Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Postfix and authentication problem
Top Forums UNIX for Advanced & Expert Users Postfix and authentication problem Post 302248364 by nitin on Friday 17th of October 2008 11:40:50 AM
Old 10-17-2008
Postfix and authentication problem
Hi,
I've Postfix 2.5.1 mail server on Ubuntu 8.04. Recently, I got a new SMTP relay service to send out my mails. But for some reason every time I try to send mail I get this error:
(host relay.somehost.com[<ip_address_hidden>] said: 550 5.7.1 <testmail@hotmail.com>... Relaying denied. Proper authentication required. (in reply to RCPT TO command))

Here is my postconf output:
-------------------------------------------------------------------------------
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
append_dot_mydomain = no
biff = no
broken_sasl_auth_clients = yes
config_directory = /etc/postfix
home_mailbox = Maildir/
inet_interfaces = all
inet_protocols = ipv4
mailbox_command = /usr/bin/procmail
mailbox_size_limit = 0
mydestination = mydomain.com
myhostname = mydomain.com
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
myorigin = /etc/mailname
readme_directory = no
recipient_delimiter = +
relay_domains = $mydestination
relayhost = [relay.somehost.com]:940
smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
smtp_tls_note_starttls_offer = yes
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)

smtpd_helo_restrictions = permit_mynetworks, reject_unknown_client, reject_invalid_hostname, reject_unknown_hostname, reject_non_fqdn_hostname, permit

smtpd_recipient_restrictions = permit_sasl_authenticated, permit_mynetworks, reject_unknown_client, reject_invalid_hostname, reject_unknown_hostname, reject_non_fqdn_hostname, reject_unknown_sender_domain, reject_non_fqdn_sender, reject_non_fqdn_recipient, reject_unauth_destination, reject_unknown_recipient_domain, permit

smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options =
smtpd_tls_CAfile = /etc/ssl/certs/cacert.pem
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/ssl/certs/smtpd.crt
smtpd_tls_key_file = /etc/ssl/private/smtpd.key
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = yes
tls_random_source = dev:/dev/urandom
unknown_local_recipient_reject_code = 550
-------------------------------------------------------------------------------
My sasl_passwd has the relay host with username and password. And I used postmap to make a db file of it.
Also, I tried this method to make sure that my user and pass are working:
perl -MMIME::Base64 -e 'print encode_base64("\000myuser\000mypass")'
And then tested with usual telnet method. It works. So the problem has to be with Postfix.

Any suggestions? Is there a way to do a higher level debug of Postfix.

Thanks in advance,
Nitin
Last edited by bakunin; 10-21-2008 at 05:21 AM.. Reason: spellings
 

10 More Discussions You Might Find Interesting

1. Red Hat

Redhat Linux - Postfix problem

We have a redhat linux el4 and used as a mail server.We configured postfix.all r working fine.we got a problem for a particular user when he tries to open his mailbox and the error is mentioned below: ERROR: Could not complete request. Query: SELECT "INBOX" Reason Given: Internal error... (3 Replies)
Discussion started by: ramjimh2k3
3 Replies

2. IP Networking

postfix - reinject mail to postfix from hold queue directory

hi all. Am using smtpd_recipient_restrictions & check_recipient_access in postfix. The hash file looks like this: emailaddress1 HOLD emailaddress2 HOLD The aim is to place email from these recipients in the hold directory,check them then reinject them back in postfix on some... (0 Replies)
Discussion started by: coolatt
0 Replies

3. IP Networking

Postfix SPF DNS problem

Hi I have a Postfix mail server in a Debian Linux network and used to be able to connect to it on port 25 via telnet. I also have working DNS on the server. I added this MX record to the DNS zone file: @ IN MX 10 server.c4.sysinst.ida.liu.se. It worked fine after that also but then... (3 Replies)
Discussion started by: jakethecake
3 Replies

4. UNIX for Dummies Questions & Answers

Please help with Postfix config issue - How to allow remote Exchange server to relay to my postfix

Hi guys One of our clients have a problem with sending email to a certain domain. No matter what we try, the mails just dont get delivered. What I did then, is created a new connector on their Exchange server, pointing all mail sent to their client at "domain1" to relay to our Postfix mail... (0 Replies)
Discussion started by: wbdevilliers
0 Replies

