No AUTH PLAIN with dovecot 2.0.19

Michael Wechner michael.wechner at wyona.com
Mon Sep 29 13:21:41 UTC 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi Harald

Thanks very much for your quick reply. Please see my answers inline below

Am 29.09.14 15:01, schrieb Reindl Harald:
>
> Am 29.09.2014 um 14:53 schrieb Michael Wechner:
>> I have installed the package dovecot-postfix on Ubuntu 12.04 LTS:
>>
>> dovecot --version: 2.0.19
>> postconf -d | grep version: 2.9.6
>>
>> and receiving email works very fine, but relaying email does not work.
>>
>> I think the problem is that after STARTTLS the authentication is not
>> being executed
>>
>> 250-AUTH PLAIN
>> 250-AUTH=PLAIN
>>
>> which means using telnet returns
>
> telnet is worthless because AUTH is likely announced *after STARTTLS*
> http://www.postfix.org/postconf.5.html#smtp_sasl_security_options

right, but when requesting for example mail.wyona.com, then I can see AUTH

telnet mail.wyona.com 587
Trying 195.226.6.75...
Connected to mx1.wyona.com.
Escape character is '^]'.
220 mail.wyona.com ESMTP Postfix (Ubuntu)
EHLO wyona.com
250-mail.wyona.com
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-AUTH PLAIN
250-AUTH=PLAIN
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
quit
221 2.0.0 Bye
Connection closed by foreign host.

or also when using ngrep

T 195.226.6.75:587 -> 10.10.1.102:58990 [AP]
  250-mail.wyona.com..250-PIPELINING..250-SIZE
10240000..250-VRFY..250-ETRN..250-STARTTLS..250-AUTH
PLAIN..250-AUTH=PLAIN..250-ENHANCEDSTATUSCODES.
  .250-8BITMIME..250 DSN..

hence I would assume to see it also for the new version of postfix and
dovecot, or do I misunderstand something?


>
>
>> telnet mx2.wyona.com 587
>> Trying 50.116.54.197...
>> Connected to node3.wyona.com.
>> Escape character is '^]'.
>> 220 node3.members.linode.com ESMTP Postfix (Ubuntu)
>
> oh my god, another server in the linode-zombie network
> that's bad neigbourhood and you should avoid a PTR
> ending with "members.linode.com" which is generic
> and here blocked because i have never seen any legit
> mail from Linode but 24 hours each day attacks or
> spam delivery attempts
>
>
http://www.mxpolice.com/email-security/importance-of-ptr-records-for-reliable-mail-delivery/

thanks for pointing this out. I have set it now according to

https://www.linode.com/docs/networking/dns/adding-dns-records/

and it should work within the next 24 hours (at least that's what linode
says).

Thanks

Michael
>
>
>> EHLO letscallitevil.com
>> 250-node3.members.linode.com
>> 250-PIPELINING
>> 250-SIZE 10240000
>> 250-VRFY
>> 250-ETRN
>> 250-STARTTLS
>> 250-ENHANCEDSTATUSCODES
>> 250-8BITMIME
>> 250 DSN
>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - https://gpgtools.org

iQEcBAEBCgAGBQJUKVzlAAoJECV0ivYw6bPKk+wIAN/Xkj/GfHmEiCE0bTBxGoAU
l9opgJT9f/zIX0hSt9NI0Pj+B12dKiseCCO/dA4GiBCmiODNe4IsNqbqgCYpckHD
iSkq7X+93jOoHmtdBjyP2Oo1X9OvRy+AcaFFCFABMr3PqNjF9qMSSJMUOToQFuVv
uL2ops2zQX5PaUhZ1z/FhHHVHAyyIQgRG+CWr9GNSsZQodF29wu12bQM7Cf9cO0A
49gjymXKkxDtrnSNrjlWD6DF62iA0O1/Z/xAUcySkxUOY9q0ziRxvARynr3iI/Au
W9BVlE88/aYb1CUJORnrEMdj2Whad45n7fF4ui/uGocjCAni58R21wJDVYpWlWw=
=/0db
-----END PGP SIGNATURE-----




More information about the dovecot mailing list