podivne chovani sendmail + authsasld

Petr Hvězda konference na unistav.cz
Čtvrtek Prosinec 11 12:23:13 CET 2008 

Zdravim konferenci,

mam docela podivny problem s kombinaci viz SUBJ.

1) Sendmail mam zkompilovan pro podporu AUTH (SASLv2, STARTTLS)

/usr/sbin/sendmail -d0.1 -bv root
Version 8.13.8
 Compiled with: DNSMAP HESIOD HES_GETMAILHOST LDAPMAP LOG MAP_REGEX
                MATCHGECOS MILTER MIME7TO8 MIME8TO7 NAMED_BIND NETINET
NETINET6
                NETUNIX NEWDB NIS PIPELINING SASLv2 SCANF SOCKETMAP STARTTLS
                TCPWRAPPERS USERDB USE_LDAP_INIT

2) v konfiguraku sendmail.mc mam

define(`confAUTH_MECHANISMS', `LOGIN PLAIN DIGEST-MD5 CRAM-MD5')dnl
TRUST_AUTH_MECH(`LOGIN PLAIN DIGEST-MD5 CRAM-MD5')dnl

mam vyrobeny i certifikaty pro sifrovane spojeni

3) v konfiguraku /etc/default/saslauthd

# This needs to be uncommented before saslauthd will be run automatically
START=yes

# You must specify the authentication mechanisms you wish to use.
# This defaults to "pam" for PAM support, but may also include
# "shadow" or "sasldb"
MECHANISMS=shadow

Presto mi telnet localhost 25 vypisuje jen toto:

250-xxx Hello xxx [127.0.0.1], pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-8BITMIME
250-SIZE
250-DSN
250-ETRN
250-AUTH LOGIN PLAIN
250-STARTTLS
250-DELIVERBY
250 HELP

Kde je u 250-AUTH vyse definovane DIGEST-MD5 CRAM-MD5 ?

--

Dalsi vec je, ze se nekdy chova odesilani zprav podivne. Velmi dlouho trva
autentiuzace a pri vetsich emailech se stava, ze zprava vubec neodejde s
chybou nastaveni SMTP. V logu se vse tvari v poradku:

Dec 11 11:39:27 mail sendmail[29805]: mBBAd6Pe029805:
from=<xxx na unistav.cz>, size=34841, class=0, nrcpts=1,
msgid=<CC8A9292ADAE466488E69D724DC32013 na unistav.cz>, proto=ESMTP,
daemon=MTA, relay=[193.165.152.10]
Dec 11 11:39:27 mail sendmail[29805]: mBBAd6Pe029805: Milter add: header:
X-Virus-Scanned: ClamAV 0.93/7434/Wed Jun 11 04:59:01 2008 on
xxx.unistav.cz
Dec 11 11:39:27 mail sendmail[29805]: mBBAd6Pe029805: Milter add: header:
X-Virus-Status: Clean
Dec 11 11:39:28 mail sendmail[29805]: mBBAd6Pe029805: Milter add: header:
X-Spam-Status: No, score=-102.2 required=4.0
tests=AWL,BAYES_00,HTML_MESSAGE,\n\tUNPARSEABLE_RELAY,USER_IN_WHITELIST
autolearn=ham version=3.2.4
Dec 11 11:39:28 mail sendmail[29805]: mBBAd6Pe029805: Milter add: header:
X-Spam-Checker-Version: SpamAssassin 3.2.4 (2008-01-01) on xxx.unistav.cz
Dec 11 11:39:28 mail sendmail[29805]: mBBAd6Pe029805: Milter add: header:
X-Greylist: Sender succeeded SMTP AUTH authentication, not delayed by
milter-greylist-2.0.2 (xxx.unistav.cz [xx.xxx.xxx.xx]); Thu, 11 Dec 2008
11:39:28 +0100 (CET)
Dec 11 11:39:54 mail sendmail[29864]: mBBAd6Pe029805: to=<xxx na xxx.xx>,
delay=00:00:27, xdelay=00:00:26, mailer=esmtp, pri=154841,
relay=xxx.xxxx.xx. [xx.xxx.xx.xxx], dsn=2.0.0, stat=Sent
(4940edfa-000105db Message accepted for delivery)

No a posledni podivnosti je, ze kdyz zkousim

testsaslauthd -u user -p spravnypass

tak dostavam hlasku

0: NO "authentication failed"

V logu pak vidim:

saslauthd[3611]: do_auth         : auth failure: [user=xxx] [service=imap]
[realm=] [mech=pam] [reason=PAM auth error]

Akorat vubec nechapu proc a google mlci - mozna nemam spravne key words.

Dekuji za kazdou radu,

-- 
Petr Hvězda

Další informace o konferenci Linux