diff options
| author | manuel <manuel@mausz.at> | 2013-02-04 02:32:40 +0100 |
|---|---|---|
| committer | manuel <manuel@mausz.at> | 2013-02-04 02:32:40 +0100 |
| commit | 8514473287c9594137c6fbc39f5619672ebc2430 (patch) | |
| tree | a5b965d8c7b60dee396bf8ebe25dd3eddfaa6753 /README.auth | |
| parent | 35ddb916045abafaa4ae2c778b9383059fa06726 (diff) | |
| download | qmail-8514473287c9594137c6fbc39f5619672ebc2430.tar.gz qmail-8514473287c9594137c6fbc39f5619672ebc2430.tar.bz2 qmail-8514473287c9594137c6fbc39f5619672ebc2430.zip | |
[PATCH] qregex-starttls-2way-auth-20060423-mm
Diffstat (limited to 'README.auth')
| -rw-r--r-- | README.auth | 66 |
1 files changed, 66 insertions, 0 deletions
diff --git a/README.auth b/README.auth new file mode 100644 index 0000000..435fe3b --- /dev/null +++ b/README.auth | |||
| @@ -0,0 +1,66 @@ | |||
| 1 | README qmail-smtpd SMTP Authentication | ||
| 2 | ====================================== | ||
| 3 | |||
| 4 | |||
| 5 | History: | ||
| 6 | -------- | ||
| 7 | |||
| 8 | This patch is based on Krzysztof Dabrowski's qmail-smtpd-auth-0.31 patch | ||
| 9 | which itself uses "Mrs. Brisby's" initial code. | ||
| 10 | Version 0.41 of this patch fixes the "CAPS-LOCK" typo announcing | ||
| 11 | 'CRAM_MD5' instead of 'CRAM-MD5' (german keyboard) - tx to Mike Garrison. | ||
| 12 | Version 0.42 fixes the '421 unable to read controls (#4.3.0)' problem | ||
| 13 | (can't read control/morercpthosts.cdb) because FD 3 was already closed - tx Richard Lyons. | ||
| 14 | Version 0.43 fixes the ba64decode() failure in case CRAM_MD5 is not enabled - tx Vladimir Zidar. | ||
| 15 | Version 0.51 includes the evaluation of the 'Auth' and the 'Size' parameter in the 'Mail From:' command. | ||
| 16 | Version 0.52 uses DJB functions to copy FDs. | ||
| 17 | Version 0.56 corrects some minor mistakes displaying the 'Auth' userid. | ||
| 18 | Version 0.57 uses keyword "ESMTPA" in Received header in case of authentication to comply with RFC 3848. | ||
| 19 | |||
| 20 | |||
| 21 | Scope: | ||
| 22 | ------ | ||
| 23 | |||
| 24 | This patch supports RFC 2554 "SMTP Service Extension for Authentication" for qmail-smtpd. | ||
| 25 | Additionally, RFC 1870 is honoured ("SMTP Service Extension for Message Size Declaration"). | ||
| 26 | For more technical details see: http://www.fehcom.de/qmail/docu/smtpauth.html. | ||
| 27 | |||
| 28 | |||
| 29 | Installation: | ||
| 30 | ------------- | ||
| 31 | |||
| 32 | * Untar the source in the qmail-1.03 home direcotry. | ||
| 33 | * Run ./install_auth. | ||
| 34 | * Modify the compile time option "#define CRAM_MD5" to your needs. | ||
| 35 | * Re-make qmail. | ||
| 36 | |||
| 37 | |||
| 38 | Setup: | ||
| 39 | ------ | ||
| 40 | |||
| 41 | In order to use SMTP Authentication you have to use a 'Pluggable Authentication Module' | ||
| 42 | PAM to be called by qmail-smtpd; typically | ||
| 43 | |||
| 44 | /var/qmail/bin/qmail-smtpd /bin/checkpassword true 2>&1 | ||
| 45 | |||
| 46 | Since qmail-smtpd does not run as root, checkpassword has to be made sticky. | ||
| 47 | There is no need to include additionally the hostname in the call. | ||
| 48 | In order to compute the CRAM-MD5 challenge, qmail-smtpd uses the 'tcplocalhost' information. | ||
| 49 | |||
| 50 | |||
| 51 | Changes wrt. Krysztof Dabrowski's patch: | ||
| 52 | ---------------------------------------- | ||
| 53 | |||
| 54 | * Avoid the 'hostname' in the call of the PAM. | ||
| 55 | * Confirm to Dan Bernstein's checkpassword interface even for CRAM-MD5. | ||
| 56 | * Doesn't close FD 2; thus not inhibiting logging to STDERR. | ||
| 57 | * Fixed bugs in base64.c. | ||
| 58 | * Modified unconditional close of FD 3 in order to sustain reading of 'control/morecpthosts.cdb'. | ||
| 59 | * Evaluation of the (informational) Mail From: < > Auth=username. | ||
| 60 | * Additional support for the advertised "Size" via 'Mail From: <return-path> SIZE=123456780' (RFC 1870). | ||
| 61 | * RFC 3848 conformance for Received header in case of SMTP Auth. | ||
| 62 | |||
| 63 | |||
| 64 | Erwin Hoffmann - Cologne 2005-01-23 (www.fehcom.de) | ||
| 65 | |||
| 66 | |||