Again... no success authenticating to smart host

Again... no success authenticating to smart host

am 31.01.2007 16:44:35 von mega

Hello everybody

I am still trying in vain to authenticate against my ISP's smart host.
I have the following situation.

I am authenticating with my mail client against my mail server 8.13.8
using TLS and the following CRAM_MD5

C{TrustAuthMech}DIGEST-MD5 CRAM-MD5

this works fine so far

When I try now to relay a message from the authenticated mail client to
my ISP's smart host this fails because there is no authentication on the
smart host done.

To verify the connection I used a method suggested by Claus a few years
back for the same problem. I just don't see what is going wrong

luna:/etc/mail # date | sendmail -Am -v foo.bar@relay.com
foo.bar@relay.com... Connecting to smtp.hispeed.ch. via relay...
220 smtp.hispeed.ch ESMTP Sendmail 8.12.11.20060308/8.12.11/taifun-1.0;
Wed, 31 Jan 2007 16:28:38 +0100
>>> EHLO luna.think.ch
250-smtp.hispeed.ch Hello nnnn.dclient.hispeed.ch [nn.nn.nn.nn], pleased
to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-8BITMIME
250-SIZE 10485760
250-DSN
250-AUTH PLAIN LOGIN
250-STARTTLS
250-DELIVERBY
250 HELP
>>> MAIL From: SIZE=29 AUTH=root@luna.think.ch

This suggests that the information in authinfo is not used, because the
user name for the authentication is not the one entered in the authinfo
file. also I would expect a STARTTLS according to the information below.

Here I am doing a lookup on the map entries for authinfo and try_tls
according to the .cf snippets below.

luna:/etc/mail # sendmail -bt
ADDRESS TEST MODE (ruleset 3 NOT automatically invoked)
Enter


> /map authinfo AuthInfo:smtp.hispeed.ch
map_lookup: authinfo (AuthInfo:smtp.hispeed.ch) returns
"U:XXXXXXXX@yyyy.tld" "P:ZZZZZZZ" "M:PLAIN" (0)
> /map access Try_TLS:smtp.hispeed.ch
map_lookup: access (Try_TLS:smtp.hispeed.ch) returns OK (0)


############################################################ ##########
### authinfo: lookup authinfo in the access map
###
### Parameters:
### $1: {server_name}
### $2: {server_addr}
############################################################ ##########
Sauthinfo
R$* $: <$(authinfo AuthInfo:$&{server_name} $: ? $)>
R $: <$(authinfo AuthInfo:$&{server_addr} $: ? $)>
R $: <$(authinfo AuthInfo: $: ? $)>
R $@ no no authinfo available
R<$*> $# $1

############################################################ ##########
### try_tls: try to use STARTTLS?
### (done in client)
############################################################ ##########
Stry_tls
R$* $: $>D <$&{server_name}> <>
R$* $: $>A <$&{server_addr}> <>
R$* $: <$(access "Try_TLS": $: ? $)>
R$* $@ OK
R<$* >$* $#error $@ 4.3.0 $: "451 Temporary system failure.
Please try again later."
R$* $#error $@ 5.7.1 $: "550 do not try TLS with "
$&{server_name} " ["$&{server_addr}"]"


Something is going wrong, please suggest more debugging in my set up.

luna:/etc/mail # ps -ef | grep sendmail
smmsp 1131 1 0 Jan27 ? 00:00:00 sendmail: Queue control
smmsp 1132 1131 0 Jan27 ? 00:00:00 sendmail: running queue:
/var/spool/clientmqueue
root 795 1 0 14:59 ? 00:00:00 sendmail: accepting
connections
root 1529 769 0 16:41 pts/1 00:00:00 grep sendmail

luna:/etc/mail # ls -l access*
-rw------- 1 root root 1707 2007-01-31 14:56 access
-rw-r--r-- 1 root root 12288 2007-01-31 14:56 access.db
luna:/etc/mail # ls -l authinfo*
-rw------- 1 root root 160 2007-01-26 20:16 authinfo
-rw-r----- 1 root root 12288 2007-01-26 20:16 authinfo.db

changing owner of authinfo.db to smmsp does not make a difference.

Thanks for your help

Erich