marekventur
New Member
Hi!
Also... Es mag vielleicht doof klingen, aber ich finde bei mir keine smtpd.conf um mein Postfix SMTP-Auth fähig zu machen. Mein Thunderbird kann sich zwar per smtp verbinden, aber eine Autorisierung schlägt fehl.
Bei mir läuft ein Debian Sarge und ich hab schon einmal komplett purge und install (für postfix) durchgezogen.
Wahrscheinlich steckt irgendwo ein dummer Anfänger-Fehler, aber ich finden ihn selbst nach 3 Tagen nicht. Über einen Hinweis wäre ich sehr dankbar.
Im Moment ist CHROOT in der master.cf für alle Dienste auf "n".
Vielen Dank,
Marek
Configs:
Ein paar Log-Auszüge: (Nach einem Restart+1 Mail-Sende-Versuch)
Also... Es mag vielleicht doof klingen, aber ich finde bei mir keine smtpd.conf um mein Postfix SMTP-Auth fähig zu machen. Mein Thunderbird kann sich zwar per smtp verbinden, aber eine Autorisierung schlägt fehl.
Bei mir läuft ein Debian Sarge und ich hab schon einmal komplett purge und install (für postfix) durchgezogen.
Wahrscheinlich steckt irgendwo ein dummer Anfänger-Fehler, aber ich finden ihn selbst nach 3 Tagen nicht. Über einen Hinweis wäre ich sehr dankbar.
Im Moment ist CHROOT in der master.cf für alle Dienste auf "n".
Vielen Dank,
Marek
Configs:
Code:
main.cf:
# See /usr/share/postfix/main.cf.dist for a commented, more complete version
smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no
# appending .domain is the MUA's job.
append_dot_mydomain = no
# Uncomment the next line to generate "delayed mail" warnings
delay_warning_time = 4h
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = vs241172.vserver.de, localhost.vserver.de, localhost, domain.de
mailbox_size_limit = 0
recipient_delimiter = +
#virtual_alias_maps = hash:/etc/postfix/virtual
#virtual_maps = hash:/etc/postfix/virtual
# See /usr/share/postfix/main.cf.dist for a commented, more complete version
mynetworks = 127.0.0.0/8
smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, check_relay_domains
smtpd_sasl_auth_enable = yes
smtpd_delay_reject = no
smtpd_tls_cert_file = /etc/postfix/sasl/smtpd.cert
smtpd_tls_key_file = /etc/postfix/sasl/smtpd.key
smtpd_use_tls = yes
smtpd_tls_loglevel = 3
smtpd_tls_CAfile = /etc/postfix/sasl/smtpd.cert
smtpd_recipient_restrictions = permit_mynetworks reject_unauth_destination
unknown_local_recipient_reject_code = 450
Ein paar Log-Auszüge: (Nach einem Restart+1 Mail-Sende-Versuch)
Code:
auth.log
<...>
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: NTLM server step 1
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: client flags: ffff8207
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: NTLM server step 2
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: client user: marek
<eof>
Code:
mail.info
<...>
Jul 20 17:25:47 vs241172 postfix/postfix-script: starting the Postfix mail system
Jul 20 17:25:47 vs241172 postfix/master[16339]: daemon started -- version 2.1.5
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: mynetworks ~? debug_peer_list
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: mynetworks ~? fast_flush_domains
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: mynetworks ~? mynetworks
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: relay_domains ~? debug_peer_list
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: relay_domains ~? fast_flush_domains
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: relay_domains ~? mynetworks
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: relay_domains ~? permit_mx_backup_networks
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: relay_domains ~? qmqpd_authorized_clients
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: relay_domains ~? relay_domains
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: permit_mx_backup_networks ~? debug_peer_list
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: permit_mx_backup_networks ~? fast_flush_domains
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: permit_mx_backup_networks ~? mynetworks
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: permit_mx_backup_networks ~? permit_mx_backup_networks
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: connect to subsystem private/proxymap
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: send attr request = open
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: send attr table = unix:passwd.byname
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: send attr flags = 64
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: private/proxymap socket: wanted attribute: status
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: input attribute name: status
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: input attribute value: 0
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: private/proxymap socket: wanted attribute: flags
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: input attribute name: flags
