postfix auth failing
Michael Hannon
jmhannon.ucdavis at gmail.com
Sun May 23 19:26:29 UTC 2021
And the answer is ?
On Sat, May 22, 2021 at 7:45 PM Noah <noah-list at enabled.com> wrote:
>
> Hi,
> I figured this out.
>
> Cheers,
> Noah
>
>
> On 5/22/21 9:59 AM, Noah wrote:
> > Hi there,
> >
> > I am getting the following failures when attempting to get thunderbird
> > for outgoing mail. The tbird configuration is to use port 587 with
> > STARTTLS and the auth method is "normal password".
> >
> > I am missing a config setting somewhere. But where?
> >
> >
> >
> > --- main.cf ---
> >
> > $ cat main.cf
> > # See /usr/share/postfix/main.cf.dist for a commented, more complete
> > version
> >
> >
> > # Debian specific: Specifying a file name will cause the first
> > # line of that file to be used as the name. The Debian default
> > # is /etc/mailname.
> > #myorigin = /etc/mailname
> >
> > smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
> > biff = no
> >
> > # appending .domain is the MUA's job.
> > append_dot_mydomain = no
> >
> > # Uncomment the next line to generate "delayed mail" warnings
> > #delay_warning_time = 4h
> >
> > readme_directory = no
> >
> > # See http://www.postfix.org/COMPATIBILITY_README.html -- default to 2 on
> > # fresh installs.
> > compatibility_level = 2
> >
> >
> > # TLS parameters
> > smtp_tls_security_level = may
> > smtp_tls_note_starttls_offer = yes
> > smtpd_tls_security_level = may
> > smtpd_sasl_auth_enable = yes
> > smtpd_tls_cert_file = /etc/letsencrypt/live/<hostname>/fullchain.pem
> > smtpd_tls_key_file = /etc/letsencrypt/live/<hostname>/privkey.pem
> > #smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
> > #smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
> >
> > smtp_tls_CApath=/etc/ssl/certs
> > smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
> >
> >
> > smtpd_relay_restrictions =
> > permit_mynetworks,
> > permit_sasl_authenticated,
> > reject_unauth_destination,
> > # check_client_access
> > cidr:/etc/postfix/client_checks,
> > check_policy_service inet:127.0.0.1:10023
> >
> >
> > myhostname = <hostname>
> > alias_maps = hash:/etc/aliases
> > alias_database = hash:/etc/aliases
> > myorigin = /etc/mailname
> > mydestination = $myhostname, <hostname>, <hostname>, localhost
> > relayhost =
> > mynetworks = <IP>/32 [<IPv6>]/128 127.0.0.0/8 [::ffff:127.0.0.0]/104
> > [::1]/128
> > mailbox_size_limit = 0
> > recipient_delimiter = +
> > inet_interfaces = all
> > inet_protocols = all
> >
> >
> > --- master.cf ---
> >
> >
> > $ cat master.cf
> > #
> > # Postfix master process configuration file. For details on the format
> > # of the file, see the master(5) manual page (command: "man 5 master" or
> > # on-line: http://www.postfix.org/master.5.html).
> > #
> > # Do not forget to execute "postfix reload" after editing this file.
> > #
> > #
> > ==========================================================================
> > # service type private unpriv chroot wakeup maxproc command + args
> > # (yes) (yes) (no) (never) (100)
> > #
> > ==========================================================================
> > smtp inet n - y - - smtpd
> > #smtp inet n - y - 1 postscreen
> > #smtpd pass - - y - - smtpd
> > #dnsblog unix - - y - 0 dnsblog
> > #tlsproxy unix - - y - 0 tlsproxy
> > submission inet n - y - - smtpd
> > -o syslog_name=postfix/submission
> > -o smtpd_tls_security_level=encrypt
> > -o smtpd_sasl_auth_enable=yes
> > # -o smtpd_reject_unlisted_recipient=no
> > # -o smtpd_recipient_restrictions=
> > # -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
> > # -o milter_macro_daemon_name=ORIGINATING
> > # -o smtpd_tls_auth_only=yes
> > # -o smtpd_client_restrictions=$mua_client_restrictions
> > # -o smtpd_helo_restrictions=$mua_helo_restrictions
> > # -o smtpd_sender_restrictions=$mua_sender_restrictions
> > #smtps inet n - y - - smtpd
> > # -o syslog_name=postfix/smtps
> > # -o smtpd_tls_wrappermode=yes
> > # -o smtpd_sasl_auth_enable=yes
> > # -o smtpd_reject_unlisted_recipient=no
> > # -o smtpd_client_restrictions=$mua_client_restrictions
> > # -o smtpd_helo_restrictions=$mua_helo_restrictions
> > # -o smtpd_sender_restrictions=$mua_sender_restrictions
> > # -o smtpd_recipient_restrictions=
> > # -o smtpd_relay_restrictions=permit_sasl_authenticated,reject
> > # -o milter_macro_daemon_name=ORIGINATING
> > #628 inet n - y - - qmqpd
> > pickup unix n - y 60 1 pickup
> > cleanup unix n - y - 0 cleanup
> > qmgr unix n - n 300 1 qmgr
> > #qmgr unix n - n 300 1 oqmgr
> > tlsmgr unix - - y 1000? 1 tlsmgr
> > rewrite unix - - y - - trivial-rewrite
> > bounce unix - - y - 0 bounce
> > defer unix - - y - 0 bounce
> > trace unix - - y - 0 bounce
> > verify unix - - y - 1 verify
> > flush unix n - y 1000? 0 flush
> > proxymap unix - - n - - proxymap
> > proxywrite unix - - n - 1 proxymap
> > smtp unix - - y - - smtp
> > relay unix - - y - - smtp
> > -o syslog_name=postfix/$service_name
> > # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
> > showq unix n - y - - showq
> > error unix - - y - - error
> > retry unix - - y - - error
> > discard unix - - y - - discard
> > local unix - n n - - local
> > virtual unix - n n - - virtual
> > lmtp unix - - y - - lmtp
> > anvil unix - - y - 1 anvil
> > scache unix - - y - 1 scache
> > postlog unix-dgram n - n - 1 postlogd
> > #
> > # ====================================================================
> > # Interfaces to non-Postfix software. Be sure to examine the manual
> > # pages of the non-Postfix software to find out what options it wants.
> > #
> > # Many of the following services use the Postfix pipe(8) delivery
> > # agent. See the pipe(8) man page for information about ${recipient}
> > # and other message envelope options.
> > # ====================================================================
> > #
> > # maildrop. See the Postfix MAILDROP_README file for details.
> > # Also specify in main.cf: maildrop_destination_recipient_limit=1
> > #
> > maildrop unix - n n - - pipe
> > flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
> > #
> > # ====================================================================
> > #
> > # Recent Cyrus versions can use the existing "lmtp" master.cf entry.
> > #
> > # Specify in cyrus.conf:
> > # lmtp cmd="lmtpd -a" listen="localhost:lmtp" proto=tcp4
> > #
> > # Specify in main.cf one or more of the following:
> > # mailbox_transport = lmtp:inet:localhost
> > # virtual_transport = lmtp:inet:localhost
> > #
> > # ====================================================================
> > #
> > # Cyrus 2.1.5 (Amos Gouaux)
> > # Also specify in main.cf: cyrus_destination_recipient_limit=1
> > #
> > #cyrus unix - n n - - pipe
> > # user=cyrus argv=/cyrus/bin/deliver -e -r ${sender} -m ${extension}
> > ${user}
> > #
> > # ====================================================================
> > # Old example of delivery via Cyrus.
> > #
> > #old-cyrus unix - n n - - pipe
> > # flags=R user=cyrus argv=/cyrus/bin/deliver -e -m ${extension} ${user}
> > #
> > # ====================================================================
> > #
> > # See the Postfix UUCP_README file for configuration details.
> > #
> > uucp unix - n n - - pipe
> > flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
> > ($recipient)
> > #
> > # Other external delivery methods.
> > #
> > ifmail unix - n n - - pipe
> > flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
> > bsmtp unix - n n - - pipe
> > flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender
> > $recipient
> > scalemail-backend unix - n n - 2 pipe
> > flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store
> > ${nexthop} ${user} ${extension}
> > mailman unix - n n - - pipe
> > flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
> > ${nexthop} ${user}
> >
>
> --
> ubuntu-users mailing list
> ubuntu-users at lists.ubuntu.com
> Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
More information about the ubuntu-users
mailing list