[Fedora] Re: Sendmail + SASL2
Paul Howarth
paul at city-fan.org
Mon Jun 26 10:39:35 UTC 2006
Ashley M. Kirchner wrote:
> Paul Howarth wrote:
>> I have pam set up to use LDAP rather than NIS but the sendmail config
>> should be the same:
>>
>> /usr/lib/sasl2/Sendmail.conf:
>> pwcheck_method:saslauthd
>>
>> In /etc/sysconfig/saslauthd make sure you have "MECH=pam"
>>
>> Make sure you have the cyrus-sasl-plain package installed.
>>
>> Make sure saslauthd is running.
>>
>> The relevant snippets from sendmail.mc:
>> define(`confAUTH_MECHANISMS',`LOGIN PLAIN')dnl
>> TRUST_AUTH_MECH(`LOGIN PLAIN')dnl
> Thanks Paul. That didn't work. I see the following errors in my
> system logs:
>
> ==> /var/log/messages <==
> Jun 23 07:40:36 desp saslauthd[29394]: do_auth : auth failure:
> [user=kirash] [service=smtp] [realm=] [mech=pam] [reason=PAM auth error]
> Jun 23 07:40:36 desp sm-mta[29488]: Password verification failed
> Jun 23 07:40:36 desp saslauthd[29395]: do_auth : auth failure:
> [user=kirash] [service=smtp] [realm=] [mech=pam] [reason=PAM auth error]
>
> ==> /var/log/maillog <==
> Jun 23 07:40:36 desp sm-mta[29488]: k5NDeQsw029488: AUTH failure
> (PLAIN): authentication failure (-13) SASL(-13): authentication failure:
> Password verification failed
> Jun 23 07:40:36 desp sm-mta[29488]: k5NDeQsw029488: AUTH failure
> (LOGIN): authentication failure (-13) SASL(-13): authentication failure:
> checkpass failed
Don't really know what's up there. I trust you've got your SSL certs
made OK and sendmail configured to use them? Did you add an entry for
the this user to your sasl database? If so, you might want to delete it
(or start off with a fresh database) so as to ensure that sasl isn't
confused.
What's in your /etc/pam.d/smtp ?
Paul.
More information about the fedora-list
mailing list