Re: sendmail 8.11.0.Beta1-1
On Fri, Jun 02, 2000 at 01:31:21PM +0200, Jaume Teixi wrote:
> I'm testing sendmail on frozen dist
> What I need to setup in order to get SMTP AUTH running ?
>
> I've put "pwcheck_method: passwd" on Sendmail.conf and on
> saslpasswd.conf,
> but still users' cannot autenticate their smtp's
>
> I need to add any entry on my sendmail.mc ?
>
> thanks and bests,
Wow. Where to begin.
You'll need sendmail and libsasl. Sendmail will need to be linked
to/use sasl. I didnt use a package, I put the following in my
/sendmail-8.10.0/devtools/Site/site.config.m4
APPENDDEF(`confENVDEF', `-DSASL')
APPENDDEF(`conf_sendmail_LIBS', `-lsasl')
After I built sendmail, I set it up to use smtp auth by adding the
following to my sendmai.mc to enable the needed auth mechanisms.
TRUST_AUTH_MECH(`DIGEST-MD5 CRAM-MD5 PLAIN LOGIN')
define(`confAUTH_MECHANISMS', `GSSAPI DIGEST-MD5 LOGIN PLAIN')
Please note. This was just a test/educational thing for me. Unless
you wrap the auth in ssl, LOGIN and PLAIN are very insecure.
There's lots of FAQ type stuff available for this. I was just seeing
if I could get smtp auth to work against my ldap database. I did. After
I decide on how to deal with the ssl issue, I may proceed. I'm thinking
of maybe a second mail server that runs an ssl wraped sendmail may
do the trick. Unfortunately, it wont instantly support all clients.
You really need to research what you want to support and act acordingly.
Otherwise you're going to have a lot of password files to keep
synchronized...
Good luck. If you need more info, I'll see if I can dig up my notes
and urls. The RFC for smtp auth is a good starting point.
--
Mental
GPG 1.0.1 Public Key: http://www.neverlight.com/mental-gpg.asc
Reply to: