OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
Re: Postfix + SASL + Mysql

abondi\libero\.it
Date: Thu Apr 26 2007 - 12:15:48 CDT

> abondilibero.it wrote:
> > I configured my web server (Ubuntu 7.04) following main instructions from http://flurdy.com/docs/postfix/.
> >
> > I can send and receive email, till I tried to apply also the SASL part of the tutorial, and here's the problem: I can't send mail, my server keeps asking the password for login to smtp server.
> >
> > But, looking at mysql logs, it doesn't do any query to decide if the username/password is correct (I enabled login feature, I see other queries) and the postfix log output is:
> >
> > -------------------------------------------
> > Apr 24 18:35:36 novilab postfix/smtpd[21132]: connect from unknown[192.168.0.200]
> > Apr 24 18:35:38 novilab postfix/smtpd[21132]: warning: SASL authentication problem: unable to open Berkeley db /etc/sasldb2: No such file or directory
> > --------------------------------------------
> >
> > Found that the /var/log/auth.log shows this:
> >
> > ---------------------------------------------
> > Apr 26 12:14:53 novilab postfix/smtpd[28512]: sql_select option missing
> >
>
> it looks like it doesn't read the sql_select line in smtpd.conf. make
> sure you have a newline at the end of the file:
>
> # echo "" >> /path/to/smtpd.conf
>

I tried to add another newline at the end but nothing changed. My smtpd.conf file is located at /etc/postfix/sasl/smtpd.conf (if it can be useful) and it's contents are:

-------------------------------------
pwcheck_method: auxprop
auxprop_plugin: sql
mech_list: plain login cram-md5 digest-md5
sql_engine: mysql
sql_hostnames: 127.0.0.1
sql_user: ######
sql_passwd: #######
sql_database: maildb
sql_select: select clear from users where id='%u%r' and enabled = 1
---------------------------------------

Maybe I'm wrong with some chroot settings... This is my master.cf:

---------------------------------------
#
# Postfix master process configuration file. For details on the format
# of the file, see the master(5) manual page (command: "man 5 master").
#
# ==========================================================================
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
# ==========================================================================
smtp inet n - - - - smtpd
#submission inet n - - - - smtpd
# -o smtpd_enforce_tls=yes
# -o smtpd_sasl_auth_enable=yes
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
smtps inet n - - - - smtpd
  -o smtpd_tls_wrappermode=yes
  -o smtpd_sasl_auth_enable=yes
  -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#628 inet n - - - - qmqpd
pickup fifo n - - 60 1 pickup
cleanup unix n - - - 0 cleanup
qmgr fifo n - n 300 1 qmgr
#qmgr fifo n - - 300 1 oqmgr
tlsmgr unix - - n 300 1 tlsmgr
rewrite unix - - - - - trivial-rewrite
bounce unix - - - - 0 bounce
defer unix - - - - 0 bounce
trace unix - - - - 0 bounce
verify unix - - - - 1 verify
flush unix n - - 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - - - - smtp
# Aggiunti per SASL
#smtps inet n - - - - smtpd -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes
587 inet n - n - - smtpd -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes

# When relaying mail as backup MX, disable fallback_relay to avoid MX loops
relay unix - - - - - smtp
        -o fallback_relay=
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - - - - showq
error unix - - - - - error
discard unix - - - - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - - - - lmtp
anvil unix - - - - 1 anvil
scache unix - - - - 1 scache
#
# ====================================================================
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent. See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
# ====================================================================
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
maildrop unix - n n - - pipe
  flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
#
# See the Postfix UUCP_README file for configuration details.
#
uucp unix - n n - - pipe
  flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
#
# Other external delivery methods.
#
ifmail unix - n n - - pipe
  flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
  flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient
scalemail-backend unix - n n - 2 pipe
  flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension}
mailman unix - n n - - pipe
  flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
  ${nexthop} ${user}
-------------------------------------------------

Thank you!
Andrea ------------------------------------------------------ Leggi GRATIS le tue mail con il telefonino i-mode™ di Wind http://i-mode.wind.it/