AW: AW: [exim] SMTP authentication not working

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MMike Green at <-
M 
Delete this message
Reply to this message
Author: Mirko Gräfen
Date:  
To: 'Mike Green'
CC: exim-users
Subject: AW: AW: [exim] SMTP authentication not working
hi,

sorry because of my late answer...had/have much work to do...

yes, your passwd can be a plaintext file.
if you want encrypted passwords, you have to change {eq{$2} into
{crypteq{$2} for your login and plain authenticator.
if you do so, you will have to generate passwords with mkpasswd...

you have to change a little bit within your cram-md5 authenticator - i´m
sorry! my fault.
it has to read 

server_secret     = ${if
eq{$1}{${lookup{$1}lsearch{/usr/local/exim/passwd}{$value}{*:*}}}fail}


but this doesn´t solve your problem either...

i also don´t know what is implementet with the option:

hosts_require_auth=*

my config is doing well without it and works with auth.

dumb question:

what kind of message do you receive, if you do an exim4 -bh and play a
little with the settings?


mirko


-----Ursprüngliche Nachricht-----
Von: exim-users-bounces@??? [mailto:exim-users-bounces@exim.org] Im
Auftrag von Mike Green
Gesendet: Mittwoch, 10. November 2004 09:49
An: exim-users@???
Betreff: RE: AW: [exim] SMTP authentication not working


Thanks for the response Mirko.

I've tried the recommendation below but I'm still getting "relay not
permitted" in the log files.

>acl_smtp_auth = acl_check_auth

I've put that line directly below the "acl_smtp_rcpt = acl_check_rcpt"


>acl_check_auth:
>
>    accept condition    = ${if
>eq{${uc:$smtp_command_argument}}{PLAIN}{yes}{no}
>    deny message    = PLAIN required

>
>acl_check_auth_1:
>
>    accept condition    = ${if
>eq{${uc:$smtp_command_argument}}{LOGIN}{yes}{no}
>    deny message    = LOGIN required

>
>acl_check_auth_2:
>
>    accept condition    = ${if
>eq{${uc:$smtp_command_argument}}{CRAM-MD5}{yes}{no}
>    deny message    = CRAM-MD5 required

The block above I have inserted just before the start of the ROUTER config
section


>begin authenticators
>
>    lookup_plain:
>    driver         = plaintext
>    public_name     = PLAIN
>    server_condition     = ${if
>eq{$3}{${lookup{$2}lsearch{/usr/local/exim/passwd}{$value}fail}}{yes}{no}}
>    server_set_id     = $2

>
>    lookup_login:
>    driver         = plaintext
>    public_name     = LOGIN
>    server_prompts     = Username:: : Password::
>    server_condition     = ${if
>eq{$2}{${lookup{$1}lsearch{/usr/local/exim/passwd}{$value}fail}}{yes}{no}}
>    server_set_id     = $1

>
>    lookup_cram:
>    driver         = cram_md5
>    public_name     = CRAM-MD5
>    server_secret     = ${if
>eq{$2}{${lookup{$1}lsearch{/usr/local/exim/passwd}{$value}fail}}{yes}{no}}
>    server_set_id     = $1

>
>
>Mirko
>
>
The file "passwd" is just a plain text file. Is this correct?

Mike

_________________________________________________________________
It's fast, it's easy and it's free. Get MSN Messenger today!
http://www.msn.co.uk/messenger


--
## List details at http://www.exim.org/mailman/listinfo/exim-users Exim
details at http://www.exim.org/ ##



This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: AW: AW: [exim] Expansion of transport filters[exim] automatic response: I am not in the office->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)