[Dovecot] Postfix, Dovecot SASL and Entourage smtps authentication fails.

Mart Pirita mart at e-positive.ee
Thu Apr 16 16:18:27 EEST 2009 

Tere.
>
> Are you saying that EHLO doesn't return anything when using Dovecot
> SASL? 

Yes.

> Something's very broken then.
>
>   
Hmm, but what?

Dovecot is compiled with options:

./configure \
        --prefix=/usr \
        --with-ssl=/usr/local/ssl \
        --with-ssldir=/etc/ssl \
        --with-rawlog \
        --sysconfdir=/etc \
        --without-vpopmail \
        --disable-ipv6 \
        --with-pam \
        --without-passwd-file \
        --without-checkpassword \
        --without-bsdauth \
        --without-static-userdb \
        --without-passdb-userdb \
        --without-pgsql \
        --without-mysql \
        --without-sqlite \
        --with-rundir=/var/run/dovecot \
        --without-deliver \
        --without-gssapi


And runs with settings:

dovecot -n
# 1.1.13: /etc/dovecot.conf
# OS: Linux 2.6.24.2 i686 Red Hat Linux release 8.0 (Psyche)
protocols: imaps pop3 pop3s
ssl_parameters_regenerate: 0
disable_plaintext_auth: no
login_dir: /var/run/dovecot/login
login_executable(default): /usr/libexec/dovecot/imap-login
login_executable(imap): /usr/libexec/dovecot/imap-login
login_executable(pop3): /usr/libexec/dovecot/pop3-login
login_log_format_elements: %u [%r] %m %c
mail_max_userip_connections(default): 90
mail_max_userip_connections(imap): 90
mail_max_userip_connections(pop3): 9
maildir_copy_preserve_filename: yes
mail_executable(default): /usr/libexec/dovecot/imap
mail_executable(imap): /usr/libexec/dovecot/imap
mail_executable(pop3): /usr/libexec/dovecot/pop3
mail_plugin_dir(default): /usr/lib/dovecot/imap
mail_plugin_dir(imap): /usr/lib/dovecot/imap
mail_plugin_dir(pop3): /usr/lib/dovecot/pop3
imap_client_workarounds(default): outlook-idle netscape-eoh
tb-extra-mailbox-sep delay-newmail
imap_client_workarounds(imap): outlook-idle netscape-eoh
tb-extra-mailbox-sep delay-newmail
imap_client_workarounds(pop3):
pop3_client_workarounds(default):
pop3_client_workarounds(imap):
pop3_client_workarounds(pop3): outlook-no-nuls oe-ns-eoh
pop3_logout_format(default): top=%t/%p, retr=%r/%b, del=%d/%m, size=%s
pop3_logout_format(imap): top=%t/%p, retr=%r/%b, del=%d/%m, size=%s
pop3_logout_format(pop3): bytes=%i/%o, del=%d/%m, size=%s
auth default:
  cache_size: 1024
  failure_delay: 3
  passdb:
    driver: pam
    args: cache_key=%u%r%s *
  userdb:
    driver: passwd
  socket:
    type: listen
    client:
      path: /var/spool/postfix/private/auth
      mode: 432
      user: postfix
      group: postfix


Postfix is compiled with options:


CCARGS='-DUSE_SASL_AUTH -DDEF_SERVER_SASL_TYPE=\"dovecot\" -DUSE_TLS
-DUSE_SSL -I/usr/local/ssl/include -DHAS_DB -I/usr/local/db4/include
-I/usr/include' \
AUXLIBS="-L/usr/local/ssl/lib -lssl -lcrypto  -L/usr/local/db4/lib -ldb
-L/usr/lib -ldl" \

And sasl and tls settings are:

smtpd_sasl_auth_enable = yes
smtpd_sasl_type = dovecot
smtpd_sasl_path = private/auth
broken_sasl_auth_clients = yes
smtpd_use_tls = yes
smtp_use_tls = yes
smtpd_tls_security_level = may
smtpd_tls_auth_only = yes



-- 
Mart

More information about the dovecot mailing list