The OpenNET Project / Index page

[ новости /+++ | форум | теги | ]

форумы  помощь  поиск  регистрация  майллист  вход/выход  слежка  RSS
"Postfix + SASL. Проблема авторизации на smtp"
Вариант для распечатки  
Пред. тема | След. тема 
Форумы OpenNET: Виртуальная конференция (Public)
Изначальное сообщение [Проследить за развитием треда]

"Postfix + SASL. Проблема авторизации на smtp"  
Сообщение от Meglioth (ok) on 24-Сен-07, 13:59 
Здрасти. Имею Ubuntu 6.01, на ней Postfix+MySQL+Dovecot+SASLv2+Postfixadmin. Вообщем dovecot настроить удалось, почта приходит. Возникла проблема при SSL авторизации на SMTP, вот лог после однократной попытки авторизации с помощью Outlook(снова и снова запрашивает пароль :)):

Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin Parse the username paradoxx@penn-tawsha.net
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin try and connect to a host
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin trying to open db 'postfix' on host 'localhost'
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin Parse the username paradoxx@penn-tawsha.net
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin try and connect to a host
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin trying to open db 'postfix' on host 'localhost'
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin Parse the username paradoxx@penn-tawsha.net
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin try and connect to a host
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin trying to open db 'postfix' on host 'localhost'
Sep 24 05:50:32 tessa postfix/smtpd[4149]: begin transaction
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin create statement from userPassword paradoxx penn-tawsha.net
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin doing query select password from mailbox where username = 'paradoxx@penn-tawsha.net';
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin create statement from cmusaslsecretPLAIN paradoxx penn-tawsha.net
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin doing query select password from mailbox where username = 'paradoxx@penn-tawsha.net';
Sep 24 05:50:32 tessa postfix/smtpd[4149]: commit transaction
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin Parse the username paradoxx@penn-tawsha.net
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin try and connect to a host
Sep 24 05:50:32 tessa postfix/smtpd[4149]: sql plugin trying to open db 'postfix' on host 'localhost'

Вот smtpd.conf
saslauthd_path: /var/run/saslauthd/mux
pwcheck_method: auxprop
mech_list: PLAIN LOGIN CRAM-MD5
auxprop_plugin: sql
sql_engine: mysql
sql_hostnames: localhost
sql_user: user
sql_passwd: pass
sql_database: postfix
sql_select: select password from mailbox where username = '%u@%r'
log_level: 7

Вот main.cf
#myorigin = /etc/mailname
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
biff = no
append_dot_mydomain = no
smtpd_tls_cert_file = /etc/ssl/smtp.penn-tawsha.net.crt
smtpd_tls_key_file = /etc/ssl/smtp.penn-tawsha.net.key
smtpd_use_tls = yes
smtpd_tls_session_cache_database = btree:${queue_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${queue_directory}/smtp_scache
queue_directory = /var/spool/postfix
myhostname = tessa.penn-tawsha.net
mydomain = penn-tawsha.net
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = $myhostname, localhost.$mydomain, localhost
relayhost =
mynetworks = 127.0.0.0/8
mailbox_command =
mailbox_size_limit = 0
recipient_delimiter = +
inet_interfaces = all
inet_protocols = all
smtpd_sasl_local_domain =
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes
smtpd_recipient_restrictions = permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination
#smtpd_tls_auth_only = no
smtp_use_tls = yes
#smtp_tls_note_starttls_offer = yes
smtpd_sasl_application_name = smtpd
smtpd_tls_CAfile = /etc/postfix/ssl/cacert.pem
smtpd_tls_loglevel = 3
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
home_mailbox = Mailbox
message_size_limit = 5242880
local_recipient_maps = $virtual_mailbox_maps, $virtual_alias_maps, $alias_maps
smtpd_sender_login_maps = mysql:$base/etc/postfix/mysqlLookupMaps/sender.conf
transport_maps = mysql:$base/etc/postfix/mysqlLookupMaps/transport.conf
virtual_alias_maps = mysql:$base/etc/postfix/mysqlLookupMaps/alias.conf
virtual_mailbox_domains = mysql:$base/etc/postfix/mysqlLookupMaps/domain.conf
virtual_mailbox_maps = mysql:$base/etc/postfix/mysqlLookupMaps/mailbox.conf
virtual_mailbox_base = /var/spool/mail
virtual_mailbox_limit_maps = mysql:$base/etc/postfix/mysqlLookupMaps/quota.conf
virtual_maildir_extended = yes
virtual_mailbox_limit_override = yes
virtual_create_maildirsize = yes
virtual_overquota_bounce = yes
virtual_maildir_limit_message = "Sorry, the user's maildir has overdrawn his diskspace quota, please try again later"
virtual_gid_maps = static:1981
virtual_uid_maps = static:1981
virtual_minimum_uid = 1000

Что за беда? Ведь судя по логу выборка пароля и базы проходит нормально, ну а дальше то что?

