Re: [Exim] Exim rejects authenticated users?!?

Top Page
Delete this message
Reply to this message
Author: Oliver Eikemeier
Date:  
To: Jonathan Vanasco
CC: exim-users
Subject: Re: [Exim] Exim rejects authenticated users?!?
Jonathan Vanasco wrote:
> snippets from a single connection to exim running -d+all
>
> mua: MS Entourage for OSX
>
> i clipped out a lot, didn't seem necessary. tls starts and
> communicates fine. it doesn't close the connection, but it seems that
> ms sends a new ehlo to the server -- is that why its failing?
>
> 15:02:53 395 SMTP>> 235 Authentication succeeded
> 15:02:54 395 SMTP<< STARTTLS
> 15:02:55 395 SMTP>> 250-redivi.com Hello [10.0.1.34] [209.73.1.254]
> 15:02:55 395 250-SIZE 52428800
> 15:02:55 395 250-PIPELINING
> 15:02:55 395 250-AUTH PLAIN LOGIN
> 15:02:55 395 250 HELP
> 15:02:56 395 processing "accept"
> 15:02:56 395 check authenticated = *
> 15:02:56 395 accept: condition test failed


RFC 2487, Section 5.2
Result of the STARTTLS Command:

Upon completion of the TLS handshake, the SMTP protocol is reset to
the initial state (the state in SMTP after a server issues a 220
service ready greeting). The server MUST discard any knowledge
obtained from the client, [...]

> the acl looks like this:
>
> acl_check_auth:
>   accept authenticated  = *
>   accept condition      = ${if eq
> {${substr_0_5:$smtp_command_argument}}{PLAIN}{yes}{no}}
>   accept condition      = ${if eq
> {${substr_0_5:$smtp_command_argument}}{LOGIN}{yes}{no}}
>   deny message          = AUTH LOGIN or AUTH PLAIN is REQUIRED

>
> perhaps my ACL is all messed up?!


Hmmm, you shouldn't have 'accept authenticated = *' in your acl_check_auth.

> Mail.app and Outlook Express are working fine on this though!


Can you post some traces where Entourage X fails an Mail.app and OE succeed?

Regards
    Oliver