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: input attribute value: 80
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: private/proxymap socket: wanted attribute: (list terminator)
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: input attribute name: (end)
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: dict_proxy_open: connect to map=unix:passwd.byname status=0 server_flags=0120
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: dict_open: proxy:unix:passwd.byname
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: dict_open: hash:/etc/aliases
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: smtpd_access_maps ~? debug_peer_list
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: smtpd_access_maps ~? fast_flush_domains
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: smtpd_access_maps ~? mynetworks
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: smtpd_access_maps ~? permit_mx_backup_networks
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: smtpd_access_maps ~? qmqpd_authorized_clients
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: smtpd_access_maps ~? relay_domains
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: smtpd_access_maps ~? smtpd_access_maps
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: smtpd_sasl_initialize: SASL config file is smtpd.conf
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: starting TLS engine
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: TLS engine: cannot load CA data
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: 22182:error:02001002:system library:fopen:No such file or directory:bss_file.c:104:fopen('/etc/postfix/sasl/smtpd.cert','r'):
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: 22182:error:2006D080:BIO routines:BIO_new_file:no such file:bss_file.c:107:
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: 22182:error:0B084002:x509 certificate routines:X509_load_cert_crl_file:system lib:by_file.c:274:
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: fast_flush_domains ~? debug_peer_list
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_string: fast_flush_domains ~? fast_flush_domains
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: watchdog_create: 0x8082398 18000
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: watchdog_stop: 0x8082398
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: watchdog_start: 0x8082398
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: connection established
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: master_notify: status 0
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: name_mask: resource
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: name_mask: software
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: name_mask: noanonymous
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: connect from p5B24DE45.dip.t-dialin.net[91.36.222.69]
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_list_match: p5B24DE45.dip.t-dialin.net: no match
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_list_match: 91.36.222.69: no match
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_list_match: p5B24DE45.dip.t-dialin.net: no match
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_list_match: 91.36.222.69: no match
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 220 vs241172.vserver.de ESMTP Postfix (Debian/GNU)
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: watchdog_pat: 0x8082398
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: < p5B24DE45.dip.t-dialin.net[91.36.222.69]: EHLO [192.168.2.4]
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 250-vs241172.vserver.de
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 250-PIPELINING
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 250-SIZE 10240000
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 250-VRFY
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 250-ETRN
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 250-STARTTLS
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 250-AUTH NTLM LOGIN PLAIN OTP DIGEST-MD5 CRAM-MD5
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_list_match: p5B24DE45.dip.t-dialin.net: no match
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: match_list_match: 91.36.222.69: no match
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 250 8BITMIME
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: watchdog_pat: 0x8082398
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: < p5B24DE45.dip.t-dialin.net[91.36.222.69]: STARTTLS
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 454 TLS not available due to temporary reason
Jul 20 17:26:24 vs241172 postfix/smtpd[22182]: watchdog_pat: 0x8082398
Jul 20 17:26:26 vs241172 postfix/smtpd[22182]: < p5B24DE45.dip.t-dialin.net[91.36.222.69]: AUTH CRAM-MD5
Jul 20 17:26:26 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: sasl_method CRAM-MD5
