LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 09-26-2012, 06:32 AM   #1
grambldouch
LQ Newbie
 
Registered: May 2010
Posts: 3

Rep: Reputation: 0
postfix SSL - SASL LOGIN authentication failed: generic failure


Hello, i have installed postfix with sasl authentication and i have this problem,
when i setup connection on port 25 with STARTTLS, everything is ok

Code:
Sep 26 13:50:49 mail postfix/smtpd[10594]: connect from unknown[x.x.x.x]
Sep 26 13:50:49 mail postfix/smtpd[10594]: setting up TLS connection from unknown[x.x.x.x]
Sep 26 13:50:49 mail postfix/smtpd[10594]: Anonymous TLS connection established from unknown[x.x.x.x]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)
Sep 26 13:50:49 mail postfix/smtpd[10594]: 763C460C11: client=unknown[x.x.x.x], sasl_method=PLAIN, sasl_username=test
but when i setup connection on port 465 with SSL/TLS i got this error message

Code:
Sep 26 13:39:57 mail postfix/smtpd[11102]: connect from unknown[x.x.x.x]
Sep 26 13:39:57 mail postfix/smtpd[11102]: setting up TLS connection from unknown[x.x.x.x]
Sep 26 13:39:57 mail postfix/smtpd[11102]: Anonymous TLS connection established from unknown[x.x.x.x]: TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)
Sep 26 13:39:58 mail postfix/smtpd[11102]: warning: SASL authentication failure: cannot connect to saslauthd server: No such file or directory
Sep 26 13:39:58 mail postfix/smtpd[11102]: warning: SASL authentication failure: Password verification failed
Sep 26 13:39:58 mail postfix/smtpd[11102]: warning: unknown[x.x.x.x]: SASL PLAIN authentication failed: generic failure
Sep 26 13:39:58 mail postfix/smtpd[11102]: warning: SASL authentication failure: cannot connect to saslauthd server: No such file or directory
Sep 26 13:39:58 mail postfix/smtpd[11102]: warning: unknown[x.x.x.x]: SASL LOGIN authentication failed: generic failure
mail.cf
Code:
smtp_use_tls = yes
smtpd_use_tls = yes
smtpd_tls_key_file = /etc/postfix/tls/smtpd.key
smtpd_tls_cert_file = /etc/postfix/tls/smtpd.crt
smtpd_tls_CAfile = /etc/postfix/tls/cacert.pem
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain = mail.domain.com
broken_sasl_auth_clients = yes
postfix/sasl/smtpd.conf
Code:
log_level: 3
pwcheck_method: saslauthd
mech_list: PLAIN LOGIN
saslauthd.conf
Code:
START=yes
DESC="SASL Authentication Daemon"
NAME="saslauthd"
MECHANISMS="pam"
MECH_OPTIONS=""
THREADS=5
OPTIONS="-c -m /var/spool/postfix/var/run/saslauthd -r"
pam.d/smtp.conf
Code:
auth    sufficient      /lib64/security/pam_mysql.so user=postfix passwd=password host=127.0.0.1 db=postfix table=postfix_users usercolumn=email passwdcolumn=crypt crypt=1 md5=1 verbose=false
auth    required        /lib64/security/pam_mysql.so

account sufficient      /lib64/security/pam_mysql.so user=postfix passwd=password host=127.0.0.1 db=postfix table=postfix_users usercolumn=email passwdcolumn=crypt crypt=1 md5=1 verbose=false
account required        /lib64/security/pam_mysql.so

Last edited by grambldouch; 09-26-2012 at 07:36 AM.
 
Old 03-21-2014, 08:50 AM   #2
modonnell
LQ Newbie
 
Registered: Nov 2010
Posts: 8

Rep: Reputation: 3
Postfix authentication to Verizon/FiOS:465 possible via stunnel

Authentication to Verizon/FiOS on port 465 requires SSL (apparently not present in Postfix) and is possible via stunnel. Install and configure stunnel to answer on some local port. My config file:

Code:
[smtp-tls-wrapper]
accept  = 11125
client  = yes
connect = smtp.verizon.net:465
...and then rig Postfix to connect to Verizon/FiOS via that SSL tunnel instead of directly:

Code:
relayhost=[127.0.0.1]:11125
I'll note that although this works for me I do see random authentication failures from time to time such that mailq shows stuck messages requiring that I say "postqueue -f" to retry delivery attempts for those messages, which seem always to succeed, so I don't know what the problem is... >-/

--Michael O'Donnell
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Postfix SASL Authentication Failure linuxpyro Linux - Server 1 12-15-2008 09:29 PM
Postfix/SASL/MySQL "SASL LOGIN authentication failed" Temujin_12 Linux - Server 8 10-04-2008 10:37 PM
HELP!! SASL(-1): generic failure: checkpass failed max_tcs Linux - Software 0 07-19-2006 04:41 AM
Postfix - SASL LOGIN authentication failed micko_escalade Linux - Networking 1 02-03-2006 01:53 AM
SENDMAIL: SASL(-1): generic failure: Password verification failed juliancoccia Linux - Software 3 01-04-2005 12:30 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 10:30 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration