So, maybe it's inappropriate to post links here, but check out this faq:
http://forums.gentoo.org/viewtopic-t-502523-highlight-sqlselect
+missing.html
Ya, for gentoo, but seems possibly appicable. Mainly, I'm suspicious of
the file /usr/lib/sasl2/smtpd.conf, specifically it's location.
Obviously saslfinger is locating the file, the 'sql_select' option just
fine, and assuming there is no syntax error it is probably set
correctly. Still, static config files are often located
in /etc/<somewhere>, and I read a couple other faqs mentioning the
location of /etc/sasl2/smtpd.conf. Possibly, saslfinger is locating the
file in the right location, but there is a duplicate file in
the /etc/sasl2/ dir that is taking precedence in the postfix program
stack. Or, maybe as the FAQ above mentions, there needs to be a file
there with dummy values set?
If you're not using mysql for your sasl auth mechanism knowingly other
FAQs mentioned just removing mysql lib the files in /usr/lib/sasl2.
Doing this, however, may break SASL mechanism in the outside chance you
use it for other services on the box somewhere/somehow? I'm always
leary of 'delete' options, i'd say move the files and test. I haven't
set up a mysql SASL mechanism configuration myself so I'm really
guessing. But these were a couple things I read and became suspicious
of from your output.
- Joe
On Wed, 2010-04-14 at 11:42 -0400, Aldrich, Dak wrote:
> So i'm at it again. I started from scratch, and am back to a problem setting up a postfix mail server.
>
> Everything works perfectly in receiving mail and the imap/pop connections to get the mail.
>
> I'm having an issue with SMTP, however, and I'm getting an error in my logs. However, it's a different error than the last time I tried this.
>
> Below are my log entries and saslfinger output. Any assistance in a direction to move would be much appreciated!
>
> Thanks!
>
> -dak
>
> MAIL.LOG
> --------------
> Apr 14 11:27:11 dhsmail postfix/smtpd[15718]: connect from user-6b930d.user.msu.edu[35.10.89.124]
> Apr 14 11:27:11 dhsmail postfix/smtpd[15718]: warning: SASL authentication failure: no secret in database
> Apr 14 11:27:11 dhsmail postfix/smtpd[15718]: warning: user-6b930d.user.msu.edu[35.10.89.124]: SASL CRAM-MD5 authentication failed: authentication failure
> Apr 14 11:27:11 dhsmail postfix/smtpd[15718]: lost connection after AUTH from user-6b930d.user.msu.edu[35.10.89.124]
> Apr 14 11:27:11 dhsmail postfix/smtpd[15718]: disconnect from user-6b930d.user.msu.edu[35.10.89.124]
>
>
> AUTH.LOG
> ---------------
> Apr 14 11:37:16 dhsmail postfix/smtpd[15969]: sql_select option missing
> Apr 14 11:37:16 dhsmail postfix/smtpd[15969]: auxpropfunc error no mechanism available
> Apr 14 11:37:16 dhsmail postfix/smtpd[15969]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: sql
>
>
> and here is my saslfinger output....
> ----------------------------------------------
> saslfinger - postfix Cyrus sasl configuration Wed Apr 14 11:39:39 EDT 2010
> version: 1.0.4
> mode: server-side SMTP AUTH
>
> -- basics --
> Postfix: 2.5.5
> System: Debian GNU/Linux 5.0 \n \l
>
> -- smtpd is linked to --
> libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0xb7d65000)
>
> -- active SMTP AUTH and TLS parameters for smtpd --
> broken_sasl_auth_clients = yes
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_local_domain =
> smtpd_sasl_path = /usr/lib/sasl2
> smtpd_sasl_security_options = noanonymous
> smtpd_tls_cert_file = /etc/ssl/certs/ssl-cert-snakeoil.pem
> smtpd_tls_key_file = /etc/ssl/private/ssl-cert-snakeoil.key
> smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
> smtpd_use_tls = yes
>
>
> -- listing of /usr/lib/sasl2 --
> total 820
> drwxr-xr-x 2 root root 4096 2010-04-14 11:39 .
> drwxr-xr-x 147 root root 49152 2010-04-13 13:24 ..
