Best distro for Exim/Cyrus
Paul O'Rorke
paul at tracker-software.com
Fri Feb 14 18:05:59 EST 2014
Vlad and Andrew,
thanks so much for the tip on the "lmtpd -a" - that certainly did allow
mail to flow to the expected mailbox. Thanks so much.
I'm definitely making progress thanks to the help here. I'm stuck
getting sasl authentication though. As I understand it cyrus_sasl uses
it's own (Berkley?) database so I can manage users without them having
system accounts. Certainly I've been using saslpasswd2 to set the user
passwords but I'm unable to configure this.
If I uncomment any of the "Authentcate against cyrus-sasl" options I get
an error when running update-exim4.conf:
root at blmail:~# update-exim4.conf
2014-02-14 14:54:28 Exim configuration error in line 849 of
/var/lib/exim4/config.autogenerated.tmp:
authenticator cram_md5_sasl_server: cannot find authenticator
driver "cyrus_sasl"
Invalid new configfile /var/lib/exim4/config.autogenerated.tmp, not
installing
/var/lib/exim4/config.autogenerated.tmp to
/var/lib/exim4/config.autogenerated
If I don't use any encrypted passwords I can log in, work with
mailboxes, receive mail but not send (relay not permitted which I
suspect is so as to not be an open relay..?)
What do I need to do to authenticate with the cyrus_sasl db? Why would
the authenticator driver "cyrus_sasl" not be available? Do I need to
enable that somewhere?
I've read so many conflicting pages I've completely confused myself.
Maybe I should be looking at TLS/SSL now...
thanks again
*Paul O'Rorke* Tracker Software Products paul at tracker-software.com
<mailto:paul.ororke at tracker-software.com>
On 2/13/2014 1:09 AM, Vladislav Kurz wrote:
>
> On Thursday 13 of February 2014 00:30:55 Paul O'Rorke wrote:
>
> > Thanks for that Vladislav, it was very helpful. :-)
>
> >
>
> > I have managed to get exim to use the defined cyrus_delivery transport
>
> > attempting to deliver a received mail but it is baulking on the SSL
> cert.
>
> For starters, comment out everything related to tls/ssl. You can get
> thet working later when everything else is OK. There's no need for TLS
> and Auth on LMTP. I think Andrew is right, just fix the quotes in
> cyrus.conf
>
> lmtp cmd="lmtpd -a" listen="localhost:lmtp" prefork=0 maxchild=20
>
> > and confirm the permissions on the cert file:
>
> >
>
> > root at blmail:~# ls -l /etc/ssl/private/
>
> > total 4
>
> > -rw-r----- 1 root root 916 Feb 12 12:41 ssl-cert-snakeoil.key
>
> >
>
> > What process/user should have access to this key? Is it simply the
>
> > wrong owner/group?
>
> I usually set the key to be readable by group mail, and ensure that
> users cyrus and Debian-exim are members of group mail.
>
> > I'll come back to the Spamassassin issue later (unless of course it's
>
> > related!)
>
> I think it is not related.
>
> --
>
> S pozdravem
>
> Vladislav Kurz
>
> === WebStep, s.r.o. (Ltd.) ========= a step to the Web ===
>
> address: Mezirka 1, 602 00 Brno, CZ, tel: +420 548 214 711
>
> === www.webstep.net ======= vladislav.kurz at webstep.net ===
>
>
>
> ----
> Cyrus Home Page:http://www.cyrusimap.org/
> List Archives/Info:http://lists.andrew.cmu.edu/pipermail/info-cyrus/
> To Unsubscribe:
> https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.andrew.cmu.edu/pipermail/info-cyrus/attachments/20140214/db9e9468/attachment.html
More information about the Info-cyrus
mailing list