I am once again trying to install and configure Postfix. I am following a book, but the book isn't very helpful in the chapter about SASL. So I followed this page:
http://www.proulx.com/~bob/doc/HOWTO-Postfix-SASL.html
I made some progress with it. Postfix now responds on port 587 and I finally got "250-AUTH DIGEST-MD5 CRAM-MD5 NTLM" in the telnet conversation.
I configured claws mail with my login and password as provided by that page. But authentication failed. Here is claws' log:
Code:
[01:09:27] ESMTP> STARTTLS
[01:09:27] ESMTP< 220 2.0.0 Ready to start TLS
[01:09:27] ESMTP> EHLO luc.linux
[01:09:28] ESMTP< 250-server.domain.net
[01:09:28] ESMTP< 250-PIPELINING
[01:09:28] ESMTP< 250-SIZE 10240000
[01:09:28] ESMTP< 250-VRFY
[01:09:28] ESMTP< 250-ETRN
[01:09:28] ESMTP< 250-AUTH DIGEST-MD5 CRAM-MD5 NTLM
[01:09:28] ESMTP< 250-ENHANCEDSTATUSCODES
[01:09:28] ESMTP< 250-8BITMIME
[01:09:28] ESMTP< 250-DSN
[01:09:28] ESMTP< 250-SMTPUTF8
[01:09:28] ESMTP< 250 CHUNKING
[01:09:28] ESMTP> AUTH CRAM-MD5
[01:09:28] ESMTP< 334 PBUxMaYwSjI5Sy4zNxY4Njf3QHNlcnXlci80a1GiLm7ldD4=
[01:09:28] ESMTP< [Decoded: <516789247.3675428@server.domain.net>]
[01:09:28] ESMTP> [Encoded: mylogin f36a89cb51ae87a1gkale27ee9af1cfd]
[01:09:28] ESMTP> dVhlZmVja3luZ27haWztb3apbvRmMcllOPemQwU6YSO3NuUnO8JmQGUsNFLhE7FxMQCdXA==
[01:09:28] ESMTP< 535 5.7.8 Error: authentication failed: authentication failure
** error occurred on authentication
*** Authentication failed:
535 5.7.8 Error: authentication failed: authentication failure
(Note: the hashes are made up, I didn't paste the actual ones.)
Known problems:
1) I was expecting to use DIGEST-MD5, but that option is greyed out in claws, so I selected CRAM-MD5. Is that a problem?
2) There is a box that contains this:
Add etc/sasldb2 to FILES in /etc/init.d/postfix:
I didn't do that part because I couldn't figure out where that addition would go. If I understand it correctly, I am supposed to delete the first line and introduce the second, but I couldn't find the first line. Well, the page clearly predates Debian 5/Lenny (it says so right there) and I am running Debian 9/Stretch. That is, the page is outdated. Should I still take that step, and how exactly?
3) The following box, also containing diff editing notation, I didn't follow that one either because the lines to be changed do not exist.
I don't want to authenticate with pop3 or dovecot. I want smtp authentication to be entirely independent. That page says it is possible, so I just want to finish this configuration. Can someone here please help?
TIA