|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: saslauthd authenticaton problem
alaor
fdc.br
Date: Tue Aug 30 2005 - 17:52:18 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hello Patrick, you're right, really outlook is working fine, I look to log
and it really use the AUTH LOGIN to send mail.
Well, so everything look to be working fine, but now I`m curious, why in
telnet it doesn't work? You have any idea?
Thankz a lot, you're the man =) Regards.
> * alaorfdc.br <alaorfdc.br>:
>> Hello patrick, well, PLAIN is working. I've tested it and everything was
>> fine.
>>
>> I think that in login method is Postfix the responsable for encoding the
>> string (or something like that), and it isn't doing it like should.
>> Could
>> be this?
>
> AFAIK its the libsasl library, linked to smtpd, taking care of this. The
> LOGIN
> mechanism isn't officially supported by the SASL folks and its not
> documented
> how it works as well.
>
> You would have to take a look at the source code to find out how it works
> and
> what it expects.
>
> My way of testing it has been to use Outlook to relay a mail, because
> Outlook
> uses LOGIN. That of course is a blackbox, but fortunately it never failed
> on
> me...
>
> Limit mech_list in smtpd.conf to LOGIN, use Outlook, send a mail...
>
> Read my note in the log!
>
>> This is my mail.log after -v mode:
>> --------------------------------
>> Aug 30 17:50:14 mx1 postfix/smtpd[5087]: >
>> mx1.mydomain.tld[XXX.XXX.XXX.XXX]: 220 mx1.mydomain.tld ESMTP Postfix
>> (Debian/GNU)
>> Aug 30 17:50:14 mx1 postfix/smtpd[5087]: watchdog_pat: 0x100474d0
>> Aug 30 17:50:17 mx1 postfix/smtpd[5087]: <
>> mx1.mydomain.tld[XXX.XXX.XXX.XXX]: auth login
>> Aug 30 17:50:17 mx1 postfix/smtpd[5087]: smtpd_sasl_authenticate:
>> sasl_method login
>> Aug 30 17:50:17 mx1 postfix/smtpd[5087]: smtpd_sasl_authenticate:
>> uncoded
>> challenge: Username:
>> Aug 30 17:50:17 mx1 postfix/smtpd[5087]: >
>> mx1.mydomain.tld[XXX.XXX.XXX.XXX]: 334 VXNlcm5hbWU6
>> Aug 30 17:50:24 mx1 postfix/smtpd[5087]: <
>> mx1.mydomain.tld[XXX.XXX.XXX.XXX]: user
>> Aug 30 17:50:24 mx1 postfix/smtpd[5087]: smtpd_sasl_authenticate:
>> decoded
>> response: ???
>> Aug 30 17:50:24 mx1 postfix/smtpd[5087]: smtpd_sasl_authenticate:
>> uncoded
>> challenge: Password:
>> Aug 30 17:50:24 mx1 postfix/smtpd[5087]: >
>> mx1.mydomain.tld[XXX.XXX.XXX.XXX]: 334 UGFzc3dvcmQ6
>
> If you didn't change the password string "UGFzc3dvcmQ6" before sending
> this
> mail to the list, change the password now. It is very easy to decode a
> base64
> string...
>
> prick
>
> --
> The Book of Postfix
> <http://www.postfix-book.com>
> saslfinger (debugging SMTP AUTH):
> <http://postfix.state-of-mind.de/patrick.koetter/saslfinger/>
>
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]