Re: smtp_sasl_mechanism_filter doesn't wok
- * Zero Zeibov <nitrogear@...>:
> I try to limit auth mech in postfix 2.6.1 on FreeBSD 6.4. For thisThis does not apply to the SMTP server smtpd, but only to the SMTP client
> I've added to main.conf:
> smtp_sasl_mechanism_filter = plain, login
> But simple test by telnet shows following:The name of the parameter is "mech_list" not "mechlist".
> Connected to x.x.x.x.
> Escape character is '^]'.
> 220 xxx.xxx.com.ua ESMTP Postfix
> ehlo 1
> 250-SIZE 10240000
> 250-AUTH NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
> 250-AUTH=NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
> 250 DSN
> I also tried to limit auth mechs in /usr/local/lib/sasl2/smtpd.conf
> pwcheck_method: saslauthd
> mechlist: PLAIN LOGIN
Fix that first.
If that doesn't do it all, create a symlink from /usr/lib/sasl2/ to
/usr/local/lib/sasl2/. This is what Cyrus SASL usually expects. Mileage on
FreeBSD might differ. I can't tell. I don't run FreeBSD.
> But it doesn't help.--
> How I can remove such auth mechs as GSSAPI DIGEST-MD5 CRAM-MD5?
All technical answers asked privately will be automatically answered on
the list and archived for public access unless privacy is explicitely
required and justified.
saslfinger (debugging SMTP AUTH):