|
Thanks scowles,
This is probably related... mind:/usr/local # mailq -Queue ID- --Size-- ----Arrival Time---- -Sender/Recipient------- E1256155BD 501 Fri Jan 6 05:44:19 root@mail.hingedmind.com (temporary failure. Command output: /usr/local/bin/maildrop: Temporary authentication failure.) sapient@hingedmind.com -- 0 Kbytes in 1 Request. mind:/usr/local # Going to check maildrop... thanks |
Checked own, grp and permissions, looks right...
master.cf smtp inet n - n - - smtpd #smtps inet n - n - - smtpd # -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes #submission inet n - n - - smtpd # -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes -o smtpd_etrn_restrictions=reject #628 inet n - n - - qmqpd pickup fifo n - n 60 1 pickup cleanup unix n - n - 0 cleanup qmgr fifo n - n 300 1 qmgr #qmgr fifo n - n 300 1 oqmgr #tlsmgr fifo - - n 300 1 tlsmgr rewrite unix - - n - - trivial-rewrite bounce unix - - n - 0 bounce defer unix - - n - 0 bounce trace unix - - n - 0 bounce verify unix - - n - 1 verify flush unix n - n 1000? 0 flush proxymap unix - - n - - proxymap smtp unix - - n - - smtp relay unix - - n - - smtp # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5 showq unix n - n - - showq error unix - - n - - error local unix - n n - - local virtual unix - n n - - virtual lmtp unix - - n - - lmtp anvil unix - - n - 1 anvil #localhost:10025 inet n - n - - smtpd -o content_filter= maildrop unix - n n - - pipe flags=Ru user=vmail argv=/usr/local/bin/maildrop -d ${recipient} cyrus unix - n n - - pipe user=cyrus argv=/usr/lib/cyrus/bin/deliver -e -r ${sender} -m ${extension} ${user} uucp unix - n n - - pipe flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient) ifmail unix - n n - - pipe flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient) bsmtp unix - n n - - pipe flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient vscan unix - n n - 10 pipe user=vscan argv=/usr/sbin/amavis ${sender} ${recipient} procmail unix - n n - - pipe flags=R user=nobody argv=/usr/bin/procmail -t -m /etc/procmailrc ${sender} ${recipient} scache unix - - n - 1 scache discard unix - - n - - discard tlsmgr unix - - n 1000? 1 tlsmgr |
When attepting to send mail now I amm getting a message saying "Unable to connect to host mail.hingedmind.com. However, nothing in the logs.
I have gone over everything several times. Nothing is working... Also after I send, though I get an error it used to stay in the queue. Now I check the queue and nada... I have noticed in looking through the above logs that there seems to be an authentication problem... Thanks |
In going through the logs I have a couple of questions. What is getpeername and why the error writing?
Thanks Jan 10 03:26:09 mind smbd[18443]: [2006/01/10 03:26:09, 0] lib/util_sock.c:send_smb(762) Jan 10 03:26:09 mind smbd[18443]: Error writing 4 bytes to client. -1. (Connection reset by peer) Jan 10 03:27:30 mind named[6039]: client 127.0.0.1#4507: query: wmail.ccsi.com IN AAAA Jan 10 03:29:09 mind named[6039]: client 127.0.0.1#4508: query: wmail.ccsi.com IN AAAA Jan 10 03:30:53 mind smbd[7033]: [2006/01/10 03:30:53, 0] lib/util_sock.c:get_peer_addr(1222) Jan 10 03:30:53 mind smbd[7033]: getpeername failed. Error was Transport endpoint is not connected Jan 10 03:30:53 mind smbd[18449]: [2006/01/10 03:30:53, 0] lib/util_sock.c:get_peer_addr(1222) Jan 10 03:30:53 mind smbd[18449]: getpeername failed. Error was Transport endpoint is not connected Jan 10 03:30:53 mind smbd[18449]: [2006/01/10 03:30:53, 0] lib/util_sock.c:write_data(554) Jan 10 03:30:53 mind smbd[18449]: write_data: write failure in writing to client 0.0.0.0. Error Connection reset by peer I also get this while sending. Sending failed: Could not connect to host mail.hingedmind.com The message will stay in the 'outbox' folder until you either fix the problem (e.g. a broken address) or remove the message from the 'outbox' folder. The following transport protocol was used: sapient@hingedmind.com |
Shutdown all the services and restarted... I noticed this in the log...
What is this? libauthpam.so Jan 10 04:06:58 mind authdaemond: libauthpam.so: cannot open shared object file: No such file or directory #/etc/init.d/mysql.server start #/usr/local/sbin/authdaemond start #/usr/lib/courier-imap/libexec/imapd.rc start #/usr/lib/courier-imap/libexec/pop3d.rc start #postfix start |
Starting to go through the configuration files.... again.
