LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 03-30-2009, 12:02 AM   #1
allinurl
LQ Newbie
 
Registered: Mar 2009
Posts: 6

Rep: Reputation: 0
Question Sendmail with Secure SMTP-AUTH


Hi everyone,

Here is my problem, I've setup sendmail to require SMTP AUTH. If I add TLS_Clt: ENCR:128 to my access file then Thunderbird or any client asks me to use TLS and username/password. BUT when somebody send me an email to any account on my server I get

reject=403 4.7.0 encryption too weak 0 less than 128
(I never get the email)

BUT if I get rid of TLS_Clt: ENCR:128 I'm able to receive email, but then I become an "open relay" (anybody can use my SMTP without username/password)

/etc/mail/access
Code:
localhost.localdomain      RELAY
localhost          RELAY
127.0.0.1          RELAY
192.168.0          RELAY
TLS_Clt:           ENCR:128
/etc/mail/sasl/sasl.m4
Code:
dnl ### do SMTPAUTH
define(`confAUTH_OPTIONS', `A p y')dnl
define(`confAUTH_MECHANISMS', `LOGIN PLAIN DIGEST-MD5 CRAM-MD5')dnl
TRUST_AUTH_MECH(`LOGIN PLAIN DIGEST-MD5 CRAM-MD5')dnl
Anyone has any clue of what could be wrong? Thanks in advance.
 
Old 04-01-2009, 02:57 AM   #2
datopdog
Member
 
Registered: Feb 2008
Location: JHB South Africa
Distribution: Centos, Kubuntu, Cross LFS, OpenSolaris
Posts: 806

Rep: Reputation: 41
The fact that your system becomes an open relay is not due to
Code:
TLS_Clt:           ENCR:128
That option just means users have to have at least 128 encryption.

You need to check other parts of your config for the issue, and you also need to specify these options for auth over tls
Code:
define(`confCACERT_PATH',`')
define(`confCACERT',`')
define(`confSERVER_CERT',`')
define(`confSERVER_KEY',`')
Of course dont just copy and paste, modify to add the correct paths on your system.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
smtp auth with sendmail through smtp.sbcglobal.yahoo.com woodson2 Fedora 0 10-23-2008 02:55 PM
SMTP Auth...sendmail not using 60s TV Batman Linux - Server 1 07-18-2008 02:33 AM
regarding sendmail with smtp auth neelendhar Linux - Server 2 03-08-2008 04:06 AM
Sendmail SMTP AUTH omlex Linux - Networking 2 01-30-2007 05:24 AM
Sendmail / SMTP Auth cleaner416 Linux - Networking 3 10-06-2003 10:40 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 12:18 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration