<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
<div class="moz-cite-prefix">Vlad and Andrew,<br>
<br>
thanks so much for the tip on the "lmtpd -a" - that certainly did
allow mail to flow to the expected mailbox. Thanks so much.<br>
<br>
I'm definitely making progress thanks to the help here. I'm stuck
getting sasl authentication though. As I understand it cyrus_sasl
uses it's own (Berkley?) database so I can manage users without
them having system accounts. Certainly I've been using
saslpasswd2 to set the user passwords but I'm unable to configure
this.<br>
<br>
If I uncomment any of the "Authentcate against cyrus-sasl" options
I get an error when running update-exim4.conf:<br>
<blockquote><tt>root@blmail:~# update-exim4.conf</tt><br>
<tt>2014-02-14 14:54:28 Exim configuration error in line 849 of
/var/lib/exim4/config.autogenerated.tmp:</tt><br>
<tt> authenticator cram_md5_sasl_server: cannot find
authenticator driver "cyrus_sasl"</tt><br>
<tt>Invalid new configfile
/var/lib/exim4/config.autogenerated.tmp, not installing</tt><br>
<tt>/var/lib/exim4/config.autogenerated.tmp to
/var/lib/exim4/config.autogenerated</tt><br>
</blockquote>
If I don't use any encrypted passwords I can log in, work with
mailboxes, receive mail but not send (relay not permitted which I
suspect is so as to not be an open relay..?)<br>
<br>
What do I need to do to authenticate with the cyrus_sasl db? Why
would the authenticator driver "cyrus_sasl" not be available? Do
I need to enable that somewhere?<br>
<br>
I've read so many conflicting pages I've completely confused
myself. Maybe I should be looking at TLS/SSL now...<br>
<br>
thanks again<br>
<br>
<div class="moz-signature">
<div style="font-family:Arial;font-size:12px">
<p><strong>Paul O’Rorke</strong> Tracker Software Products <a
href="mailto:paul.ororke@tracker-software.com">paul@tracker-software.com</a></p>
<br>
</div>
</div>
On 2/13/2014 1:09 AM, Vladislav Kurz wrote:<br>
</div>
<blockquote cite="mid:201402131009.54473.vladislav.kurz@webstep.net"
type="cite">
<meta name="qrichtext" content="1">
<style type="text/css">
p, li { white-space: pre-wrap; }
</style>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">On Thursday 13 of February 2014 00:30:55 Paul
O'Rorke wrote:</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> Thanks for that Vladislav, it was very
helpful. :-)</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> I have managed to get exim to use the
defined cyrus_delivery transport</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> attempting to deliver a received mail
but it is baulking on the SSL cert.</p>
<p style="-qt-paragraph-type:empty; margin-top:0px;
margin-bottom:0px; margin-left:0px; margin-right:0px;
-qt-block-indent:0; text-indent:0px; "> </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">For starters, comment out everything related
to tls/ssl. You can get thet working later when everything else
is OK. There's no need for TLS and Auth on LMTP. I think Andrew
is right, just fix the quotes in cyrus.conf</p>
<p style="-qt-paragraph-type:empty; margin-top:0px;
margin-bottom:0px; margin-left:0px; margin-right:0px;
-qt-block-indent:0; text-indent:0px; "> </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">lmtp cmd="lmtpd -a" listen="localhost:lmtp"
prefork=0 maxchild=20</p>
<p style="-qt-paragraph-type:empty; margin-top:0px;
margin-bottom:0px; margin-left:0px; margin-right:0px;
-qt-block-indent:0; text-indent:0px; "> </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> and confirm the permissions on the cert
file:</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> root@blmail:~# ls -l /etc/ssl/private/</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> total 4</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> -rw-r----- 1 root root 916 Feb 12 12:41
ssl-cert-snakeoil.key</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> What process/user should have access to
this key? Is it simply the</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> wrong owner/group?</p>
<p style="-qt-paragraph-type:empty; margin-top:0px;
margin-bottom:0px; margin-left:0px; margin-right:0px;
-qt-block-indent:0; text-indent:0px; "> </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">I usually set the key to be readable by group
mail, and ensure that users cyrus and Debian-exim are members of
group mail. </p>
<p style="-qt-paragraph-type:empty; margin-top:0px;
margin-bottom:0px; margin-left:0px; margin-right:0px;
-qt-block-indent:0; text-indent:0px; "> </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> I'll come back to the Spamassassin issue
later (unless of course it's</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">> related!)</p>
<p style="-qt-paragraph-type:empty; margin-top:0px;
margin-bottom:0px; margin-left:0px; margin-right:0px;
-qt-block-indent:0; text-indent:0px; "> </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">I think it is not related.</p>
<p style="-qt-paragraph-type:empty; margin-top:0px;
margin-bottom:0px; margin-left:0px; margin-right:0px;
-qt-block-indent:0; text-indent:0px; "> </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">-- </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">S pozdravem</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;"> Vladislav Kurz</p>
<p style="-qt-paragraph-type:empty; margin-top:0px;
margin-bottom:0px; margin-left:0px; margin-right:0px;
-qt-block-indent:0; text-indent:0px; "> </p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">=== WebStep, s.r.o. (Ltd.) ========= a step
to the Web ===</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">address: Mezirka 1, 602 00 Brno, CZ, tel:
+420 548 214 711</p>
<p style=" margin-top:0px; margin-bottom:0px; margin-left:0px;
margin-right:0px; -qt-block-indent:0; text-indent:0px;
-qt-user-state:0;">=== <a class="moz-txt-link-abbreviated"
href="http://www.webstep.net">www.webstep.net</a> ======= <a
class="moz-txt-link-abbreviated"
href="mailto:vladislav.kurz@webstep.net">vladislav.kurz@webstep.net</a>
===</p>
<p style="-qt-paragraph-type:empty; margin-top:0px;
margin-bottom:0px; margin-left:0px; margin-right:0px;
-qt-block-indent:0; text-indent:0px; "> </p>
<p style="-qt-paragraph-type:empty; margin-top:0px;
margin-bottom:0px; margin-left:0px; margin-right:0px;
-qt-block-indent:0; text-indent:0px; "> </p>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">----
Cyrus Home Page: <a class="moz-txt-link-freetext" href="http://www.cyrusimap.org/">http://www.cyrusimap.org/</a>
List Archives/Info: <a class="moz-txt-link-freetext" href="http://lists.andrew.cmu.edu/pipermail/info-cyrus/">http://lists.andrew.cmu.edu/pipermail/info-cyrus/</a>
To Unsubscribe:
<a class="moz-txt-link-freetext" href="https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus">https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus</a></pre>
</blockquote>
<br>
</body>
</html>