>>> I've been working on getting TLS working with my postfix/dovecot setup >>> without any luck so far. >>> >>> When I set the SMTP auth to digest-md5 I get this error: >>> Authentication failed >>> 535 5.7.0 Error: authentication failed: <BIG LONG ENCRYPTED STRING> >>> >>> and when I set it to cram-md5 I get this error: >>> Authentication failed >>> 535 5.7.0 Error: authentication failed: <NOT QUITE SO BIG LONG >>> ENCRYPTED >>> STRING> >>> >>> >>> When I login to postfix using telnet and try to authenticate I see: >>> >>> # telnet localhost smtp >>> Trying 127.0.0.1... >>> Connected to localhost. >>> Escape character is '^]'. >>> 220 grp-01-50-90.localdomain ESMTP Postfix >>> ehlo example.com >>> 250-grp-01-50-90.localdomain >>> 250-PIPELINING >>> 250-SIZE 10240000 >>> 250-VRFY >>> 250-ETRN >>> 250-STARTTLS >>> 250-AUTH PLAIN LOGIN >>> 250-ENHANCEDSTATUSCODES >>> 250-8BITMIME >>> 250 DSN >>> auth plain <AN MD5 ENCRYPTED PASSWORD STRING> >>> 235 2.0.0 Authentication successful >>> quit >>> 221 2.0.0 Bye >>> Connection closed by foreign host. >>> >>> So postfix seems configured to handle SMTP AUTH. >>> >>> To me everything seems configured properly. How can I get SMTP AUTH to >>> work? >>> >>> Thanks, >>> Gerry >>> >>> >>> >> Forget to mention that the config detection showed: >> Try to detect auth mechanisms? [y/N]: y >> Trying to detect supported methods (SMTP)... >> Testing none: SUPPORTED >> Testing login: SUPPORTED >> Testing CRAM-MD5: SUPPORTED >> Testing DIGEST-MD5: SUPPORTED >> >> > So now I try to use SMTP with just 'login' and with TLS but server > responds with this message: > 0 Can't open SMTP stream. > > So I see message in config about SM not supporting STARTTLS but I think > that is how Postfix handles TLS. > > ???? Please double check what you are saying. Your SMTP server does not support digest-md5 and cram-md5. SquirrelMail should not say that they are supported. That gobbledygook after 'auth plain' command is not MD5 hash. It is base64 encoded initial sasl plain client response and it contains more than user password. If you want to encrypt smtp connection in SquirrelMail and Postfix setup, you should enable SMTP over SSL service in Postfix master.cf or use STARTTLS in SquirrelMail 1.5.2-dev or port STARTTLS code from 1.5.2-dev to 1.4.x. -- Tomas ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ ----- squirrelmail-users mailing list Posting guidelines: http://squirrelmail.org/postingguidelines List address: squirrelmail-users@xxxxxxxxxxxxxxxxxxxxx List archives: http://news.gmane.org/gmane.mail.squirrelmail.user List info (subscribe/unsubscribe/change options): https://lists.sourceforge.net/lists/listinfo/squirrelmail-users
