Find the answer to your Linux question:
Results 1 to 2 of 2
Ok, I'm trying to switch from pop-before-smtp over to SMTP auth with RedHat Fedora linux running sendmail. The testsaslauthd returns success when i type in a userid/password I'm running saslauthd ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Dec 2003
    Posts
    1

    SMTP AUTH, SASL and Sendmail not getting along


    Ok, I'm trying to switch from pop-before-smtp over to SMTP auth with RedHat Fedora linux running sendmail. The testsaslauthd returns success when i type in a userid/password I'm running saslauthd like this:

    /usr/sbin/saslauthd -m /var/run/saslauthd -a shadow

    Currently my senmail.mc file (as far as the smtp auth goes) looks like this:

    define(`confAUTH_OPTIONS', `A')dnl
    dnl TRUST_AUTH_MECH(`DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
    dnl define(`confAUTH_MECHANISMS', `DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
    dnl TRUST_AUTH_MECH(`LOGIN PLAIN')dnl
    dnl define(`confAUTH_MECHANISMS', `LOGIN PLAIN')dnl
    TRUST_AUTH_MECH(`EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
    define(`confAUTH_MECHANISMS', `EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl

    (i've tried all 3 sets they all return the same problem). My Sendmail.conf file looks like:

    pwcheck_method: saslauthdb

    And sendmail doesnt allow me to authenticate either by telnetting to port 25 or by using a clinet like Outlook or mozilla or whatever and setting it to login to the server for outgoing mail. I've set the sendmail loglevel=14 and attempted to authenticate to port 25 and it’s giving me this message:

    Dec 2 16:46:46 BigBox sendmail[16094]: NOQUEUE: connect from root@localhost
    Dec 2 16:46:46 BigBox sendmail[16094]: STARTTLS=server, Diffie-Hellman init, key=512 bit (1)
    Dec 2 16:46:46 BigBox sendmail[16094]: STARTTLS=server, init=1
    Dec 2 16:46:46 BigBox sendmail[16094]: AUTH: available mech=GSSAPI PLAIN LOGIN DIGEST-MD5 CRAM-MD5 ANONYMOUS, allowed mech=EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN
    Dec 2 16:46:46 BigBox sendmail[16094]: hB2MkkG7016094: Milter: no active filter
    Dec 2 16:47:33 BigBox sendmail[16094]: hB2MkkG7016094: AUTH failure (login): no mechanism available (-4) SASL(-4): no mechanism available: checkpass failed
    Dec 2 16:47:33 BigBox sendmail[16094]: hB2MkkG7016094: root@localhost did not issue MAIL/EXPN/VRFY/ETRN during connection to stdin

    Off this set of commands:

    ehlo localhost
    250-prozach.com Hello root@localhost, pleased to meet you
    250-ENHANCEDSTATUSCODES
    250-PIPELINING
    250-8BITMIME
    250-SIZE
    250-DSN
    250-ETRN
    250-AUTH GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN PLAIN
    250-STARTTLS
    250-DELIVERBY
    250 HELP
    auth login
    334 VXNlcm5hbWU6
    XXXXXXXXXXXXXXXXX (x’ed out base 64 UID)
    334 UGFzc3dvcmQ6
    XXXXXXXXXXXXXXXXX (x’ed out base 64 pwd)
    535 5.7.0 authentication failed


    My software versions are:
    sendmail-8.12.10-1.1.1
    cyrus-sasl-2.1.15-6
    cyrus-sasl-md5-2.1.15-6
    cyrus-sasl-gssapi-2.1.15-6
    cyrus-sasl-devel-2.1.15-6
    cyrus-sasl-plain-2.1.15-6


    Does anyone have any ideas…

  2. #2
    Just Joined!
    Join Date
    Jun 2010
    Posts
    1

    missing file

    For this to be up and useful it needs a reply.

    This line in your log :
    AUTH failure (login): no mechanism available (-4) SASL(-4): no mechanism available: checkpass failed

    suggests that the /usr/lib/sasl2/Sendmail.conf is missing
    create that file ( location may vary ) containing:

    pwcheck_method: saslauthd
    mech_list: LOGIN PLAIN

    After much research on where that config goes , I have 2 symlinks to that file just in case
    /usr/lib/sasl
    /Sendmail.conf -> /usr/lib64/sasl2/Sendmail.conf
    and in
    /etc/sasl2

    should fix it !

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •