Postfix Sasl und Confixx Problem

[mcfly]

Hallo an alle und einen schönen Sonntag Morgen

ich habe ein Problem mit meinem neuinstallierten Server.

Als erstes wollte ich dazu sagen es handelt sich um einen Xen DomU mit Suse 11 und Confixx 3.3.4 auf dem ich die Probleme habe.

Ich wollte für Confixx und Postfix nun sasl aktivieren (Für eine Passwortabfrage beim versenden von Emails).

Sowet habe ich auch alle verschiedenen anleitungen mir zu gemüte geführt aber ich kann weiterhin ohne Passwortabfrage mails versenden.

Da ich mittlerweile etwas Ratlos bin wollte ich hier nah Eurer Hilfe fragen.

Hier sind mal die verschiedenen Dateien zur Einstellung

queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/lib/postfix
mail_owner = postfix
unknown_local_recipient_reject_code = 450
debug_peer_level = 2
debugger_command =
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/sbin/sendmail
newaliases_path = /usr/bin/newaliases
mailq_path = /usr/bin/mailq
setgid_group = maildrop
manpage_directory = /usr/share/man
sample_directory = /usr/share/doc/packages/postfix/samples
readme_directory = /usr/share/doc/packages/postfix/README_FILES
home_mailbox = Maildir/
canonical_maps = hash:/etc/postfix/canonical
virtual_maps = hash:/etc/postfix/virtual, hash:/etc/postfix/confixx_virtualUsers, hash:/etc/postfix/confixx_localDomains
relocated_maps = hash:/etc/postfix/relocated
transport_maps = hash:/etc/postfix/transport
sender_canonical_maps = hash:/etc/postfix/sender_canonical
masquerade_exceptions = root
masquerade_classes = envelope_sender, header_sender, header_recipient
myhostname = confixx.meinrootserver.de
program_directory = /usr/lib/postfix
inet_interfaces = all
masquerade_domains =
mydestination = $myhostname, localhost.$mydomain
defer_transports =
disable_dns_lookups = no
relayhost =
content_filter =
mailbox_command =
mailbox_transport =

strict_rfc821_envelopes = no

smtpd_sender_restrictions = hash:/etc/postfix/access
smtpd_client_restrictions =
smtpd_helo_required = yes
smtpd_helo_restrictions = reject_invalid_hostname
smtpd_recipient_restrictions = permit_sasl_authenticated,reject_unauth_destination
smtpd_use_tls = no
smtpd_use_tls = no
alias_maps = hash:/etc/aliases
mailbox_size_limit = 0
message_size_limit = 10240000
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes

### CONFIXX POSTFIX ENTRY ###
virtual_maps = hash:/etc/postfix/confixx_virtualUsers, hash:/etc/postfix/confixx_localDomains
### /CONFIXX POSTFIX ENTRY ###

# ==========================================================================
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
# ==========================================================================
smtp inet n - n - - smtpd
#smtps inet n - n - - smtpd
# -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes
submission inet n - n - - smtpd
# -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes
#628 inet n - n - - qmqpd
pickup fifo n - n 60 1 pickup
cleanup unix n - n - 0 cleanup
qmgr fifo n - n 300 1 qmgr
#qmgr fifo n - n 300 1 nqmgr
#tlsmgr fifo - - n 300 1 tlsmgr
rewrite unix - - n - - trivial-rewrite
bounce unix - - n - 0 bounce
defer unix - - n - 0 bounce
flush unix n - n 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - n - - smtp
relay unix - - n - - smtp
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - n - - showq
error unix - - n - - error
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
#localhost:10025 inet n - n - - smtpd -o content_filter=
#
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# maildrop. See the Postfix MAILDROP_README file for details.
#
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
cyrus unix - n n - - pipe
user=cyrus argv=/usr/lib/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user}
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
ifmail unix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient
vscan unix - n n - 10 pipe
user=vscan argv=/usr/sbin/amavis ${sender} ${recipient}
procmail unix - n n - - pipe
flags=R user=nobody argv=/usr/bin/procmail -t -m /etc/procmailrc ${sender} ${recipient}
trace unix - - n - 0 bounce
verify unix - - n - 1 verify
anvil unix - - n - 1 anvil
scache unix - - n - 1 scache
discard unix - - n - - discard
tlsmgr unix - - n 1000? 1 tlsmgr
retry unix - - n - - error
proxywrite unix - - n - 1 proxymap

