Re: Having a time getting smtp-auth to work

According to <sealinux@xxxxxxxxx>:
Okay, I have qmail-1.05 on my system that I hand-compiled. I then
patched it using the technique illustrated on
http://members.elysium.pl/brush/qmail-smtpd-auth/. The relevant
portion of my /var/qmail/supervise/qmail-smtpd/run script looks like
this:

exec /usr/local/bin/softlimit -m 2000000 \
/usr/local/bin/tcpserver -v -R -l "$LOCAL" -x /etc/tcp.smtp.cdb -c
"$MAXSMTPD" \
-u "$QMAILDUID" -g "$NOFILESGID" 0 smtp
/var/qmail/bin/qmail-smtpd foobar.example.com /bin/checkpassword
/bin/true 2>&1

/bin/checkpassword has the following permissions:

-rws--S--- 1 root wheel 9668 Sep 15 23:52 /bin/checkpassword

I have tried telnetting into port 25 of the server and entering the
username and password in base64. No matter what, I get an error:

535 authorization failed (#5.7.0)

It looks as though the server is expecting something, but I'm not sure
what. I'm wondering if the checkpassword utility somehow cannot read
/etc/shadow or something.

Any guidance, even as to a better mailing list to post this to, would
be appreciated.

O.K. I can't help you with this particular problem, but there
is another "gotcha" for running qmail on OpenBSD systems. In
particular, because /var is mounted nosuid, and /var/qmail/bin/qmail-queue
is owned by "qmaild", group "qmail", and is suid.

The simple solution is to put /var/qmail/bin on some other
partition which is not mounted nosuid and put in a symlink from
/var/qmail/bin to there.

Good Luck,
DoN.

--
Email: <dnichols@xxxxxxxxxxx> | Voice (all times): (703) 938-4564
(too) near Washington D.C. | http://www.d-and-d.com/dnichols/DoN.html
--- Black Holes are where God is dividing by zero ---
.

Relevant Pages

  • Re: Unable to print to networked printer - get access denied messa
    ... Check the permissions on the server assuming the client has a true RPC ... How is the Standard TCP/IP port configured for the device? ...
    (microsoft.public.windowsxp.print_fax)
  • Re: Imap-uw problem (was: )
    ... What's in your logs on the server itself? ... What does it respond with when you are telnetting to the port? ... > Do you Yahoo!? ...
    (freebsd-questions)
  • Re: SBS2k3 Exchange no incoming mail
    ... >> I can e-mail the IP of the server if you would like to test it yourself. ... >>> Telnetting from where to which server? ... Did you forward port 25 from the ... >>> Marina ...
    (microsoft.public.windows.server.sbs)
  • Re: Suspiciously Weird Apache Log -- HELP
    ... > You should easily be able to duplicate the entry by telnetting into your ... > web server on port 80 and issue the same or similar GET request. ... When I tried telnetting to port 80 on my ...
    (RedHat)
  • Re: stopping telnet
    ... > You can not prohibit telnetting to port 25 without stopping your ... > Alexander Dalloz | Enger, ... telnetting into our mail server and dropping off mydoom viruses. ...
    (comp.os.linux.security)