> -rw-r--r-- 1 root root 13476 2009-05-24 06:20 libanonymous.a
> -rw-r--r-- 1 root root 855 2009-05-24 06:20 libanonymous.la
> -rw-r--r-- 1 root root 13016 2009-05-24 06:20 libanonymous.so
> -rw-r--r-- 1 root root 13016 2009-05-24 06:20 libanonymous.so.2
> -rw-r--r-- 1 root root 13016 2009-05-24 06:20 libanonymous.so.2.0.22
> -rw-r--r-- 1 root root 15814 2009-05-24 06:20 libcrammd5.a
> -rw-r--r-- 1 root root 841 2009-05-24 06:20 libcrammd5.la
> -rw-r--r-- 1 root root 15352 2009-05-24 06:20 libcrammd5.so
> -rw-r--r-- 1 root root 15352 2009-05-24 06:20 libcrammd5.so.2
> -rw-r--r-- 1 root root 15352 2009-05-24 06:20 libcrammd5.so.2.0.22
> -rw-r--r-- 1 root root 46420 2009-05-24 06:20 libdigestmd5.a
> -rw-r--r-- 1 root root 864 2009-05-24 06:20 libdigestmd5.la
> -rw-r--r-- 1 root root 43500 2009-05-24 06:20 libdigestmd5.so
> -rw-r--r-- 1 root root 43500 2009-05-24 06:20 libdigestmd5.so.2
> -rw-r--r-- 1 root root 43500 2009-05-24 06:20 libdigestmd5.so.2.0.22
> -rw-r--r-- 1 root root 13650 2009-05-24 06:20 liblogin.a
> -rw-r--r-- 1 root root 835 2009-05-24 06:20 liblogin.la
> -rw-r--r-- 1 root root 13460 2009-05-24 06:20 liblogin.so
> -rw-r--r-- 1 root root 13460 2009-05-24 06:20 liblogin.so.2
> -rw-r--r-- 1 root root 13460 2009-05-24 06:20 liblogin.so.2.0.22
> -rw-r--r-- 1 root root 29076 2009-05-24 06:20 libntlm.a
> -rw-r--r-- 1 root root 829 2009-05-24 06:20 libntlm.la
> -rw-r--r-- 1 root root 28532 2009-05-24 06:20 libntlm.so
> -rw-r--r-- 1 root root 28532 2009-05-24 06:20 libntlm.so.2
> -rw-r--r-- 1 root root 28532 2009-05-24 06:20 libntlm.so.2.0.22
> -rw-r--r-- 1 root root 13970 2009-05-24 06:20 libplain.a
> -rw-r--r-- 1 root root 835 2009-05-24 06:20 libplain.la
> -rw-r--r-- 1 root root 14036 2009-05-24 06:20 libplain.so
> -rw-r--r-- 1 root root 14036 2009-05-24 06:20 libplain.so.2
> -rw-r--r-- 1 root root 14036 2009-05-24 06:20 libplain.so.2.0.22
> -rw-r--r-- 1 root root 21710 2009-05-24 06:20 libsasldb.a
> -rw-r--r-- 1 root root 866 2009-05-24 06:20 libsasldb.la
> -rw-r--r-- 1 root root 18080 2009-05-24 06:20 libsasldb.so
> -rw-r--r-- 1 root root 18080 2009-05-24 06:20 libsasldb.so.2
> -rw-r--r-- 1 root root 18080 2009-05-24 06:20 libsasldb.so.2.0.22
> -rw-r--r-- 1 root root 23804 2009-05-24 06:20 libsql.a
> -rw-r--r-- 1 root root 964 2009-05-24 06:20 libsql.la
> -rw-r--r-- 1 root root 23312 2009-05-24 06:20 libsql.so
> -rw-r--r-- 1 root root 23312 2009-05-24 06:20 libsql.so.2
> -rw-r--r-- 1 root root 23312 2009-05-24 06:20 libsql.so.2.0.22
> -rw-r--r-- 1 root root 286 2010-04-13 18:12 smtpd.conf
>
> -- listing of /etc/postfix/sasl --
> total 2
> drwxr-xr-x 2 root root 1024 2010-04-13 16:47 .
> drwxr-xr-x 4 root root 1024 2010-04-13 18:35 ..
>
>
>
>
> -- content of /usr/lib/sasl2/smtpd.conf --
> # Global parameters
> log_level: 5
> pwcheck_method: auxprop
> auxprop_plugin: sql
> mech_list: plain login
> sql_engine: mysql
> sql_hostnames: 127.0.0.1
> sql_user: --- replaced ---
> sql_passwd: --- replaced ---
> sql_database: mail
> sql_select: SELECT userpassword FROM virtual_users WHERE email='%u@%r' AND active=1
>
>
> -- active services in /etc/postfix/master.cf --
> # service type private unpriv chroot wakeup maxproc command + args
> # (yes) (yes) (yes) (never) (100)
> smtp inet n - n - - smtpd
> pickup fifo n - - 60 1 pickup
> cleanup unix n - - - 0 cleanup
> qmgr fifo n - n 300 1 qmgr
> tlsmgr unix - - - 1000? 1 tlsmgr
> rewrite unix - - - - - trivial-rewrite
> bounce unix - - - - 0 bounce
> defer unix - - - - 0 bounce
> trace unix - - - - 0 bounce
> verify unix - - - - 1 verify
> flush unix n - - 1000? 0 flush
> proxymap unix - - n - - proxymap
> proxywrite unix - - n - 1 proxymap
> smtp unix - - - - - smtp
> relay unix - - - - - smtp
> -o smtp_fallback_relay=
> showq unix n - - - - showq
> error unix - - - - - error
> retry unix - - - - - error
> discard unix - - - - - discard
> local unix - n n - - local
> virtual unix - n n - - virtual
> lmtp unix - - - - - lmtp
> anvil unix - - - - 1 anvil
> scache unix - - - - 1 scache
> maildrop unix - n n - - pipe
> flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
> uucp unix - n n - - pipe
> flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
> ifmail unix - n n - - pipe
> flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
> bsmtp unix - n n - - pipe
> flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient
> scalemail-backend unix - n n - 2 pipe
> flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store ${nexthop} ${user} ${extension}
> mailman unix - n n - - pipe
> flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
> ${nexthop} ${user}
>
> -- mechanisms on localhost --
> 250-AUTH LOGIN NTLM PLAIN CRAM-MD5 DIGEST-MD5
> 250-AUTH=LOGIN NTLM PLAIN CRAM-MD5 DIGEST-MD5
>
>
> -- end of saslfinger output --
>
>
>
> ------------------------------
> -dak aldrich
> -network admin
> -college of music, msu
> [log in to unmask]
> -517.432.5045
> -http://comit.music.msu.edu
