[postfix-users] Postfix Sasl

Silvio Siefke siefke_listen at web.de
So Sep 26 20:42:31 CEST 2010


Hallo,


ich habe Postfix (2.7.1) und Dovecot (1.2.14) auf meinen FreeBSD Server
installiert. Ich nutze virtuelle User die mithilfe von Postfixadmin
verwaltet werden. Die Passwörter in der Datenbank werden md5crypt
verschlüsselt.

Der Abruf der Emails über IMAP/Pop funktioniert ohne Probleme. Das SASL
Auth möchte allerdings nicht arbeiten.

Hat jemand eine Idee?


MFG
Silvio


#postconf -a
dovecot

# postconf -n
alias_maps = hash:/etc/aliases
allow_percent_hack = no
biff = no
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter = amavisfeed:[127.0.0.1]:10024
daemon_directory = /usr/libexec/postfix
data_directory = /var/db/postfix
disable_vrfy_command = yes
home_mailbox = Maildir/
html_directory = /usr/share/doc/postfix
mail_owner = postfix
mailbox_size_limit = 102400000
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
masquerade_exceptions = root
message_size_limit = 20480000
mydestination = $myhostname, localhost
mydomain = silviosiefke.de
myhostname = hetzner.silviosiefke.de
mynetworks = 127.0.0.0/8
newaliases_path = /usr/bin/newaliases
queue_directory = /var/spool/postfix
readme_directory = /usr/share/doc/postfix
recipient_delimiter = +
sample_directory = /etc/postfix
sendmail_path = /usr/sbin/sendmail
setgid_group = maildrop
smtp_tls_note_starttls_offer = yes
smtp_use_tls = no
smtpd_client_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unknown_reverse_client_hostname,
permit
smtpd_data_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_unauth_pipelining,
permit
smtpd_delay_reject = yes
smtpd_helo_required = yes
smtpd_helo_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_invalid_helo_hostname,
reject_non_fqdn_helo_hostname,
permit
smtpd_recipient_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_non_fqdn_recipient,
reject_unknown_recipient_domain,
reject_unauth_destination,
reject_rbl_client bl.spamcop.net,
reject_rbl_client sbl-xbl.spamhaus.org,
permit
smtpd_sasl_auth_enable = yes
smtpd_sasl_path = private/auth
smtpd_sasl_type = dovecot
smtpd_sender_restrictions =
permit_mynetworks,
permit_sasl_authenticated,
reject_non_fqdn_sender,
reject_unknown_sender_domain,
permit
smtpd_tls_cert_file = /etc/postfix/ssl/smtp.pem
smtpd_tls_key_file = /etc/postfix/ssl/smtp.pem
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = no
soft_bounce = yes
tls_random_source = dev:/dev/urandom
unknown_local_recipient_reject_code = 550
virtual_alias_maps =
proxy:mysql:/etc/postfix/mysql/mysql_virtual_alias_maps.cf
virtual_gid_maps = static:125
virtual_mailbox_base = /home/vmail
virtual_mailbox_domains =
proxy:mysql:/etc/postfix/mysql/mysql_virtual_domains_maps.cf
virtual_mailbox_maps =
proxy:mysql:/etc/postfix/mysql/mysql_virtual_mailbox_maps.cf
virtual_minimum_uid = 125
virtual_transport = virtual
virtual_uid_maps = static:125


<dovecot.conf>
base_dir = /var/run/dovecot/
protocols = imap imaps pop3s
disable_plaintext_auth = no
log_timestamp = "%Y-%m-%d %H:%M:%S "
mail_debug = yes
mail_location = maildir:/home/vmail/%d/%n
mail_access_groups = mail
first_valid_uid = 125
first_valid_gid = 125
log_path = /var/log/dovecot/dovecot.log
info_log_path = /var/log/dovecot/dovecot-info.log
ssl = yes
ssl_cert_file = /etc/postfix/ssl/mail_silviosiefke_de.crt
ssl_key_file = /etc/postfix/ssl/mail_silviosiefke_de.key
protocol imap {
}
protocol pop3 {
  pop3_uidl_format = %08Xu%08Xv
}
protocol lda {
   postmaster_address = hostmaster at silviosiefke.de
}
auth default {
  mechanisms = digest-md5 plain login
  passdb sql {
    args = /usr/local/etc/dovecot-db.conf
  }
  userdb sql {
    args = /usr/local/etc/dovecot-db.conf
  }
  user = root

  socket listen {

master {
      path = /var/run/dovecot/auth-master
      mode = 0600
      user = postfix
      #group = vmail
    }
client {
      path = /var/spool/postfix/private/auth
      mode = 0660
      user = postfix
      group = postfix
    }
  }
}

driver = mysql
connect = dbname=postifx user= host=localhost password=
default_pass_scheme = MD5-CRYPT
password_query = SELECT password FROM mailbox WHERE username = '%u'
user_query = SELECT maildir, 125 AS uid, 125 AS gid FROM mailbox WHERE
username  = '%u'


Logeintrag:
Sep 25 23:23:55 hetzner postfix/smtpd[86111]: connect from
unknown
Sep 25 23:23:57 hetzner postfix/smtpd[86111]: warning:
unknown: SASL PLAIN authentication failed:
Sep 25 23:23:59 hetzner postfix/smtpd[86111]: warning:
unknown: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep 25 23:24:01 hetzner postfix/smtpd[86111]: disconnect from
unknown


Mehr Informationen über die Mailingliste postfix-users