10.1 BETA2 World - Breaks saslauthd
Dimitry Andric
dim at FreeBSD.org
Sat Sep 27 14:36:48 UTC 2014
On 27 Sep 2014, at 16:04, Jan Bramkamp <crest at rlwinm.de> wrote:
> On 25.09.2014 17:04, Dimitry Andric wrote:
>> On 25 Sep 2014, at 16:54, Tim Daneliuk <tundra at tundraware.com> wrote:
...
>>> This breaks saslauthd - it demands a password when sending mail, but then
>>> rejects it in every case.
>>>
>>> If I just install a new kernel, everything is fine. But if I install
>>> world, that's when the problem shows up. I've tried a full reinstall of
>>> cygnus sasls and the daemon is running.
>>>
>>> Ideas on how to chase this down/fix, would be appreciated...
>>
>> It is probably caused by this MFC: http://svnweb.freebsd.org/changeset/base/271766
>>
>> To make saslauthd work again, you need to specify a correct PAM policy
>> file in /usr/local/etc/pam.d for your service, most likely "smtp" in
>> this case.
...
> If I remember correctly saslauthd -a pam is hardcoded to always use the
> PAM service "imap".
No, the service name is received from the SASL client that connects to
/var/run/saslauthd/mux. In case of postfix, the default service name is
"smtp". Quoting from postconf(5):
smtpd_sasl_service (default: smtp)
The service name that is passed to the SASL plug-in that is
selected with smtpd_sasl_type and smtpd_sasl_path.
This feature is available in Postfix 2.11 and later. Prior
versions behave as if "smtp" is specified.
-Dimitry
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 203 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freebsd.org/pipermail/freebsd-stable/attachments/20140927/60fd8b58/attachment.sig>
More information about the freebsd-stable
mailing list