Высказать мнение | Ответить | Правка | Наверх | Cообщить модератору

 Оглавление

Сообщения по теме [Сортировка по времени, UBB]


1. "Postfix + SASL. Проблема авторизации на smtp"  
Сообщение от Meglioth (ok) on 24-Сен-07, 15:15 
Вот что теперь пишет:
Sep 24 07:14:00 tessa postfix/smtpd[4824]: SSL_accept:SSLv3 read client key exchange A
Sep 24 07:14:00 tessa postfix/smtpd[4824]: read from 080995E8 [080A2CD8] (5 bytes => -1 (0xFFFFFFFF))
Sep 24 07:14:00 tessa postfix/smtpd[4824]: SSL_accept:error in SSLv3 read certificate verify A
Sep 24 07:14:00 tessa postfix/smtpd[4824]: read from 080995E8 [080A2CD8] (5 bytes => 5 (0x5))
Sep 24 07:14:00 tessa postfix/smtpd[4824]: 0000 14 03 01 00 01                                   .....
Sep 24 07:14:00 tessa postfix/smtpd[4824]: read from 080995E8 [080A2CDD] (1 bytes => -1 (0xFFFFFFFF))
Sep 24 07:14:00 tessa postfix/smtpd[4824]: SSL_accept:error in SSLv3 read certificate verify A
Sep 24 07:14:00 tessa postfix/smtpd[4824]: read from 080995E8 [080A2CDD] (1 bytes => 1 (0x1))
Sep 24 07:14:00 tessa postfix/smtpd[4824]: 0000 01                                               .
Sep 24 07:14:00 tessa postfix/smtpd[4824]: read from 080995E8 [080A2CD8] (5 bytes => -1 (0xFFFFFFFF))
Sep 24 07:14:00 tessa postfix/smtpd[4824]: SSL_accept:error in SSLv3 read certificate verify A
Sep 24 07:14:00 tessa postfix/smtpd[4824]: read from 080995E8 [080A2CD8] (5 bytes => 5 (0x5))
Sep 24 07:14:00 tessa postfix/smtpd[4824]: 0000 16 03 01                                         ...
Sep 24 07:14:00 tessa postfix/smtpd[4824]: 0003 - <SPACES/NULLS>
Sep 24 07:14:00 tessa postfix/smtpd[4824]: read from 080995E8 [080A2CDD] (32 bytes => -1 (0xFFFFFFFF))
Sep 24 07:14:00 tessa postfix/smtpd[4824]: SSL_accept:error in SSLv3 read certificate verify A
Sep 24 07:14:00 tessa postfix/smtpd[4824]: read from 080995E8 [080A2CDD] (32 bytes => 32 (0x20))
Sep 24 07:14:00 tessa postfix/smtpd[4824]: 0000 ae 81 0c 80 82 ca 25 7d|96 16 7c 6c 8a 3a 96 5a  ......%} ..|l.:.Z
Sep 24 07:14:00 tessa postfix/smtpd[4824]: 0010 02 93 df a5 33 68 67 c3|2f 21 22 d0 e4 ba bd ac  ....3hg. /!".....
Sep 24 07:14:00 tessa postfix/smtpd[4824]: SSL_accept:SSLv3 read finished A
Sep 24 07:14:00 tessa postfix/smtpd[4824]: SSL_accept:SSLv3 write change cipher spec A
Sep 24 07:14:00 tessa postfix/smtpd[4824]: SSL_accept:SSLv3 write finished A
Sep 24 07:14:00 tessa postfix/smtpd[4824]: write to 080995E8 [080B0EA0] (43 bytes => 43 (0x2B))
Sep 24 07:14:00 tessa postfix/smtpd[4824]: 0000 14 03 01 00 01 01 16 03|01 00 20 81 38 94 e9 04  ........ .. .8...
Sep 24 07:14:00 tessa postfix/smtpd[4824]: 0010 58 d1 d9 16 fc 99 96 c1|63 14 41 35 c0 bc 34 8a  X....... c.A5..4.
Sep 24 07:14:00 tessa postfix/smtpd[4824]: 0020 25 55 7f 6d 84|b6 5a 2f                 %[f...m. .Z/
Sep 24 07:14:00 tessa postfix/smtpd[4824]: SSL_accept:SSLv3 flush data
Sep 24 07:14:00 tessa postfix/smtpd[4824]: save session 6477B9AD107B49E7EBB8BAF85228F4923B4287D4CA254F468E6B085EDB0915AC to smtpd cache
Sep 24 07:14:00 tessa postfix/tlsmgr[4150]: put smtpd session id=6477B9AD107B49E7EBB8BAF85228F4923B4287D4CA254F468E6B085EDB0915AC [data 127 bytes]
Sep 24 07:14:00 tessa postfix/tlsmgr[4150]: write smtpd TLS cache entry 6477B9AD107B49E7EBB8BAF85228F4923B4287D4CA254F468E6B085EDB0915AC: time=1190632440 [data 127 bytes]
Sep 24 07:14:00 tessa postfix/smtpd[4824]: TLS connection established from unknown[193.27.240.27]: TLSv1 with cipher RC4-MD5 (128/128 bits)
Sep 24 07:14:16 tessa postfix/smtpd[4824]: warning: unknown[193.27.240.27]: SASL LOGIN authentication failed: authentication failure
Sep 24 07:14:16 tessa postfix/smtpd[4824]: lost connection after AUTH from unknown[193.27.240.27]
Sep 24 07:14:16 tessa postfix/smtpd[4824]: disconnect from unknown[193.27.240.27]
Высказать мнение | Ответить | Правка | Наверх | Cообщить модератору

Архив | Удалить

Индекс форумов | Темы | Пред. тема | След. тема
Оцените тред (1=ужас, 5=супер)? [ 1 | 2 | 3 | 4 | 5 ] [Рекомендовать для помещения в FAQ]




Партнёры:
PostgresPro
Inferno Solutions
Hosting by Hoster.ru
Хостинг:

Закладки на сайте
Проследить за страницей 		Created 1996-2025 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру