[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Probleme mit exim4

Huhu

Ich glaube die Probleme liegen in dieser Datei:

##############
# See /usr/share/doc/exim4-base/README.Debian.gz
##############

# These examples below are the equivalent for client side authentication.
# They get the passwords from CONFDIR/passwd.client, whose format is
# defined in exim4_passwd_client(5)

# Because AUTH PLAIN and AUTH LOGIN send the password in clear, we
# only allow these mechanisms over encrypted connections by default.
# You can set AUTH_CLIENT_ALLOW_NOTLS_PASSWORDS to allow unencrypted
# clear text password authentication on all connections.

cram_md5:
 driver = cram_md5
 public_name = CRAM-MD5
# client_name = ${extract{1}{:}{${lookup{$host}nwildlsearch{CONFDIR/passwd.client}{$value}fail}}} # client_secret = ${extract{2}{:}{${lookup{$host}nwildlsearch{CONFDIR/passwd.client}{$value}fail}}}
client_name = "${extract{user}{${lookup{$sender_address}lsearch{/etc/exim4/cram_md5_pwd}}}}" client_secret = "${extract{pass}{${lookup{$sender_address}lsearch{/etc/exim4/cram_md5_pwd}}}}" 

# this returns the matching line from passwd.client and doubles all ^
#PASSWDLINE=${sg{\
# ${lookup{$host}nwildlsearch{CONFDIR/passwd.client}{$value}fail}\ 
#               }\
#               {\\N[\\^]\\N}\
#               {^^}\
#           }

plain:
 driver = plaintext
 public_name = PLAIN
.ifndef AUTH_CLIENT_ALLOW_NOTLS_PASSWORDS
 client_send = "<; ${if !eq{$tls_cipher}{}\
                   {^${extract{1}{:}{PASSWDLINE}}\
                    ^${sg{PASSWDLINE}{\\N([^:]+:)(.*)\\N}{\\$2}}\
                  }fail}"
.else
 client_send = "<; ^${extract{1}{:}{PASSWDLINE}}\
                   ^${sg{PASSWDLINE}{\\N([^:]+:)(.*)\\N}{\\$2}}"
.endif

login:
 driver = plaintext
 public_name = LOGIN
.ifndef AUTH_CLIENT_ALLOW_NOTLS_PASSWORDS
 # Return empty string if not non-TLS AND looking up $host in passwd-file
 # yields a non-empty string; fail otherwise.
 client_send = "<; ${if and{\
                         {!eq{$tls_cipher}{}}\
                         {!eq{PASSWDLINE}{}}\
                        }\
                     {}fail}\
                ; ${extract{1}{::}{PASSWDLINE}}\
                ; ${sg{PASSWDLINE}{\\N([^:]+:)(.*)\\N}{\\$2}}"
.else
 # Return empty string if looking up $host in passwd-file yields a
 # non-empty string; fail otherwise.
 client_send = "<; ${if !eq{PASSWDLINE}{}\
                     {}fail}\
                ; ${extract{1}{::}{PASSWDLINE}}\
                ; ${sg{PASSWDLINE}{\\N([^:]+:)(.*)\\N}{\\$2}}"
.endif


Die Ausgabe von swaks zeigt das:
swaks --tls --auth --to christoph.kaminski@stud.fh-flensburg.de --server mail.stud.fh-flensburg.de 
Username: ***zensiert***
Password: ***zensiert***
=== Trying mail.stud.fh-flensburg.de:25...
=== Connected to mail.stud.fh-flensburg.de.
<-  220 mail.stud.fh-flensburg.de ESMTP
-> EHLO satan
<- 250-mail.stud.fh-flensburg.de Hello i59f638f3.versanet.de [89.246.56.243] 
<-  250-SIZE 5242880
<-  250-PIPELINING
<-  250-STARTTLS
<-  250 HELP
-> STARTTLS
<-  220 TLS go ahead
=== TLS started w/ cipher DHE-RSA-AES256-SHA
~> EHLO satan
<~ 250-mail.stud.fh-flensburg.de Hello i59f638f3.versanet.de [89.246.56.243] 
<~  250-SIZE 5242880
<~  250-PIPELINING
<~  250-AUTH LOGIN PLAIN
<~  250 HELP
~> AUTH LOGIN
.
.
.
<~  235 Authentication succeeded
~> MAIL FROM:<root@satan>
<~  250 OK
~> RCPT TO:<christoph.kaminski@stud.fh-flensburg.de>
~> QUIT
<~  221 mail.stud.fh-flensburg.de closing connection
=== Connection closed with remote host.


Was kann da faul sein? (das 1te Problem habe ich behoben)

Greetz
Reply to: