, but now that I am trying to get postfix smtp auth working through sasl, I think it might be an issue. When trying to login to postfix/smtp, the following message appears in /var/log/messages: Aug 24 15:49:50 www postfix/smtpd[2977]: warning: SASL authentication failure: no user in db Aug 24 15:49:50 www postfix/smtpd[2977]: warning: SASL authentication failure: no user in db Aug 24 15:49:50 www postfix/smtpd[2977]: warning: SASL authentication failure: no secret in database Aug 24 15:49:50 www postfix/smtpd[2977]: warning: XXX.XXX.XXX.XXX.pacbell.net[XX.XX.XX.XX]: SASL CRAM-MD5 authentication failed So, the questions are: - which db is not being updated ? - why is authentication failing with smtp and not imap ? Any help greatly appreciated ! bruno