Re: cannot send mail

[Krzysztof Strzeszewski]

Hi,
see this:

-----------------------------------------------------
https://www.openbsd.org/faq/upgrade62.html

*smtpd.conf.* The secure keyword is not valid anymore in listen 
directives in smtpd.conf(5) 
<https://man.openbsd.org/OpenBSD-6.2/smtpd.conf>. Users are advised to 
replace existing listen secure directives with two separate tls and 
smtps listeners, i.e., a line like

      listen on $iface secure pki $pki

has to be replaced with

      listen on $iface tls pki $pki
      listen on $iface smtps pki $pki

Relaying syntax is not affected by this change.
-----------------------------------------------------
end
-----------------------------------------------------
--- Treść przekazanej wiadomości ---
Temat:  Re: opensmtpd
Data:   Tue, 24 Nov 2015 17:32:01 +0100
Nadawca:        Gianluca D.Muscelli <i...@gianlucamuscelli.it>
Adresat:        Krzysztof Strzeszewski <krzyc...@gmail.com>, misc@openbsd.org



This is my config file…with Maildir /var/mail/ and DKIMproxy

$ cat /etc/mail/smtpd.conf
    queue compression
    queue encryption key xxxxxxxxxxxxxxxxxxxxxxx ->(your_key_numbers)

    table aliases db:/etc/mail/aliases.db
    table domains file:/etc/mail/domains
    table users file:/etc/mail/users
    table blacklist-recipients file:/etc/mail/blacklist-recipients

    pki mail.gianlucamuscelli.it key "/etc/ssl/private/mail.example.it.key"
    pki mail.gianlucamuscelli.it certificate "/etc/ssl/mail.example.it.crt"

    max-message-size 50M
  
    listen on egress pki mail.example.it tls-require hostname example.it
    listen on egress pki mail.example.it smtps auth hostname example.it

    accept from any \
        recipient !<blacklist-recipients> \
        for domain <domains> \
        virtual <users> \
        deliver to maildir "/var/mail/%{user.username}/Inbox"
    accept \
        recipient !<blacklist-recipients> \
        for local alias <aliases> \
        deliver to maildir "/var/mail/%{user.username}/Inbox"

    listen on lo0 hostname example.it
    listen on lo0 port 10028 tag DKIM hostname example.it

    accept tagged DKIM \
        for any \
        relay \
        hostname example.it
    accept from local \
        for any \
        relay via smtp://127.0.0.1:10027


Gianluca D.Muscelli
i...@gianlucamuscelli.it
-----------------------------------------------------

Regards,
Krzych

Il giorno 24/nov/2015, alle ore 17:13, Krzysztof Strzeszewski 
<krzyc...@gmail.com> ha scritto:

Hello,

when I use in smtpd.conf:
.
..
...
listen on egress secure pki nroot.pl auth <secrets>
...
..
.

mail sending to me can't reach:

smtp-in: Failed command on session 14529d46237222d5: "MAIL
FROM:<t...@gmail.com> SIZE=1599" =>530 5.5.1 Invalid command: Must issue
an AUTH command first


when I use in smtpd.conf

.
..
...
listen on egress secure pki nroot.pl
...
..
.


is ok, mail from world can reach to me, but then smtpd server is open
for send mail for each.
How to use auth for only sending mail from my client?


Regards,
Krzych


my smtpd.conf:
#----------------------------------------------------------------------------------------
listen on lo0

table aliases db:/etc/mail/aliases.db
table secrets db:/etc/mail/secrets.db
pki exaple.com certificate "/etc/ssl/mail.crt"
pki exaple.com key "/etc/ssl/private/mail.key"

listen on egress secure pki exaple.com auth <secrets>
accept from any for domain "exaple.com" alias <aliases> deliver to maildir

accept for local alias <aliases> userbase <secrets> deliver to maildir
accept from local for any relay
accept from any for any relay
#----------------------------------------------------------------------------------------




W dniu 08.10.2017 o 23:16, Timothy Marion pisze:
Hi All,

I am able to receive mail but I cannot send mail. Could anyone point me in
the right direction?

Thanks,

Tim

# $OpenBSD: smtpd.conf,v 1.9 2016/05/03 18:43:45 jung Exp $


pki jupiter.timothymarion.com certificate "/etc/letsencrypt/live/
www.timothymarion.com/fullchain.pem"
pki jupiter.timothymarion.com key "/etc/letsencrypt/live/
www.timothymarion.com/privkey.pem"

table aliases file:/etc/mail/aliases

listen on all

accept from any for domain "timothymarion.com" alias deliver to mbox
accept for local alias deliver to mbox
accept from local for any relay


/var/log/mailog

Oct 8 23:04:50 jupiter smtpd[21640]: 0cd1353692397daf smtp event=connected
address=14.177.236.10 host=static.vnpt.vn
Oct 8 23:04:51 jupiter smtpd[21640]: 0cd1353692397daf smtp
event=failed-command address=14.177.236.10 host=static.vnpt.vn
command="AUTH LOGIN" result="503 5.5.1 Invalid command: Command not
supported"
Oct 8 23:04:51 jupiter smtpd[21640]: 0cd1353692397daf smtp event=closed
address=14.177.236.10 host=static.vnpt.vn reason=quit>br>