5. Red Hat

SMTP authentication on Postfix/Dovecot on CentOS

Hi, I did setup one E-mail Server with postfix/dovecot/squirrelmail on CentOS 5.x and is working fine. I did configure SMTP authentication (without TSL/SSL) so that users from outside can send emails via our email server with SMTP auth. One weird issue i'm getting is that it's working from... (1 Reply)
Discussion started by: prvnrk
1 Replies

6. UNIX for Advanced & Expert Users

Postfix sender problem

Hi All! I have a very annoying problem. I have an openSuSE box, running postfix on it. It is configured, to use gmail to send mails. It is working fine, I accept the messages, but the sender is my gmail account, not the linux box. How can I (if I can) configure postfix to send the mails with... (0 Replies)
Discussion started by: szzed
0 Replies

7. Red Hat

redhat linux postfix problem..

hello all, If i send mails using postfix,the mails stored in queue,not delivered to required recipient...can anyone please tell me the solution for this problem... (4 Replies)
Discussion started by: tilakraj
4 Replies

8. Linux

Configure Postfix to relay to Exchange Server with NTLM authentication

Hello I have a shell script, which should send email, if any error occurred. This script is running in Red Hat Linux 4.6, and want to configure postfix so it can relay to an Exchange Server. The Authorization method of Exchange server, I guess is: 250-AUTH NTLM. So I have: Server A ( Red... (1 Reply)
Discussion started by: viktor1985
1 Replies

9. UNIX for Dummies Questions & Answers

Postfix Problem

hi guys i have a problem with postfix i can't send any mail to yahoo clients but i cant receive email from yahoo clients Feb 20 11:46:35 cp postfix/qmgr: 83F658003B: from=<ZZZ@XXX.org>, size=508, nrcpt=1 (queue active) Feb 20 11:46:35 cp postfix/smtp: 83F658003B: to=<ZZZ@yahoo.com>,... (1 Reply)
Discussion started by: mhs
1 Replies

10. UNIX for Dummies Questions & Answers

Postfix Problem

Hello, I have a problem remotely connecting to the postfix. It sais "Connection refused". # telnet 104.200.16.232 25 Trying 104.200.16.232... telnet: connect to address 104.200.16.232: Connection refused But the postfix is started and running. # telnet 127.0.0.1 25 Trying... (3 Replies)
Discussion started by: galford
3 Replies

LEARN ABOUT NETBSD

tlsmgr

TLSMGR(8)						      System Manager's Manual							 TLSMGR(8)

NAME

       tlsmgr - Postfix TLS session cache and PRNG manager

SYNOPSIS

       tlsmgr [generic Postfix daemon options]

DESCRIPTION

       The  tlsmgr(8) manages the Postfix TLS session caches.  It stores and retrieves cache entries on request by smtpd(8) and smtp(8) processes,
       and periodically removes entries that have expired.

       The tlsmgr(8) also manages the PRNG (pseudo random number generator) pool. It answers queries by the smtpd(8) and smtp(8) processes to seed
       their internal PRNG pools.

       The  tlsmgr(8)'s PRNG pool is initially seeded from an external source (EGD, /dev/urandom, or regular file).  It is updated at configurable
       pseudo-random intervals with data from the external source. It is updated periodically with data from TLS session cache	entries  and  with
       the time of day, and is updated with the time of day whenever a process requests tlsmgr(8) service.

       The  tlsmgr(8) saves the PRNG state to an exchange file periodically and when the process terminates, and reads the exchange file when ini-
       tializing its PRNG.

SECURITY

       The tlsmgr(8) is not security-sensitive. The code that maintains the external and internal PRNG pools does not "trust"  the  data  that	it
       manipulates,  and  the  code that maintains the TLS session cache does not touch the contents of the cached entries, except for seeding its
       internal PRNG pool.

       The tlsmgr(8) can be run chrooted and with reduced privileges.  At process startup it connects to the entropy source and exchange file, and
       creates or truncates the optional TLS session cache files.

       With Postfix version 2.5 and later, the tlsmgr(8) no longer uses root privileges when opening cache files. These files should now be stored
       under the Postfix-owned data_directory.	As a migration aid, an attempt to open a cache file under a non-Postfix directory is redirected to
       the Postfix-owned data_directory, and a warning is logged.

