[Postfixbuch-users] Probleme mit sasl / saslauth (@domain.de wird abgeschnitten)

Fr Nov 17 14:03:58 CET 2006

Hallo zusammen,

habe hier postfix 2.3.4 und cyrus-sasl 2.1.19-5 (RHEL Clone).

So wie es aussieht übergibt postfix an den sasl Mechanismus

nicht den Domänenanteil, also das @domain.de fehlt.

Siehe hier.

Nov 17 12:30:39 mailmx saslauthd[26468]: SELECT Password FROM TNAccount WHERE EmailAddress='Stefan.Sabolowitsch'
Nov 17 12:30:39 mailmx saslauthd[26468]: pam_mysql: select returned more than one result
Nov 17 12:30:39 mailmx saslauthd[26468]: returning 7 after db_checkpasswd.
Nov 17 12:30:39 mailmx saslauthd[26468]: do_auth         : auth failure: [user=Stefan.Sabolowitsch] [service=smtp] [realm=test.de] [mech=pam] [reason=PAM auth error]

Wenn ich jedoch einen Test mit "testsaslauthd" mache geht es.

testsaslauthd -u Stefan.Sabolowitsch at test.de -p test -s smtp

0: OK "Success."

Nov 17 13:01:56 mailmx saslauthd[26466]: SELECT Password FROM TNAccount WHERE EmailAddress='Stefan.Sabolowitsch at test.de'
Nov 17 13:01:56 mailmx saslauthd[26466]: sqlLog called.
Nov 17 13:01:56 mailmx saslauthd[26466]: insert into TNLog (msg, user, host, pid, time) values('AUTH SUCCESSFUL', 'Stefan.Sabolowitsch at test.de', '', '26466', NOW())

postconf -a
cyrus
dovecot

postconf -n

alias_database = hash:/etc/postfix/aliases

alias_maps = $alias_database

broken_sasl_auth_clients = yes

command_directory = /usr/sbin

config_directory = /etc/postfix

daemon_directory = /usr/libexec/postfix

debug_peer_level = 2

default_process_limit = 3

disable_vrfy_command = yes

fallback_transport = virtual

home_mailbox = Maildir/

html_directory = /usr/share/doc/postfix-2.2.5-documentation/html

inet_interfaces = all

local_transport = local

mail_owner = postfix

mail_spool_directory = /var/mail

mailq_path = /usr/bin/mailq.postfix

manpage_directory = /usr/share/man

masquerade_domains = $mydomain

max_use = 20

mydestination = $myhostname, localhost.$mydomain

mydomain = test.de

myhostname = mailmx.test.de

mynetworks = 192.168.100.0/24, 192.168.6.0/24, 192.168.5.0/24, 192.168.1.0/24, 192.168.0.0/24, 127.0.0.0/8

mynetworks_style = class

myorigin = $myhostname

newaliases_path = /usr/bin/newaliases.postfix

queue_directory = /var/spool/postfix

readme_directory = /usr/share/doc/postfix-2.2.5-documentation/readme

recipient_delimiter = +

sample_directory = /etc/postfix

sendmail_path = /usr/sbin/sendmail.postfix

setgid_group = postdrop

show_user_unknown_table_name = no

smtp_tls_loglevel = 1

smtp_tls_note_starttls_offer = yes

smtp_use_tls = yes

smtpd_banner = $myhostname ESMTP $mail_name ($mail_version)

smtpd_client_restrictions =

smtpd_data_restrictions = permit_mynetworks,    reject_unauth_pipelining,      permit

smtpd_delay_reject = yes

smtpd_error_sleep_time = 5

smtpd_hard_error_limit = 20

smtpd_helo_required = yes

smtpd_helo_restrictions = permit_mynetworks,    reject_unknown_sender_domain

smtpd_recipient_restrictions = permit_mynetworks,       permit_sasl_authenticated,      permit_tls_clientcerts, reject_invalid_hostname,        reject_spf_invalid_sender,      warn_if_reject, reject_non_fqdn_hostname,       reject_non_fqdn_sender, reject_non_fqdn_recipient,      reject_unauth_destination,      reject_unauth_pipelining,       reject_unknown_sender_domain,   reject_unknown_recipient_domain,        reject_rhsbl_client blackhole.securitysage.com, reject_rhsbl_sender blackhole.securitysage.com, reject_rhsbl_client rhsbl.sorbs.net,    reject_rhsbl_sender rhsbl.sorbs.net,    reject_rbl_client sbl-xbl.spamhaus.org, reject_rbl_client list.dsbl.org,        reject_rbl_client relays.ordb.org,      reject_rbl_client ix.dnsbl.manitu.net,  permit

smtpd_sasl_auth_enable = yes

smtpd_sasl_local_domain = $mydomain

smtpd_sasl_security_options = noanonymous

smtpd_sender_restrictions = warn_if_reject,     reject_non_fqdn_hostname

smtpd_soft_error_limit = 10

smtpd_tls_cert_file = /etc/postfix/mailmx.dataworkflow.tld.pem

smtpd_tls_key_file = /etc/postfix/mailmx.dataworkflow.tld.pem

smtpd_tls_loglevel = 1

smtpd_tls_received_header = yes

smtpd_tls_session_cache_timeout = 3600s

smtpd_use_tls = yes

strict_rfc821_envelopes = yes

unknown_local_recipient_reject_code = 450

virtual_alias_maps = proxy:mysql:/etc/postfix/TNMailServer-Alias.cf

virtual_create_maildirsize = yes

virtual_gid_maps = static:89

virtual_mailbox_base = /var/spool/postfix/virtual

virtual_mailbox_domains = proxy:mysql:/etc/postfix/TNMailServer-Domain.cf

virtual_mailbox_limit = 50000000

virtual_mailbox_limit_inbox = no

virtual_mailbox_limit_maps = mysql:/etc/postfix/TNMailServer-Quota.cf

virtual_mailbox_limit_override = yes

virtual_mailbox_maps = mysql:/etc/postfix/TNMailServer-Mailbox.cf

virtual_maildir_extended = yes

virtual_maildir_limit_message = Sorry, the user's maildir has overdrawn his diskspace quota, please try again later.

virtual_minimum_uid = 89

virtual_overquota_bounce = yes

virtual_transport = virtual

virtual_uid_maps = static:89

Was kann das sein. Hat jemand eine Idee

Info, mit der alten Version 2.1.x von postfix geht es.

Danke für jede Hilfe

Administrator IT

FELTEN GmbH

In den Dörrwiesen 31

D-54455 Serrig

Tel: +49 (65 81) 91 69 - 25

Fax: +49 (65 81) 91 69 - 33

E-Mail: Stefan.Sabolowitsch at feltengmbh.de

www.feltengmbh.de

www.pm-scada.de

_____________________ Confidentiality ______________________

This electronic transmission is strictly confidential and intended 

solely for the addressee. It may contain information which is covered 

by legal, professional or other privilege. If you are not the intended 

addressee, you must not disclose, copy or take any action in reliance 

of this transmission. If you have received this transmission in error, 

please notify us and delete the received data as soon as possible.

-------------- nächster Teil --------------
Ein Dateianhang mit HTML-Daten wurde abgetrennt...
URL: <https://listi.jpberlin.de/pipermail/postfixbuch-users/attachments/20061117/c7dbcd6d/attachment.html>