[quote=/etc/sasl2/smtpd.conf]pwcheck_method: saslauthd
mech_list: plain login
[/quote]

Ich hoffe ich habe keine wichtige Datei vergessen

Den sasl Test mit

Code: Select all

testsaslauthd -u web0p1 -p passwort

habe ich versucht und funktioniert.

Ich hoffe ich könnt mir meinen Fehler sagen und mir weiterhelfen

[Roger Wilco]

Was steht in deinen Logs beim Versand einer Mail, der deiner Meinung nach eine Authentifizierung vorausgehen sollte?

[mcfly]

Leider steht kein Fehler in der mail Log

Apr 19 15:11:33 linux-r0qv pop3d: Connection, ip=[::ffff:94.157.113.131]
Apr 19 15:11:34 linux-r0qv pop3d: LOGIN, user=web0p1, ip=[::ffff:94.157.113.131], port=[58228]
Apr 19 15:11:34 linux-r0qv pop3d: LOGOUT, user=web0p1, ip=[::ffff:94.157.113.131], port=[58228], top=0, retr=0, rcvd=12, sent=39, time=0

[Roger Wilco]

pop3d ist sicherlich kein Prozess von Postfix...

Hast du in der richtigen Log Datei nachgesehen? /var/log/mail* dürfte es sein.

[mcfly]

Das ist aber die Log

habe nun mal alles gelöscht und nen reboot gemacht und danach zwei mails gesendet

Apr 19 17:38:41 linux-r0qv postgrey: 2009/04/19-17:38:41 Server closing!
Apr 19 17:38:41 linux-r0qv postfix/master[19033]: terminating on signal 15
Apr 19 17:38:42 linux-r0qv authdaemond: stopping authdaemond children
Apr 19 17:38:42 linux-r0qv spamd[1822]: spamd: server killed by SIGTERM, shutting down
Apr 19 17:38:42 linux-r0qv spamd[1822]: spamd: cannot unlink /var/run/spamd.pid: No such file or directory
Apr 19 17:39:11 linux-r0qv authdaemond: modules="authuserdb authpam authpgsql authldap authmysql authcustom authpipe", daemons=5
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthuserdb
Apr 19 17:39:11 linux-r0qv authdaemond: libauthuserdb.so: cannot open shared object file: No such file or directory
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthpam
Apr 19 17:39:11 linux-r0qv authdaemond: Installation complete: authpam
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthpgsql
Apr 19 17:39:11 linux-r0qv authdaemond: libauthpgsql.so: cannot open shared object file: No such file or directory
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthldap
Apr 19 17:39:11 linux-r0qv authdaemond: libauthldap.so: cannot open shared object file: No such file or directory
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthmysql
Apr 19 17:39:11 linux-r0qv authdaemond: Installation complete: authmysql
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthcustom
Apr 19 17:39:11 linux-r0qv authdaemond: Installation complete: authcustom
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthpipe
Apr 19 17:39:11 linux-r0qv authdaemond: libauthpipe.so: cannot open shared object file: No such file or directory
Apr 19 17:39:15 linux-r0qv postfix/postfix-script[1771]: starting the Postfix mail system
Apr 19 17:39:15 linux-r0qv postfix/master[1772]: daemon started -- version 2.5.1, configuration /etc/postfix
Apr 19 17:39:15 linux-r0qv spamd[1662]: logger: removing stderr method
Apr 19 17:39:18 linux-r0qv spamd[1814]: spamd: server started on port 783/tcp (running version 3.2.4)
Apr 19 17:39:18 linux-r0qv spamd[1814]: spamd: server pid: 1814
Apr 19 17:39:18 linux-r0qv spamd[1814]: spamd: server successfully spawned child process, pid 1823
Apr 19 17:39:18 linux-r0qv spamd[1814]: spamd: server successfully spawned child process, pid 1839
Apr 19 17:39:19 linux-r0qv postgrey: Process Backgrounded
Apr 19 17:39:19 linux-r0qv postgrey: 2009/04/19-17:39:19 postgrey (type Net::Server::Multiplex) starting! pid(1908)
Apr 19 17:39:19 linux-r0qv postgrey: Binding to UNIX socket file /var/spool/postfix/postgrey/socket using SOCK_STREAM
Apr 19 17:39:19 linux-r0qv postgrey: Setting gid to "51 51"
Apr 19 17:39:19 linux-r0qv postgrey: Setting uid to "106"
Apr 19 17:39:19 linux-r0qv spamd[1814]: prefork: child states: II
Apr 19 18:01:31 linux-r0qv pop3d: Connection, ip=[::ffff:94.157.113.131]
Apr 19 18:01:32 linux-r0qv pop3d: LOGIN, user=web0p1, ip=[::ffff:94.157.113.131], port=[58540]
Apr 19 18:01:33 linux-r0qv pop3d: LOGOUT, user=web0p1, ip=[::ffff:94.157.113.131], port=[58540], top=0, retr=0, rcvd=12, sent=39, time=1
Apr 19 18:11:26 linux-r0qv pop3d: Connection, ip=[::ffff:94.157.113.131]
Apr 19 18:11:26 linux-r0qv pop3d: LOGIN, user=web0p1, ip=[::ffff:94.157.113.131], port=[58628]
Apr 19 18:11:27 linux-r0qv pop3d: LOGOUT, user=web0p1, ip=[::ffff:94.157.113.131], port=[58628], top=0, retr=0, rcvd=12, sent=39, time=1

dazu noch die

Apr 19 17:38:41 linux-r0qv postfix/master[19033]: terminating on signal 15
Apr 19 17:38:42 linux-r0qv authdaemond: stopping authdaemond children
Apr 19 17:38:42 linux-r0qv spamd[1822]: spamd: server killed by SIGTERM, shutting down
Apr 19 17:39:11 linux-r0qv authdaemond: modules="authuserdb authpam authpgsql authldap authmysql authcustom authpipe", daemons=5
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthuserdb
Apr 19 17:39:11 linux-r0qv authdaemond: libauthuserdb.so: cannot open shared object file: No such file or directory
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthpam
Apr 19 17:39:11 linux-r0qv authdaemond: Installation complete: authpam
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthpgsql
Apr 19 17:39:11 linux-r0qv authdaemond: libauthpgsql.so: cannot open shared object file: No such file or directory
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthldap
Apr 19 17:39:11 linux-r0qv authdaemond: libauthldap.so: cannot open shared object file: No such file or directory
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthmysql
Apr 19 17:39:11 linux-r0qv authdaemond: Installation complete: authmysql
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthcustom
Apr 19 17:39:11 linux-r0qv authdaemond: Installation complete: authcustom
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthpipe
Apr 19 17:39:11 linux-r0qv authdaemond: libauthpipe.so: cannot open shared object file: No such file or directory
Apr 19 17:39:15 linux-r0qv postfix/postfix-script[1771]: starting the Postfix mail system
Apr 19 17:39:15 linux-r0qv postfix/master[1772]: daemon started -- version 2.5.1, configuration /etc/postfix
Apr 19 17:39:15 linux-r0qv spamd[1662]: logger: removing stderr method
Apr 19 17:39:18 linux-r0qv spamd[1814]: spamd: server started on port 783/tcp (running version 3.2.4)
Apr 19 17:39:18 linux-r0qv spamd[1814]: spamd: server pid: 1814
Apr 19 17:39:18 linux-r0qv spamd[1814]: spamd: server successfully spawned child process, pid 1823
Apr 19 17:39:18 linux-r0qv spamd[1814]: spamd: server successfully spawned child process, pid 1839
Apr 19 17:39:19 linux-r0qv spamd[1814]: prefork: child states: II
Apr 19 18:01:32 linux-r0qv pop3d: LOGIN, user=web0p1, ip=[::ffff:94.157.113.131], port=[58540]
Apr 19 18:01:33 linux-r0qv pop3d: LOGOUT, user=web0p1, ip=[::ffff:94.157.113.131], port=[58540], top=0, retr=0, rcvd=12, sent=39, time=1
Apr 19 18:11:26 linux-r0qv pop3d: LOGIN, user=web0p1, ip=[::ffff:94.157.113.131], port=[58628]
Apr 19 18:11:27 linux-r0qv pop3d: LOGOUT, user=web0p1, ip=[::ffff:94.157.113.131], port=[58628], top=0, retr=0, rcvd=12, sent=39, time=1

der service pop3d ist doch von courier für den empfang zuständig.

[Roger Wilco]

Nächstes mal für Konfigurationsdateien und Logdateien den CODE-Tag verwenden und nicht den QUOTE-Tag. Das erleichtert das Lesen der geposteten Daten.

Das ist aber die Log

Aber nicht, während du eine E-Mail an/über deinen MTA geschickt hast. Dass Postfix in /var/log/mail loggt hast du ja gesehen. Allerdings fehlen die relevanten Einträge von smtpd.

Code: Select all

Apr 19 17:39:11 linux-r0qv authdaemond: modules="authuserdb authpam authpgsql authldap authmysql authcustom authpipe", daemons=5
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthuserdb
Apr 19 17:39:11 linux-r0qv authdaemond: libauthuserdb.so: cannot open shared object file: No such file or directory
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthpam
Apr 19 17:39:11 linux-r0qv authdaemond: Installation complete: authpam
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthpgsql
Apr 19 17:39:11 linux-r0qv authdaemond: libauthpgsql.so: cannot open shared object file: No such file or directory
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthldap
Apr 19 17:39:11 linux-r0qv authdaemond: libauthldap.so: cannot open shared object file: No such file or directory
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthmysql
Apr 19 17:39:11 linux-r0qv authdaemond: Installation complete: authmysql
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthcustom
Apr 19 17:39:11 linux-r0qv authdaemond: Installation complete: authcustom
Apr 19 17:39:11 linux-r0qv authdaemond: Installing libauthpipe
Apr 19 17:39:11 linux-r0qv authdaemond: libauthpipe.so: cannot open shared object file: No such file or directory

Das solltest du beheben, indem du entweder die Konfiguration von authdaemond anpasst oder die fehlenden Bibliotheken nachinstallierst.

der service pop3d ist doch von courier für den empfang zuständig.

Nein. POP3 ist ein Protokoll, um E-Mails von einem System abzurufen. Zum Versenden und Empfangen ist SMTP vorhanden.

[mcfly]

Also die module habe ich nachinstalliert aber ich erhalte leider immernoch nix weiter in den log´s und meine mails werden immernoch ohne passwort abfrage versandt.

Code: Select all

Apr 19 18:58:22 linux-r0qv postgrey: 2009/04/19-18:58:22 Server closing!
Apr 19 18:58:22 linux-r0qv postfix/master[1772]: terminating on signal 15
Apr 19 18:58:22 linux-r0qv authdaemond: stopping authdaemond children
Apr 19 18:58:22 linux-r0qv spamd[1814]: spamd: server killed by SIGTERM, shutting down 
Apr 19 18:58:22 linux-r0qv spamd[1814]: spamd: cannot unlink /var/run/spamd.pid: No such file or directory 
Apr 19 18:58:51 linux-r0qv authdaemond: modules="authuserdb authpam authldap authmysql authcustom authpipe", daemons=5
Apr 19 18:58:51 linux-r0qv authdaemond: Installing libauthuserdb
Apr 19 18:58:52 linux-r0qv authdaemond: Installation complete: authuserdb
Apr 19 18:58:52 linux-r0qv authdaemond: Installing libauthpam
Apr 19 18:58:52 linux-r0qv authdaemond: Installation complete: authpam
Apr 19 18:58:52 linux-r0qv authdaemond: Installing libauthldap
Apr 19 18:58:52 linux-r0qv authdaemond: Installation complete: authldap
Apr 19 18:58:52 linux-r0qv authdaemond: Installing libauthmysql
Apr 19 18:58:52 linux-r0qv authdaemond: Installation complete: authmysql
Apr 19 18:58:52 linux-r0qv authdaemond: Installing libauthcustom
Apr 19 18:58:52 linux-r0qv authdaemond: Installation complete: authcustom
Apr 19 18:58:52 linux-r0qv authdaemond: Installing libauthpipe
Apr 19 18:58:52 linux-r0qv authdaemond: Installation complete: authpipe
Apr 19 18:58:55 linux-r0qv postfix/postfix-script[1771]: starting the Postfix mail system
Apr 19 18:58:55 linux-r0qv postfix/master[1772]: daemon started -- version 2.5.1, configuration /etc/postfix
Apr 19 18:58:57 linux-r0qv spamd[1699]: logger: removing stderr method 
Apr 19 18:58:58 linux-r0qv postgrey: Process Backgrounded
Apr 19 18:58:58 linux-r0qv postgrey: 2009/04/19-18:58:58 postgrey (type Net::Server::Multiplex) starting! pid(1839)
Apr 19 18:58:58 linux-r0qv postgrey: Binding to UNIX socket file /var/spool/postfix/postgrey/socket using SOCK_STREAM 
Apr 19 18:58:58 linux-r0qv postgrey: Setting gid to "51 51"
Apr 19 18:58:58 linux-r0qv postgrey: Setting uid to "106"
Apr 19 18:58:59 linux-r0qv spamd[1820]: spamd: server started on port 783/tcp (running version 3.2.4) 
Apr 19 18:59:00 linux-r0qv spamd[1820]: spamd: server pid: 1820 
Apr 19 18:59:00 linux-r0qv spamd[1820]: spamd: server successfully spawned child process, pid 1944 
Apr 19 18:59:00 linux-r0qv spamd[1820]: spamd: server successfully spawned child process, pid 1954 
Apr 19 18:59:00 linux-r0qv spamd[1820]: prefork: child states: II 
Apr 19 19:02:08 linux-r0qv pop3d: Connection, ip=[::ffff:94.157.113.131]
Apr 19 19:02:09 linux-r0qv pop3d: LOGIN, user=web0p1, ip=[::ffff:94.157.113.131], port=[59735]
Apr 19 19:02:09 linux-r0qv pop3d: LOGOUT, user=web0p1, ip=[::ffff:94.157.113.131], port=[59735], top=0, retr=0, rcvd=12, sent=39, time=0

[Roger Wilco]

Bist du sicher, dass dein MTA benutzt wird? Als letzten Strohhalm könntest du in den Dateien unter /var/log/ mal nach 'smtpd' suchen.

[mcfly]

nein eine log namens smtpd ist nicht drinne. Kann das an confixx liegen oder nicht?

[Roger Wilco]

nein eine log namens smtpd ist nicht drinne.

Keine Datei namens 'smtpd', sondern Dateien, die die Zeichenkette 'smtpd' beinhalten; siehe `man grep`.

Kann das an confixx liegen oder nicht?

Confixx hat mit Postfix erst einmal nichts zu tun.