Jul 20 17:26:26 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: uncoded challenge: <[email protected]>
Jul 20 17:26:26 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 334 PDExMjUxOTExNDMuODYxNTMwNkB2czI0MTE3Mi52c2VydmVyLmRlPg==
Jul 20 17:26:26 vs241172 postfix/smtpd[22182]: < p5B24DE45.dip.t-dialin.net[91.36.222.69]: bWFyZWsgY2RkOWYxNTliMzNlZmQ4MjNmYmY1MmM5NTVkYmQ1ZTU=
Jul 20 17:26:26 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: decoded response: marek cdd9f159b33efd823fbf52c955dbd5e5
Jul 20 17:26:26 vs241172 postfix/smtpd[22182]: warning: SASL authentication failure: no secret in database
Jul 20 17:26:26 vs241172 postfix/smtpd[22182]: warning: p5B24DE45.dip.t-dialin.net[91.36.222.69]: SASL CRAM-MD5 authentication failed
Jul 20 17:26:26 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 535 Error: authentication failed
Jul 20 17:26:26 vs241172 postfix/smtpd[22182]: watchdog_pat: 0x8082398
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: < p5B24DE45.dip.t-dialin.net[91.36.222.69]: AUTH NTLM TlRMTVNTUAABAAAAB4IIAAAAAAAAAAAAAAAAAAAAAAA=
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: sasl_method NTLM, init_response TlRMTVNTUAABAAAAB4IIAAAAAAAAAAAAAAAAAAAAAAA=
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: decoded initial response NTLMSSP
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: uncoded challenge: NTLMSSP
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 334 TlRMTVNTUAACAAAAJgAmADAAAAAFggIArfYCva2nQXUAAAAAAAAAAAAAAAAAAAAAVgBTADIANAAxADEANwAyAC4AVgBTAEUAUgBWAEUAUgAuAEQARQA=
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: < p5B24DE45.dip.t-dialin.net[91.36.222.69]: TlRMTVNTUAADAAAAGAAYAFQAAAAYABgAbAAAAAAAAABAAAAACgAKAEAAAAAKAAoASgAAAAAAAAAAAAAABYIAAG0AYQByAGUAawBtAGEAcgBlAGsA7XEA3lO6ZbVLBGtkkOTMi7SqTScGlgxW7XEA3lO6ZbVLBGtkkOTMi7SqTScGlgxW
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: decoded response: NTLMSSP
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: warning: SASL authentication failure: no secret in database
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: warning: p5B24DE45.dip.t-dialin.net[91.36.222.69]: SASL NTLM authentication failed
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 535 Error: authentication failed
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: watchdog_pat: 0x8082398
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: < p5B24DE45.dip.t-dialin.net[91.36.222.69]: AUTH PLAIN AG1hcmVrAHJlbm94eGw=
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: sasl_method PLAIN, init_response AG1hcmVrAHJlbm94eGw=
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: decoded initial response
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: warning: SASL authentication failure: Password verification failed
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: warning: p5B24DE45.dip.t-dialin.net[91.36.222.69]: SASL PLAIN authentication failed
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 535 Error: authentication failed
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: watchdog_pat: 0x8082398
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: < p5B24DE45.dip.t-dialin.net[91.36.222.69]: AUTH LOGIN
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: sasl_method LOGIN
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: uncoded challenge: Username:
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 334 VXNlcm5hbWU6
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: < p5B24DE45.dip.t-dialin.net[91.36.222.69]: bWFyZWs=
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: decoded response: marek
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: uncoded challenge: Password:
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 334 xxxxx
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: < p5B24DE45.dip.t-dialin.net[91.36.222.69]: xxxxxx
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: smtpd_sasl_authenticate: decoded response: xxxxxx
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: warning: p5B24DE45.dip.t-dialin.net[91.36.222.69]: SASL LOGIN authentication failed
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 535 Error: authentication failed
Jul 20 17:26:27 vs241172 postfix/smtpd[22182]: watchdog_pat: 0x8082398
Jul 20 17:26:28 vs241172 postfix/smtpd[22182]: < p5B24DE45.dip.t-dialin.net[91.36.222.69]: QUIT
Jul 20 17:26:28 vs241172 postfix/smtpd[22182]: > p5B24DE45.dip.t-dialin.net[91.36.222.69]: 221 Bye
Jul 20 17:26:28 vs241172 postfix/smtpd[22182]: disconnect from p5B24DE45.dip.t-dialin.net[91.36.222.69]
Jul 20 17:26:28 vs241172 postfix/smtpd[22182]: master_notify: status 1
Jul 20 17:26:28 vs241172 postfix/smtpd[22182]: connection closed
Jul 20 17:26:28 vs241172 postfix/smtpd[22182]: watchdog_stop: 0x8082398
Jul 20 17:26:28 vs241172 postfix/smtpd[22182]: watchdog_start: 0x8082398
Last edited by a moderator: