Mainan SASL

January 19th, 2011 by Idris

on Debian lenny, dan setelah postfix terinstall disistem

1. apt-get install sasl2-bin libsasl2-2 libsasl2-modules

2. vim /etc/default/saslauthd
rubah START=no menjadi START=yes

3. buat file config baru untuk smtp (vim /etc/postfix/sasl/smtpd.conf)
pwcheck_method: saslauthd

kalau mau tambah mekanisme authnya bisa pake: mech_list: plain login

4. enable-kan sasl di postfix (vim /etc/postfix/main.cf)
smtpd_sasl_auth_enable = yes
smtpd_sasl_security_options = noanonymous
broken_sasl_auth_clients = yes

smtpd_recipient_restrictions =
permit_sasl_authenticated,
permit_mynetworks,
reject_unauth_destination

5. postfix does a chroot so it can’t communicate with saslauthd. This is the tricky part:
rm -r /var/run/saslauthd
mkdir -p /var/spool/postfix/var/run/saslauthd
ln -s /var/spool/postfix/var/run/saslauthd /var/run
chgrp sasl /var/spool/postfix/var/run/saslauthd
adduser postfix sasl

Leave a Reply