|
Hi list, I’m trying to make Sendmail 8.13.6 + cyrus-sasl-2.1.21
work with AUTH on Solaris9. The problem is that I don’t get AUTH verification running
at all. cyrus-sasl2 is installed precompiled from blastwave
(http://www.blastwave.org). sendmail is build using blastwaves gcc. (SASLv2 is enabled
then using /usr/lib/sendmail –bt –d0.1 ) solaris9# /usr/lib/sendmail -bt -d0.1 Version 8.13.6 Compiled with: DNSMAP LDAPMAP LOG MAP_REGEX MATCHGECOS
MILTER MIME7TO8
MIME8TO7 NAMED_BIND NDBM NETINET NETUNIX NEWDB PICKY_HELO_CHECK
PIPELINING SASLv2 SCANF STARTTLS USERDB USE_LDAP_INIT XDEBUG And the AUTH mechanisms are supported: solaris9# telnet localhost 25 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 solaris9.vattenfall.se ESMTP mailer ready at Tue, 13 Jun
2006 12:27:45 +0200 (MEST) EHLO localhost 250-solaris9.vattenfall.se Hello localhost [127.0.0.1],
pleased to meet you 250-ENHANCEDSTATUSCODES 250-PIPELINING 250-8BITMIME 250-SIZE 20480000 250-DSN 250-ETRN 250-AUTH DIGEST-MD5 CRAM-MD5 PLAIN LOGIN 250-DELIVERBY 250 HELP And cyrus-sasl2 (by blastwave) is compiled to support these
mechanisms: solaris9# /opt/csw/sbin/saslauthd -v saslauthd 2.1.21 authentication mechanisms: getpwent kerberos5 pam rimap
shadow ldap The client I want use with this installation is MS Outlook
Express or MS Exchange. So far I only tested the installation using MS OE 6 (AUTH
LOGIN). I’ve follow the steps on Claus guide at: http://www.sendmail.org/~ca/email/auth.html So I’ve created a config-file for sendmail: /opt/csw/lib/sasl2/Sendmail.conf,
which contains pwcheck_method: shadow (sendmail was running as root,
meaning that it should be able to read /etc/shadow) I’ve tried changing to “pwcheck_method:
saslauthd” and starting /opt/csw/sbin/saslauthd, with the params –a
shadow (or –a pam) –V to see if that would worked better, but no…
(I’ve also checked that saslauthd is running as root, to be able to read
the /etc/shadow) I’ve also tried to use sasldb(users) instead of /etc/shadow,
(by creating /opt/csw/sbin/saslpasswd2 –f /opt/csw/etc/sasldb2/sasldb2
testuser) and change pwcheck_method: sasldb But all those different techniques doesn’t seem to
work at all, and I can’t find the missing peace that I’ve missed. This is what i get this error in the maillog (using LogLevel=14): Jun 13 11:37:09 solaris9 sendmail[1009]: [ID 801593
mail.warning] k5D9b7GO001009: AUTH failure (LOGIN): no mechanism available (-4)
SASL(-4): no mechanism available: checkpass failed And this in the syslog: Jun 13 11:37:09 solaris9 sendmail[1009]: [ID 702911
auth.error] unknown password verifier I’ve google:d around and read several pages (only one containing
a problem like mine): And that thead wasn’t helpful since it’s the
older sasl+sendmail software. (I haven’t been using the old sasl-library
at all) Any clues of what I’m doing wrong or what I have
missed? or directions where I should look? TIA, /P |