I have noticed a few things that I am not sure if are related to the problem or not. I cannot ping www.hingedmind.com by name or IP (times out), however, it is acessable through the URL. I am not able to connect to localhost via browser (Connection refused), however I am able to connect using the server name i.e. http://mind/ This prevents web interface applications as in webadmin, samba, etc... and of course telnet mind:~ # telnet localhost Trying 127.0.0.1... telnet: connect to address 127.0.0.1: Connection refused This keeps showing up in the log even though the queue is empty. Jan 10 04:55:05 mind named[6039]: client 127.0.0.1#4556: query: wmail.ccsi.com IN AAAA mind:~ # mailq Mail queue is empty mind:~ # |
Is this my problem?
mind:/usr/local # named-checkzone mail.hingedmind.com /var/lib/named/master/hingedmind.com.zone dns_master_load: /var/lib/named/master/hingedmind.com.zone:2: ignoring out-of-zone data (mind.hingedmind.com) dns_master_load: /var/lib/named/master/hingedmind.com.zone:9: ignoring out-of-zone data (mind.hingedmind.com) dns_master_load: /var/lib/named/master/hingedmind.com.zone:10: ignoring out-of-zone data (hingedmind.com) dns_master_load: /var/lib/named/master/hingedmind.com.zone:12: ignoring out-of-zone data (www.hingedmind.com) dns_master_load: /var/lib/named/master/hingedmind.com.zone:13: ignoring out-of-zone data (hingedmind.com) dns_master_load: /var/lib/named/master/hingedmind.com.zone:14: ignoring out-of-zone data (webmail.hingedmind.com) dns_master_load: /var/lib/named/master/hingedmind.com.zone:15: ignoring out-of-zone data (securewebmail.hingedmind.com) zone mail.hingedmind.com/IN: could not find NS and/or SOA records zone mail.hingedmind.com/IN: has 0 SOA records zone mail.hingedmind.com/IN: has no NS records mind:/usr/local # Also, Any documentation on setting up the mail client as pop3 or smtp... perhaps I am setting that up wrong. I am using a mail client on the server(KMail). |
OK, made some changes and got these results...
mind:/usr/local # named-checkzone mail.hingedmind.com /var/lib/named/master/hingedmind.com.zone zone mail.hingedmind.com/IN: loaded serial 2005030601 OK mind:/usr/local # named-checkzone www.hingedmind.com /var/lib/named/master/hingedmind.com.zone zone www.hingedmind.com/IN: loaded serial 2005030601 OK mind:/usr/local # named-checkzone mind.hingedmind.com /var/lib/named/master/hingedmind.com.zone zone mind.hingedmind.com/IN: loaded serial 2005030601 OK Are there any other tests I can run to make sure that my DNS is correct? |
mind:/var/spool/postfix # telnet localhost 25
Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. 220 mail.hingedmind.com ESMTP Postfix hello localhost 502 Error: command not implemented |
What I did to get this far was add a forward on my router to port 25.
I am sure the password is correct. Look in database and it is stored plain. Sending failed: Authentication failed. Most likely the password is wrong. The server responded: "Error: authentication failed" The message will stay in the 'outbox' folder until you either fix the problem (e.g. a broken address) or remove the message from the 'outbox' folder. The following transport protocol was used: smtp |
I thought I would post the logs..
Mail Log: an 10 10:16:02 mind postfix/smtpd[25792]: warning: 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138]: SASL PLAIN authentication failed Jan 10 10:16:02 mind postfix/smtpd[25792]: lost connection after AUTH from 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138] Jan 10 10:16:02 mind postfix/smtpd[25792]: disconnect from 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138] Jan 10 10:16:28 mind postfix/smtpd[25792]: connect from 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138] Jan 10 10:16:28 mind postfix/smtpd[25792]: warning: SASL authentication failure: Password verification failed Jan 10 10:16:28 mind postfix/smtpd[25792]: warning: 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138]: SASL PLAIN authentication failed Jan 10 10:16:28 mind postfix/smtpd[25792]: lost connection after AUTH from 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138] Jan 10 10:16:28 mind postfix/smtpd[25792]: disconnect from 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138] Jan 10 10:16:53 mind postfix/smtpd[25792]: connect from 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138] Jan 10 10:17:21 mind postfix/smtpd[25792]: disconnect from 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138] Jan 10 10:18:51 mind postfix/smtpd[25771]: timeout after CONNECT from localhost[127.0.0.1] Jan 10 10:18:51 mind postfix/smtpd[25771]: disconnect from localhost[127.0.0.1] Jan 10 10:18:56 mind postfix/smtpd[25772]: timeout after END-OF-MESSAGE from quest.ccsi.com[216.236.168.11] Jan 10 10:18:56 mind postfix/smtpd[25772]: disconnect from quest.ccsi.com[216.236.168.11] Jan 10 10:21:24 mind postfix/anvil[25742]: statistics: max connection rate 3/60s for (smtp:24.176.227.138) at Jan 10 10:16:53 Jan 10 10:21:24 mind postfix/anvil[25742]: statistics: max connection count 1 for (smtp:127.0.0.1) at Jan 10 10:13:47 Jan 10 10:21:24 mind postfix/anvil[25742]: statistics: max cache size 3 at Jan 10 10:14:09 ... and this log is filling up faster than I can keep up. Jan 10 10:23:30 mind kernel: SFW2-INext-ACC-TCP IN=eth0 OUT= MAC=00:11:11:bd:57:1e:00:0f:b5:a9:be:8c:08:00 SRC=68.235.0.212 DST=10.0.0.10 LEN=64 TOS=0x00 PREC=0x00 TTL=111 ID=44379 DF PROTO=TCP SPT=3805 DPT=80 WINDOW=44620 RES=0x00 SYN URGP=0 OPT (020405B4010303030101080A000000000000000001010402) Jan 10 10:23:30 mind kernel: SFW2-INext-ACC-TCP IN=eth0 OUT= MAC=00:11:11:bd:57:1e:00:0f:b5:a9:be:8c:08:00 SRC=24.176.227.138 DST=10.0.0.10 LEN=48 TOS=0x00 PREC=0x00 TTL=126 ID=57243 DF PROTO=TCP SPT=4305 DPT=80 WINDOW=65535 RES=0x00 SYN URGP=0 OPT (020405B401010402) |
Just an update. It looks like something is working, perhaps not the right something... This is a result of me sending (trying) from the mail client on the mail server.
Mail Log: Jan 10 18:37:10 mind postfix/smtpd[29441]: connect from 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138] Jan 10 18:37:10 mind postfix/smtpd[29441]: lost connection after CONNECT from 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138] Jan 10 18:37:10 mind postfix/smtpd[29441]: disconnect from 24-176-227-138.static.snlo.ca.charter.com[24.176.227.138] |
Not sure what this is...
Mail log: Jan 10 18:40:30 mind postfix/anvil[29442]: statistics: max connection rate 1/60s for (smtp:24.176.227.138) at Jan 10 18:37:10 Jan 10 18:40:30 mind postfix/anvil[29442]: statistics: max connection count 1 for (smtp:24.176.227.138) at Jan 10 18:37:10 Jan 10 18:40:30 mind postfix/anvil[29442]: statistics: max cache size 1 at Jan 10 18:37:10 |
Start with the dns settings..
Your zone file for hingedmind.com should start.. $TTL 3D @ IN SOA hingedmind.com. postmaster.hingedmind.com. ( The value of the TTL should stay at 3 days, which is a general default. If a public dns server, eg ISP, caches your zone, it will generally set the TTL to 3D anyway, so unless you expect major number changes, make it 3D. Your domain is hingedmind.com So your zone file will show hosts that belong to this domain, so it needs to start with the basic domain, not the hostname. The serial number must increment for every change you make, otherwise a client will see the old serial number and use cached data, which is before any changes. Then the zones changes need to be reloaded. To test postfix, do telnet 10.0.0.10 25 ehlo localhost quit (to exit) Look for STARTTLS and AUTH definitions in the 250 reply. They are ESMTP functions that don't show with just using helo To test courier, do telnet 10.0.0.10 110 USER username PASS password STAT LIST QUIT (to exit) While testing, keep an eye on logfiles with tail -f logfile The error messages you have supplied are for several different server daemons, including samba and are not relevant. Quote:
Look in /etc/pam.d/ for sasl and other files. sasl can be set to use pam, but it looks like it should talk to mysql directly. Check it's config and/or fix pam, make sure it is installed properly. |
Thanks Peter,
I am not sure I understand this... The serial number must increment for every change you make, otherwise a client will see the old serial number and use cached data, which is before any changes. Then the zones changes need to be reloaded. Is the serial number incrementing something I need to do or is it just informational? When setting up CYRUS SASL one of the flags was --without-pam \. I am assuming I am not using it. Of course that confuses me as to why pam is being used.... I looked in etc/pam.d and there are no sasl files. export CPPFLAGS="-I/usr/local/mysql/include/mysql" ./configure \ --enable-anon \ --enable-plain \ --enable-login \ --enable-sql \ --disable-krb4 \ --disable-otp \ --disable-cram \ --disable-digest \ --with-mysql=/usr/local/mysql/lib/mysql \ --without-pam \ --without-saslauthd \ --without-pwcheck \ --with-dblib=berkeley \ --with-bdb-libdir=/usr/local/bdb/lib \ --with-bdb-incdir=/usr/local/bdb/include \ --with-openssl=/usr/local/ssl \ --with-plugindir=/usr/local/lib/sasl2 make make install ln -s /usr/local/lib/sasl2 /usr/lib/sasl2 echo "/usr/local/lib/" >> /etc/ld.so.conf ldconfig ----- It appears correct: mind:/usr # telnet 10.0.0.10 25 Trying 10.0.0.10... Connected to 10.0.0.10. Escape character is '^]'. 220 mail.hingedmind.com ESMTP Postfix ehlo localhost 250-mail.hingedmind.com 250-PIPELINING 250-SIZE 10240000 250-ETRN 250-STARTTLS 250-AUTH LOGIN PLAIN 250-AUTH=LOGIN PLAIN 250 8BITMIME quit 221 Bye Connection closed by foreign host. mind:/usr # ----------- This seems to hang... mind:/usr/local # telnet 10.0.0.10 110 Trying 10.0.0.10... Connected to 10.0.0.10. Escape character is '^]'. |
| All times are GMT -5. The time now is 07:59 PM. |