DIAGNOSTICS

       Problems and transactions are logged to the syslog daemon.

BUGS

       There is no automatic means to limit the number of entries in the TLS session caches and/or the size of the TLS cache files.

CONFIGURATION PARAMETERS

       Changes	to main.cf are not picked up automatically, because tlsmgr(8) is a persistent processes.  Use the command "postfix reload" after a
       configuration change.

       The text below provides only a parameter summary. See postconf(5) for more details including examples.

TLS SESSION CACHE

       lmtp_tls_loglevel (0)
	      The LMTP-specific version of the smtp_tls_loglevel configuration parameter.

       lmtp_tls_session_cache_database (empty)
	      The LMTP-specific version of the smtp_tls_session_cache_database configuration parameter.

       lmtp_tls_session_cache_timeout (3600s)
	      The LMTP-specific version of the smtp_tls_session_cache_timeout configuration parameter.

       smtp_tls_loglevel (0)
	      Enable additional Postfix SMTP client logging of TLS activity.

       smtp_tls_session_cache_database (empty)
	      Name of the file containing the optional Postfix SMTP client TLS session cache.

       smtp_tls_session_cache_timeout (3600s)
	      The expiration time of Postfix SMTP client TLS session cache information.

       smtpd_tls_loglevel (0)
	      Enable additional Postfix SMTP server logging of TLS activity.

       smtpd_tls_session_cache_database (empty)
	      Name of the file containing the optional Postfix SMTP server TLS session cache.

       smtpd_tls_session_cache_timeout (3600s)
	      The expiration time of Postfix SMTP server TLS session cache information.

PSEUDO RANDOM NUMBER GENERATOR

       tls_random_source (see 'postconf -d' output)
	      The external entropy source for the in-memory tlsmgr(8) pseudo random number generator (PRNG) pool.

       tls_random_bytes (32)
	      The number of bytes that tlsmgr(8) reads from $tls_random_source when (re)seeding  the  in-memory  pseudo  random  number  generator
	      (PRNG) pool.

       tls_random_exchange_name (see 'postconf -d' output)
	      Name of the pseudo random number generator (PRNG) state file that is maintained by tlsmgr(8).

       tls_random_prng_update_period (3600s)
	      The  time  between  attempts  by tlsmgr(8) to save the state of the pseudo random number generator (PRNG) to the file specified with
	      $tls_random_exchange_name.

       tls_random_reseed_period (3600s)
	      The maximal time between attempts by tlsmgr(8) to re-seed the in-memory pseudo random number generator  (PRNG)  pool  from  external
	      sources.

MISCELLANEOUS CONTROLS

       config_directory (see 'postconf -d' output)
	      The default location of the Postfix main.cf and master.cf configuration files.

       data_directory (see 'postconf -d' output)
	      The directory with Postfix-writable data files (for example: caches, pseudo-random numbers).

       daemon_timeout (18000s)
	      How much time a Postfix daemon process may take to handle a request before it is terminated by a built-in watchdog timer.

       process_id (read-only)
	      The process ID of a Postfix command or daemon process.

       process_name (read-only)
	      The process name of a Postfix command or daemon process.

       syslog_facility (mail)
	      The syslog facility of Postfix logging.

       syslog_name (see 'postconf -d' output)
	      The mail system name that is prepended to the process name in syslog records, so that "smtpd" becomes, for example, "postfix/smtpd".

SEE ALSO

       smtp(8), Postfix SMTP client
       smtpd(8), Postfix SMTP server
       postconf(5), configuration parameters
       master(5), generic daemon options
       master(8), process manager
       syslogd(8), system logging

README FILES

       Use "postconf readme_directory" or "postconf html_directory" to locate this information.
       TLS_README, Postfix TLS configuration and operation

LICENSE

       The Secure Mailer license must be distributed with this software.

AUTHOR(S)
       Lutz Jaenicke
       BTU Cottbus
       Allgemeine Elektrotechnik
       Universitaetsplatz 3-4
       D-03044 Cottbus, Germany

       Adapted by:
       Wietse Venema
       IBM T.J. Watson Research
       P.O. Box 704
       Yorktown Heights, NY 10598, USA

																	 TLSMGR(8)
All times are GMT -4. The time now is 09:43 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy