Applied Mathematics 8
¼ø¶È»ñÎÁ/Âè09²ó
¤ò¥Æ¥ó¥×¥ì¡¼¥È¤Ë¤·¤ÆºîÀ®
³«»Ï¹Ô:
* ǧ¾Ú¥·¥¹¥Æ¥à¤Ë¤Ä¤¤¤Æ°ìÈÌŪ¤ÊÏà [#ue28434b]
unix ¥µ¡¼¥Ð¤Ë¸Â¤é¤º¡¤¥³¥ó¥Ô¥å¡¼¥¿°ìÈ̤ˡÖǧ¾Ú¡×¤È¤¤¤¦»ÅÁÈ...
´ðËÜŪ¤Ë¡¤´í¸±¤ÊÎΰè¤Ç¤¢¤ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤ò¥Ñ¥¹¥ï¡¼¥É¤ò...
¤½¤Î¤¿¤á¤Ë½é³Ø¼Ô¤Ë¤Ïº®Í𤬤¢¤ë¤«¤È»×¤¦¤¬¡¤¼ÂºÝ¤Ï¤³¤ÎÆó¥«...
¼ÂºÝ¡¤¤ª¤ª¤Þ¤«¤Ë¤Ï¡¤unix ¾å¤Ç¤Î¥½¥Õ¥È¥¦¥§¥¢¤ÏÄ̾ï¤Ï°Ê²¼¤Î...
&ref(./authentication-structure_ss.png);
CENTER:ǧ¾Ú¤Î°ìÈÌŪ¤Ê»ÅÁȤß
* Á°²ó¤«¤é¤Î³¤ [#ja89ff28]
** SMTP Auth ¤ÎÀßÄê(postfix) [#z61f2855]
¤µ¤Æ¡¤SMTP Auth ¤ÎÀßÄê¤È¤Ê¤ë¤È¥Þ¥Ë¥å¥¢¥ë¤Ë¤âÆä˵½Ò¤¬¤Ê...
SMTP Auth ¤Ë´Ø¤·¤Æ¤Ï¤Þ¤À¤Þ¤ÀÊѹ¹¤¬¤¢¤¤¤Ä¤¤¤Ç¤¤¤ë¤è¤¦¤Ê¤Î...
¶ñÂÎŪ¤Ë¤Ï http://www.postfix.org/SASL_README.html ¤ò¥Á¥§...
Enabling SASL authentication in the Postfix SMTP server
In order to enable SASL support in the Postfix SMTP ser...
/etc/postfix/main.cf:
smtpd_sasl_auth_enable = yes
In order to allow mail relaying by authenticated remote...
/etc/postfix/main.cf:
smtpd_recipient_restrictions =
permit_mynetworks
permit_sasl_authenticated
reject_unauth_destination
To report SASL login names in Received: message headers...
/etc/postfix/main.cf:
smtpd_sasl_authenticated_header = yes
Note: the SASL login names will be shared with the enti...
Older Microsoft SMTP client software implements a non-s...
of the AUTH protocol syntax, and expects that the SMTP ...
EHLO with "250 AUTH=mechanism-list" instead of "250 AUT...
To accommodate such clients (in addition to conformant ...
/etc/postfix/main.cf:
broken_sasl_auth_clients = yes
¤Þ¤º¤Ï¤³¤Î»Ø¼¨¤Ë¤·¤¿¤¬¤Ã¤Æ main.cf ¤ò½¤Àµ¤·¤è¤¦. ¤¿¤À¤·...
¤µ¤é¤Ë¾åµ»ñÎÁ¤òÆɤ߿ʤà¤È¡¤
Cyrus SASL configuration for the Postfix SMTP server
¤Ç»Ï¤Þ¤ëÉôʬ¤¬¤¢¤ë¤Î¤Ç¤³¤ì¤Þ¤¿Æɤޤʤ¤¤È¤¤¤±¤Ê¤¤. ¤¿¤À¤³...
smtpd_sasl_path = smtpd
smtpd_sasl_local_domain = $myhostname
¤¿¤À¤·¡¤¤³¤³¤òÆɤßÈô¤Ð¤µ¤Ê¤¤Êý¤¬Îɤ¤. ¤È¤¤¤¦¤Î¤â¡¤SMTP au...
¶ñÂÎŪ¤Ë¤Ï¡¤
saslpasswd2 -c -u `postconf -h myhostname` exampleuser
¤È¤»¤è¡¤¤È½ñ¤¤¤Æ¤¢¤ë(ºÇ¸å¤Î "exampleuser" ¤È¤¤¤¦¤Î¤Ï¥æ¡¼...
** SMTP Auth ¤ÎÆ°ºî³Îǧ [#s456d9a5]
*** ¥æ¡¼¥¶¤ÎÅÐÏ¿(SMTP Auth ÀìÍѤÇ) [#vdd4553f]
SMTP Auth ¤ò¹Ô¤¦ºÝ¡¤¥æ¡¼¥¶¤È¥Ñ¥¹¥ï¡¼¥É¤Î¾È¹ç¤ò¤É¤¦¤¤¤¦¥Ç...
º£²ó¤ÏÆäËÊ£¿ô¤ÎÁªÂò»è¤ò»ØÄꤷ¤Æ¤¤¤Ê¤¤((¾Ü¤·¤¯¤ÏÁ°²ó¤Î¼ø...
¤È¤¤¤¦¤³¤È¤Ï¡¤SMTP Auth ¤ò»È¤¦Á°¤Ë¡¤ÍøÍѼԤÎÅÐÏ¿¤¬É¬ÍפÀ...
¶ñÂÎŪ¤Ë¤Ï¡¤¾å¤Ë¤¢¤ë¤è¤¦¤Ë saslpasswd2 ¥³¥Þ¥ó¥É¤ò»È¤¦¤³¤È...
¤Á¤Ê¤ß¤Ë¡¤¥æ¡¼¥¶¤È(SMTP Auth ÀìÍѤÎ)¥Ñ¥¹¥ï¡¼¥É¤¬¤¤Á¤ó¤È...
sasldblistusers2
¤È¤¹¤ë¤È
¥æ¡¼¥¶Ì¾@¥Û¥¹¥È̾: userPassword
¤Ê¤É¤È¤¤¤¦É½¼¨¤¬½Ð¤ë¤Î¤Ç³Îǧ¤Ç¤¤ë.
*** ¼Â½¬ [#ha38d029]
¥æ¡¼¥¶¤ò SMTP Auth ÍѤËÅÐÏ¿¤·¤è¤¦.
¤Þ¤¿¡¤Á°²ó¼ø¶È»ñÎÁ¤ËºÜ¤Ã¤Æ¤¤¤ë¥í¥°¥á¥Ã¥»¡¼¥¸¤Ë¤è¤ë¤È SMTP...
¤³¤ì¤é¤Ï²¿¤«¡¤Ä´¤Ù¤Æ¤ß¤è.
*** ¼ÂºÝ¤Ë¼ê¤ÇÀܳ¤·¤Æ¤ß¤ë. [#f569f61c]
SMTP Auth ¤ÇÀܳ¤¹¤ëºÝ¤Îǧ¾ÚÊýË¡¤Ë¤â¤¤¤¯¤Ä¤«¤¢¤ê¡¤¼«Í³¤Ë...
º£²ó¤Î¥¤¥ó¥¹¥È¡¼¥ë¤Ç¤ÏÆäËÀßÄê¤ò²Ã¤¨¤Ê¤±¤ì¤Ð NTLMǧ¾Ú¡¤lo...
¤½¤³¤Ç¡¤¤³¤Î¤¦¤Á¤Î´Êñ¤ËÍøÍѤǤ¤ë¤¬°Å¹æ²½¥Ê¥·¤Î plainǧ...
¤½¤ÎÁ°¤Ë¡¤¸å¤ÇÍѤ¤¤ë¥³¥Þ¥ó¥É¤Ç¤¢¤ë mmencode ¤ò½àÈ÷¤È¤·¤Æ...
¶ñÂÎŪ¤Ë¤Ï¡¤ports ¥³¥ì¥¯¥·¥ç¥ó¤ò¿·¤·¤¯¤·¤Æ¤ª¤¤¤Æ¤«¤é¡¤
portinstall mmencode
¤È¤¹¤ì¤Ð¤è¤¤.
*** ¼ê¤Ç SMTP Auth ¤ò»î¤¹ : Plain ǧ¾Ú¤Î¾ì¹ç [#ub232516]
Plain ǧ¾Ú¤Ï¤ªµ¤³Ú¤Ê¥â¥Î¤Ç¡¤SMTP Auth »þ¤Ëʸ»úÎó "\0¥æ¡¼...
¤Á¤Ê¤ß¤Ë¡¤base 64 ¤Ï°Å¹æ²½¤Ç¤Ï¤Ê¤¯¤Æ(¥³¥ó¥Ô¥å¡¼¥¿¤Ç°·¤¦¤Î...
¤Ä¤Þ¤ê¡¤¥Ñ¥¹¥ï¡¼¥ÉÅù¤ò base64 ¥¨¥ó¥³¡¼¥É¤·¤¿¤â¤Î(¸å½Ò¤Î m...
¤µ¤Æ¡¤ÀܳÁ°¤ËÀܳ¤ËɬÍפÊʸ»úÎó¤òºî¤Ã¤Æ¤·¤Þ¤ª¤¦.
¶ñÂÎŪ¤Ë¤Ï¡¤¥³¥Þ¥ó¥É¥é¥¤¥ó¤Ç
printf '\0000¥æ¡¼¥¶Ì¾\0000¥Ñ¥¹¥ï¡¼¥É' | mmencode
¤È¤¹¤ì¤Ð¤è¤¤((\0000 ¤È¤Ê¤Ã¤Æ¤¤¤ë¤È¤³¤í¤Ï \0 ¤Ç¤â¤è¤¤¤Î¤À...
¥æ¡¼¥¶Ì¾¤È¥Ñ¥¹¥ï¡¼¥É¤Ï¤µ¤¤Û¤É SMTP Auth ÍÑ¤Ë saslpasswd2...
¤³¤¦¤¹¤ë¤È¡¤'\0¥æ¡¼¥¶Ì¾\0¥Ñ¥¹¥ï¡¼¥É' ¤¬ base64 ¥¨¥ó¥³¡¼¥É...
¤¢¤È¤Ï¤¤¤Ä¤â¤Î¤è¤¦¤Ë telnet localhost 25 ¤Ç¼«Á°¤Î MTA ¤Ë...
¤¤¤Ä¤â¤Î¤è¤¦¤Ë "EHLO localhost" ¤È¤·¤Æ±þÅú¤ò¿Ê¤á¤ë¤È¡¤¼¡...
250-(¥Û¥¹¥È̾)
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-AUTH NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-AUTH=NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
¤³¤ÎÃʳ¬¤Ç SMTP Auth ¤Î Plain ǧ¾Ú¤ò»î¤·¤Æ¤ß¤è¤¦.
¶ñÂÎŪ¤Ë¤Ï¡¤¤³¤³¤Ç
AUTH PLAIN Àè¤Û¤Ébase64¥¨¥ó¥³¡¼¥É¤·¤Æºî¤Ã¤¿Ê¸»úÎó
¤ÈÆþÎϤ¹¤ì¤Ð¤è¤¤. Plain ǧ¾Ú¤Ï¤³¤ì¤À¤±¤ÇºÑ¤à.
¤½¤·¤Æ
235 2.0.0 Authentication successful
¤Ê¤É¤È "success" ¤Î°Õ¤¬¥á¥Ã¥»¡¼¥¸¤ÇÊ֤äƤ¯¤ì¤Ð¡¤Ç§¾Ú¤¬ÄÌ...
¤¦¤Þ¤¯¤¤¤«¤Ê¤¤¿Í¤ÏÃúÇ«¤Ë¤³¤ì¤Þ¤Ç¤Îºî¶È¤ò¿¶¤êÊÖ¤í¤¦.
*** ¼Â½¬ [#y3077878]
¤³¤³¤Þ¤Ç½ñ¤¤¤Æ¤¢¤ë¤³¤È¤ò¼Â¹Ô¤·¤è¤¦.
*** ¼ê¤Ç SMTP Auth ¤ò»î¤¹ : CRAM-MD5 ǧ¾Ú¤Î¾ì¹ç [#eee6a04a]
CRAM-MD5ǧ¾Ú¤ÏÀè¤Î Plainǧ¾Ú¤È°ã¤Ã¤Æ¡¤¥Ñ¥¹¥ï¡¼¥É¤òʿʸ¤Ç...
¶ñÂÎŪ¤Ë¤Ï¡¤Àܳ¤¹¤ë¤È¥µ¡¼¥Ð¤¬Å¬Åö¤Êʸ»úÎó¤òÁ÷¤Ã¤Æ¤¯¤ë¤Î...
¤ä¤ä¤³¤·¤¤¤¬¡¤¼Â¤Ï CRAM-MD5 ¤ò¥Æ¥¹¥È¤¹¤ë¤¿¤á¤Î¥¹¥¯¥ê¥×¥È ...
¤è¤Ã¤Æ¡¤''¤³¤³¤Îºî¶È¤Ï¸å½Ò¤Î courier-imap ¤ò¥¤¥ó¥¹¥È¡¼¥ë...
¤¿¤À¤·¡¤courier-imap ¤ÎÀßÄê¤Ï¤·¤Ê¤¤¤ÇÌá¤Ã¤Æ¤¤Æ¤è¤¤.
°Ê²¼¤Îºî¶È¤Ë¤Ï¥³¥ó¥½¡¼¥ë¤¬Æó¤Ä°Ê¾å¤¢¤Ã¤¿Êý¤¬ÊØÍø¤Ê¤Î¤Ç¡¤X...
¾õ¶·¤òʬ¤«¤ê¤ä¤¹¤¯¤¹¤ë¤¿¤á¤Ë¡¤¤³¤ì¤«¤é³Æ¡¹¤Î¥¨¥ß¥å¥ì¡¼¥¿...
¤Þ¤º¡¤''Shell-A'' ¤Ç telnet localhost 25 ¤ÇÀè¤ÈƱ¤¸¤è¤¦¤Ë
250-AUTH NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-AUTH=NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
¤È¤¤¤¦¤È¤³¤í¤Þ¤Ç¤¤¤³¤¦. ¤½¤·¤Æ¤³¤³¤Ç
auth cram-md5
¤ÈÆþÎϤ¹¤ë. ¤¹¤ë¤È¡¤
334 PG5hbmlrYW5vLXNlcnZlcj4=
¤Ê¤É¤È½ÐÎϤ¬Ê֤äƤ¯¤ë.
¤³¤Î ''PG5hbmlrYW5vLXNlcnZlcj4='' ¤¬¥µ¡¼¥Ð¤¬ base64 ¤ÇÁ÷...
¶ñÂÎŪ¤Ë¤Ï ''Shell-B ¤Ç'' userdb-test-cram-md5 ¤ò¼Â¹Ô¤·¤Æ...
Username? testuser ¢« (SMTP Auth ¤Ë»È¤¦)¥æ¡¼¥¶Ì¾¤òÆþÎϤ¹¤ë
Password? password ¢« (SMTP Auth ¤Ë»È¤¦)¥Ñ¥¹¥ï¡¼¥É¤òÆþ...
Send: AUTH CRAM-MD5 (or for imap, A AUTHENTICATE CRAM-M...
Paste the challenge here:
+ PG5hbmlrYW5vLXNlcnZlcj4= ¢« Shell-A ¤Ç¥µ¡¼¥Ð¤¬Á÷¤Ã¤Æ¤...
Send this response:
dGVzdHVzZXIgY2NiNjc4YmZjZGY1YWRlMGUyYmE2MmM3ODA3OTA1NGI=
¤¹¤ë¤È¡¤¾å¤Î¤è¤¦¤ËºÇ¸å¤ËÊÖÅú¤¹¤Ù¤Ê¸»úÎó¤òÀ¸À®¤·¤Æ¤¯¤ì¤ë.
¤½¤³¤Ç¤³¤Îʸ»úÎó(¤³¤ÎÎã¤Î¾ì¹ç¤Ï ''dGVzdHVzZXIgY2NiNjc4YmZ...
¤ò¤µ¤Ã¤¤Î ''Shell-A ¤Ç¤Îºî¶È¤Î³¤¤Ë'' ÆþÎϤ¹¤ë.
ǧ¾Ú¤¬Ä̤ì¤Ð¤³¤Î¤¢¤È
235 2.0.0 Authentication successful
¤Ê¤É¤È¤¦¤Þ¤¯¤¤¤¯¤À¤í¤¦.
** SMTP over TLS ¤ÎÀßÄê¤ÈÆ°ºî³Îǧ [#ia488eff]
*** SMTP over TLS ¤ÎÀßÄê [#odede9af]
TLS ¤ÎÍøÍѤˤĤ¤¤Æ¤Ï¡¤ÀßÄê¤Î¤Þ¤¨¤Ë¸°¤È¾ÚÌÀ½ñ¤òÍÑ°Õ¤·¤Ê¤¤...
web server ¤ÎÀßÄê¤Î»þ¤Ëºî¤Ã¤¿¸°¤È¾ÚÌÀ½ñ¤ò /etc/ssl ¤Ë(ÈÆ...
º£²ó¤Ï¸°¤È¾ÚÌÀ½ñ¤ò¿·¤·¤¯ºî¤Ã¤Æ((¤ä¤êÊý¤Ï¼ø¶ÈÂè07²ó¤Î SSL ...
¤¿¤À¤·¡¤¤³¤Î¥Õ¥¡¥¤¥ë¤¬Â¾¤Î¿Í¤ËÆɤá¤Æ¤·¤Þ¤¦¤Èº¤¤ë¤Î¤Ç¡¤ºî...
chmod 400 postfix.key
chmod 400 postfix.crt
¤È¤·¤Æ¤ª¤³¤¦.
¤µ¤Æ¡¤Postfix ¤ÎÀßÄê¤Ï¡¤ËܲȤΥɥ¥å¥á¥ó¥È(http://www.pos...
¥µ¡¼¥Ð¤«¥¯¥é¥¤¥¢¥ó¥È¤«¤äǧ¾Ú¤ò¤É¤¦¤¹¤ë¤«¤Ê¤É¿¾¯¤ä¤ä¤³¤·...
¤È¤ê¤¢¤¨¤º /usr/local/etc/postfix/main.cf ¤Ë
smtpd_tls_cert_file = /usr/local/etc/postfix/postfix.crt
smtpd_tls_key_file = /usr/local/etc/postfix/postfix.key
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
smtp_tls_security_level = may
smtp_tls_note_starttls = yes
¤Ê¤É¤È²Ã¤¨¤ì¤ÐÎɤ¤((Postfix ¤ÎÀßÄêÊýË¡¤¬ºÇ¶áÊѤï¤Ã¤¿¤¿¤á...
¤³¤ÎÊÔ½¸¤¬½ª¤ï¤Ã¤¿¤é¡¤postfix ¤ò°ìöÄä»ß¤·¤Æ¤«¤éºÆµ¯Æ°¤¹¤ë.
/usr/local/etc/rc.d/postfix stop
/usr/local/etc/rc.d/postfix start
ºÆµ¯Æ°»þ¤Ë²¿¤«¥¨¥é¡¼¤ä·Ù¹ð¤¬½Ð¤Æ¤¤¤Ê¤¤¤«Ãí°Õ¤·¤Æ¤ª¤³¤¦.
*** SMTP over TLS ¤ÎÆ°ºî³Îǧ [#c0579bf3]
¤¦¤Þ¤¯¤¤¤Ã¤Æ¤¤¤ë¤è¤¦¤À¤Ã¤¿¤éºÆ¤Ó telnet localhost 25 ¤Ç³Î...
¤³¤ì¤Þ¤Ç¤ÈƱÍͤË(ÅÓÃæ¤Ç EHLO localhost ¤·¤Æ)
250-(¥Û¥¹¥È̾)
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-AUTH NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-AUTH=NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
¤Ê¤É¤È¤Ê¤ë(¤³¤³¤Ç quit ¤ÈÆþÎϤ¹¤ë¤ÈÈ´¤±¤é¤ì¤ë).
Îɤ¯¤ß¤ë¤È "250-STARTTLS" ¤È¤¤¤¦Éôʬ¤¬¤¢¤ê¡¤¤È¤ê¤¢¤¨¤º TL...
¤³¤ì¤¬½Ð¤Ê¤¤¤è¤¦¤Ê¤é²¿¤«¤ª¤«¤·¤¤¤Î¤Ç¤³¤ì¤Þ¤Ç¤Îºî¶È¤ò¿¶¤ê...
¤µ¤Æ¡¤TLS ¤ÎÆ°ºî¤Î³Îǧ¤À¤¬¡¤¤³¤³¤Ç SMTP ¤ÎÆ°ºî¥Á¥§¥Ã¥¯¤Ë...
¤½¤ì¤Ï ''swaks'' (Swiss Army Knife SMTP) ¤È¤è¤Ð¤ì¤ë¤â¤Î¤Ç...
¤È¤¤¤¦¤ï¤±¤Ç¤Þ¤º¤Ï ports¥³¥ì¥¯¥·¥ç¥ó¤ò portsnap ¤Ç¿·¤·¤¯...
portinstall swaks
¤È¤¹¤ì¤Ð¤è¤¤. ¥¤¥ó¥¹¥È¡¼¥ë»þ¤Ë¥ª¥×¥·¥ç¥óÁªÂò²èÌÌ
&ref(./swaks-install_s.png);
¤¬½Ð¤¿¤é¡¤¾¯¤Ê¤¯¤È¤â "MX lookup support" ¤È "TLS support"...
¤µ¤Æ, swaks ¤Î»È¤¤Êý¤Ï swaks --help ¤È¤¹¤ë¤È¥Þ¥Ë¥å¥¢¥ë¤¬...
¤Þ¤º¤Ïñ¤Ë MTA ¤¬Æ°ºî¤·¤Æ¤¤¤ë¤«¤Î³Îǧ¤«¤é.
swaks --server localhost
¤È¤¹¤ë¤È¡¤¥Æ¥¹¥È¥á¡¼¥ë¤Î°¸Àè¤òʹ¤¤¤Æ¤¯¤ë¤Î¤Ç, ¼«Ê¬¤Î¥¢¥«...
=== Trying localhost:25...
=== Connected to localhost.
<- 220 ¥µ¡¼¥Ð̾ ESMTP Postfix
-> EHLO ¥µ¡¼¥Ð̾
<- 250-¥µ¡¼¥Ð̾
<- 250-PIPELINING
<- 250-SIZE 10240000
<- 250-VRFY
<- 250-ETRN
<- 250-STARTTLS
<- 250-AUTH NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
<- 250-AUTH=NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
<- 250-ENHANCEDSTATUSCODES
<- 250-8BITMIME
<- 250 DSN
-> MAIL FROM:<º¹½Ð¿Í¥¢¥É¥ì¥¹>
<- 250 2.1.0 Ok
-> RCPT TO:<°¸Àè>
<- 250 2.1.5 Ok
-> DATA
<- 354 End data with <CR><LF>.<CR><LF>
-> Date: ÆüÉÕ
-> To: °¸Àè
-> From: º¹½Ð¿Í
-> Subject: test ÆüÉÕ
-> X-Mailer: swaks v20061116.0 jetmore.org/john/code/#...
->
-> This is a test mailing
->
-> .
<- 250 2.0.0 Ok: queued as D6E7C11430
-> QUIT
<- 221 2.0.0 Bye
¤È MTA ¤È¤ä¤ê¼è¤ê¤·¤Æ¡¤¤½¤ÎÅÓÃæ·Ð²á¤ò¤¤Á¤ó¤È½ÐÎϤ·¤Æ¤¯¤ì...
¼¡¤Ë¡¤SMTP Auth ¤Î plainǧ¾Ú¤ò»î¤·¤Æ¤ß¤è¤¦. ¤¿¤À¤·¡¤¤¤¤Á...
swaks --auth PLAIN --server localhost --quit RCPT
¤¹¤ë¤ÈºÇ½é¤Ë(¼ÂºÝ¤Ë¤ÏÁ÷¤é¤Ê¤¤¤¬)¥Æ¥¹¥È¥á¡¼¥ë¤Î°¸Àè¤òʹ¤¤...
¼¡¤Ë SMTP Auth ¤Î CRAM-MD5 ǧ¾Ú¤ò»î¤·¤Æ¤ß¤ë. ¤½¤ì¤Ë¤Ï
swaks --auth CRAM-MD5 --server localhost --quit RCPT
¤È¤¹¤ì¤Ð¤è¤¤. ¸å¤Ï¤µ¤Ã¤¤Î¤ÈƱ¤¸¤Ç¤¢¤ë.
¤µ¤Æ¡¤¤ä¤Ã¤È´Î¿´¤Î SMTP over TLS ¤ò¥Æ¥¹¥È¤·¤è¤¦. ¤È¤¤¤Ã¤Æ...
swaks -tls --server localhost
¤È¤¹¤ì¤Ð¤è¤¤. ¤¿¤À¤·¡¤Ç°¤Î°Ù¤Ë¥Æ¥¹¥È¥á¡¼¥ë¤ò¼ÂºÝ¤ËÁ÷¤í¤¦...
¤³¤ì¤ò¼Â¹Ô¤·¤Æ¡¤swaks ¤Î½ÐÎϤòÆɤó¤ÇÌäÂ꤬¤Ê¤±¤ì¤Ð OK ¤À....
ºÇ¸å¤Ë¡¤SMTP Auth ¤È SMTP over TLS ¤òÁȤ߹ç¤ï¤»¤Æ¤ß¤è¤¦. ...
¶ñÂÎŪ¤Ë¤ÏÎ㤨¤Ð¼¡¤Î¤è¤¦¤Ë¤¹¤ì¤Ð¤è¤¤(SMTP Auth ¤Ï¼«Æ°Åª¤Ë...
swaks --auth -tls --server localhost --quit RCPT
¤³¤³¤Ç½ÐÎϤòÃúÇ«¤ËÆɤó¤Ç¤ß¤è¤¦. ¤½¤·¤Æ ''starttls ¤·¤Æ¤«...
¤³¤ì¤Ï SMTP over TLS ¤ÈÁȤ߹ç¤ï¤»¤ë¤Ê¤é¤Ðǧ¾Ú(¥Ñ¥¹¥ï¡¼¥É...
*** ¼Â½¬ [#l2766ac6]
SMTP over TLS/SSL ¤Ë¤Ï¾åµ¤Î StartTLS ¤Î¾¤Ë¤â¤¦¤Ò¤È¤Ä SM...
¤Ç¤Ï¡¤SMTPS ¤È¤Ï²¿¤«¡¤StartTLS ¤ÈÈæ¤Ù¤Æ¤ÎÍøÅÀ/·çÅÀ¤Ï²¿¤«...
¤µ¤é¤Ë;ÎϤ¬¤¢¤ë¤è¤¦¤À¤Ã¤¿¤é²¿¤«¼ê¸µ¤Î MUA ¤Ç starttls ¤Ë...
* IMAP/POP ¥µ¡¼¥Ð¤Î¥¤¥ó¥¹¥È¡¼¥ë¡¤´ÉÍý [#bc50b8a7]
¤µ¤Æ¡¤¥æ¡¼¥¶°¸¤ËÆϤ¤¤¿¥á¡¼¥ë¤ò MUA ¤ËÅϤ¹¤Î¤Ë¹¤¯»È¤ï¤ì¤Æ...
¤¤¤Þ¤À¹¤¯»È¤ï¤ì¤Æ¤¤¤ë POP¡¤¥æ¡¼¥¶¤Ë¤È¤Ã¤Æ¤ÏÊØÍø¤À¤¬¥µ¡¼...
¤³¤³¤Ç¤Ï¡¤¾ÍèŪ¤Ê¤³¤È¤â¹Í¤¨¤Æ IMAP ¥µ¡¼¥Ð¤Ë¤Ä¤¤¤Æ³Ø½¬¤·...
¤µ¤Æ¡¤IMAP ¥µ¡¼¥Ð¤È¤·¤Æ¤Ï courier-imap ¤¬¹¤¯»È¤ï¤ì¤Æ¤¤¤ë...
¤Ê¤ª¡¤courier-imap ¤ò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤È°ì½ï¤Ë courier-pop...
** courier-imap ¤Î¥¤¥ó¥¹¥È¡¼¥ë [#s46e219d]
¤µ¤Æ¡¤¤¤¤Ä¤â¤Î¤è¤¦¤Ë ports ¥³¥ì¥¯¥·¥ç¥ó¤«¤é¥¤¥ó¥¹¥È¡¼¥ë¤·...
¤¿¤À¤·¡¤imap ¥µ¡¼¥Ð¤Î¥¤¥ó¥¹¥È¡¼¥ë¤ÎÁ°¤Ë courier-authlib(c...
¤¤¤Ä¤â¤Î¤è¤¦¤Ë
portinstall courier-authlib
¤È¤¹¤ë. ºÇ½é¤Ë½Ð¤ë¥ª¥×¥·¥ç¥ó²èÌ̤ǤÏ
&ref(./courierauth-install.png);
¤Î¤è¤¦¤Ë¾¯¤Ê¤¯¤È¤â userdb ¤òÁª¤ó¤Ç¤ª¤¯. ¤¢¤È¤Ï¥¹¥à¡¼¥º¤Ë...
¼¡¤Ë
portinstall courier-imap
¤È¤·¤Æ courier-imap ËÜÂΤò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë. ºÇ½é¤Ë¥ª¥×¥·...
&ref(courierimap-install.png);
¤¬½Ð¤ë¤¬¡¤Â¿Ê¬¥Ç¥Õ¥©¥ë¥È¤Ç OpenSSL ¤È IPv6 ¤¬Áª¤Ð¤ì¤Æ¤¤¤ë...
¤·¤Ð¤é¤¯ÂԤäƤ¤¤ë¤È(¤¤¤¯¤Ä¤«Â¾¤ËɬÍפʥ½¥Õ¥È¥¦¥§¥¢¤ò¥¤¥ó...
¤½¤ÎÅÓÃæ¤Ç¤ä¤Ï¤ê¤¤¤¯¤Ä¤«¥á¥Ã¥»¡¼¥¸¤¬½Ð¤ë¤¬¡¤º£²ó¤Ï¾¯¤Ê¤á...
In case you use authpam, you should put the following l...
in your /etc/pam.d/imap
auth required pam_unix.so try_first_pass
account required pam_unix.so try_first_pass
session required pam_permit.so
You will have to run /usr/local/share/courier-imap/mkim...
a self-signed certificate if you want to use imapd-ssl.
And you will have to copy and edit the *.dist files to *
in /usr/local/etc/courier-imap.
¤³¤ì¤Ï¡¤IMAP ¤Îǧ¾ÚÊýË¡¤È¤·¤Æ¾¤ÎÊýË¡¤Ç¤¢¤ë PAM ¤ò»È¤¤¤¿...
¤¤¤º¤ì¤â·ë¹½½ÅÍפʥá¥Ã¥»¡¼¥¸¤Ê¤Î¤Ç¡¤ÆɤßÈô¤Ð¤µ¤Ê¤¤¤è¤¦¤Ë...
** courier-imap ¤ÎÀßÄê [#m47e11c1]
¤µ¤Æ¡¤¥¤¥ó¥¹¥È¡¼¥ë¤¬ºÑ¤à¤È /usr/local/etc/authlib ¤Ëǧ¾Ú...
¤Þ¤ºÇ§¾Ú´Ø·¸¤òÀ°Íý¤·¤è¤¦.
ǧ¾Úµ¡¹½¤½¤Î¤â¤Î¤ÎÀßÄê¤Ë¤Ä¤¤¤Æ¤Ï /usr/local/etc/authlib ...
¼¡¤Ë¡¤over TLS/SSL ¤Ç»È¤¦¼«¸Êǧ¾Ú¾ÚÌÀ½ñ(courier-imap ¤Ï¤³...
Àè¤Ëºî¤Ã¤¿¸°¤È¾ÚÌÀ½ñ¤È¤Ï°ã¤¦µ¡Ç½¤Î¤â¤Î¤Ê¤Î¤Ç¡¤¿·¤¿¤Ëºî¤é...
ÊýË¡¤Ï´Êñ¤Ç¡¤/usr/local/etc/courier-imap ¤Ë¥µ¥ó¥×¥ë¤È¤·...
¤½¤ì¤«¤é¡¤
cd /usr/local/share/courier-imap/
mkimapdcert
mkpop3dcert
¤È¤¹¤ë¤È¡¤/usr/local/share/courier-imap/ ¤Ë imapd.pem, po...
¥Õ¥¡¥¤¥ë̾¤â¾ì½ê¤âÆäËÊѹ¹¤òÍפ·¤Ê¤¤¤Î¤Ç¡¤¤³¤ì¤Ç¾ÚÌÀ½ñ¤Î...
¼¡¤Ë¡¤IMAP ËÜÂΤÎÀßÄê¤ò¹Ô¤ª¤¦. /usr/local/etc/courier-ima...
¶ñÂÎŪ¤Ë¤Ï¡¤
> IMAP_CAPABILITY="IMAP4rev1 UIDPLUS CHILDREN NAMESPACE ...
> IMAP_CAPABILITY_TLS="$IMAP_CAPABILITY AUTH=PLAIN AUTH=...
¤ÎÆ󥫽ê¤ò½¤Àµ(²èÌ̤ÎÅÔ¹ç¤ÇÀÞ¤êÊÖ¤·¤Æ¤¤¤ë¤¬¡¤³Æ¡¹ 1¹Ô¤º¤Ä...
³Æ¡¹¡¤¥Ç¥Õ¥©¥ë¥ÈÃͤ«¤éÊѤï¤Ã¤¿Éôʬ¤ò¸«¤ì¤Ð²¿¤ò¤·¤¿¤«¤Ï¤ï...
¤¢¤È¡¤POP ¥µ¡¼¥Ð¤â»È¤¤¤¿¤¤¤Ê¤é¤Ð¡¤¤È¤ê¤¢¤¨¤ºÆ±ÍÍ¤Ë pop3d ...
POP3AUTH="CRAM-MD5 CRAM-SHA1"
POP3AUTH_TLS="LOGIN PLAIN"
¤È½¤Àµ¤·¤Æ¤ª¤±¤Ð¤è¤¤.
¤µ¤Æ¡¤¤¢¤È¤Ï IMAP ¥µ¡¼¥Ð¤Îµ¯Æ°½àÈ÷¤Ç¤¢¤ë¤¬¡¤¤³¤ì¤Ï¥Ò¥ó¥È...
¤·¤«¤¿¤Ê¤¤¤Î¤Ç¡¤courier-imap ¥¤¥ó¥¹¥È¡¼¥ë»þ¤Î¥á¥Ã¥»¡¼¥¸¤ò...
This port has installed the following startup scrip...
these network services to be started at boot time.
/usr/local/etc/rc.d/courier-imap-pop3d-ssl.sh
/usr/local/etc/rc.d/courier-imap-imapd-ssl.sh
/usr/local/etc/rc.d/courier-imap-imapd.sh
/usr/local/etc/rc.d/courier-imap-pop3d.sh
¤È¤¢¤ë¤Î¤Ç¡¤¼ÂºÝ¤Ï¤³¤ì¤é¤Î¥¹¥¯¥ê¥×¥È¤¬µ¯Æ°Áàºî¤ò¹Ô¤¦¤Î¤À...
¤½¤·¤ÆÇ°¤Î°Ù¤Ë /usr/local/etc/rc.d ¥Ç¥£¥ì¥¯¥È¥ê¤òÇÁ¤¤¤Æ¤ß...
¤½¤³¤Ç¤³¤ì¤é¤Î¥Õ¥¡¥¤¥ë¤Î¤¦¤Á¡¤IMAP ¥µ¡¼¥Ð¤Îµ¯Æ°¤Ë´ØÏ¢¤·¤½...
¤¹¤ë¤È¡¤Î㤨¤Ð courier-imap-imapd.sh ¤Ë¤Ï
# Define these courier_imap_imapd_* variables in one of...
# /etc/rc.conf
# /etc/rc.conf.local
# /etc/rc.conf.d/courier_imap_imapd
#
# DO NOT CHANGE THESE DEFAULT VALUES HERE
courier_imap_imapd_enable=${courier_imap_imapd_enable-"...
¤È½ñ¤¤¤Æ¤¢¤ê¡¤¤É¤¦¤ä¤é /etc/rc.conf ¤Ë courier_imap_imapd...
ƱÍͤ˾£²¤Ä¤Î¥¹¥¯¥ê¥×¥È¥Õ¥¡¥¤¥ë¤Ë¤âµ½Ò¤¬¤¢¤ê¡¤¤³¤ì¤é¤ò...
# for IMAP
courier_authdaemond_enable="YES"
courier_imap_imapd_enable="YES"
courier_imap_imapd_ssl_enable="YES"
¤Ê¤É¤È½ñ¤¹þ¤à¤Î¤¬Îɤµ¤½¤¦¤À¤È¤¤¤¦¤³¤È¤¬¿ä¬¤Ç¤¤ë. ¤½¤³...
** IMAP ÍѤΥ桼¥¶¾ðÊó¤ÎÅÐÏ¿ [#y88b0d6e]
º£²ó¤Ï userdb ¤Ç¥Ñ¥¹¥ï¡¼¥É¾È¹ç¤ò¹Ô¤¦¤è¤¦¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤·...
¶ñÂÎŪ¤Ë¤Ï¼¡¤Î½çÈ֤Ǻî¶È¤ò¹Ô¤¨¤Ð¤è¤¤.
+ ¤Þ¤º¶õ¤Î¥Ç¥£¥ì¥¯¥È¥ê /usr/local/etc/userdb ¤òºîÀ®¤¹¤ë.
cd /usr/local/etc
mkdir userdb
chmod 700 ./userdb
¤Ê¤É¤È¤¹¤ì¤Ð¤è¤¤.
+ (¥Ñ¥¹¥ï¡¼¥É°Ê³°¤Î)¥æ¡¼¥¶¾ðÊó¤òÅÐÏ¿¤¹¤ë
-- /etc/passwd ¤«¤éºî¤ëÊýË¡
´û¤Ë¥·¥¹¥Æ¥à¤Î¥æ¡¼¥¶¤Ç¤â¤¢¤ë¤Ê¤é¤Ð´Êñ¤Ç¤ª¤¹¤¹¤á.
pw2userdb ¥³¥Þ¥ó¥É¤òÍѤ¤¤Æ
cd /usr/local/etc/userdb/
pw2userdb | grep ¥æ¡¼¥¶Ì¾ >> ./users
¤È¤¹¤ì¤Ð¤è¤¤.
-- Îí¤«¤éºî¤ëÊýË¡.
userdb ¥³¥Þ¥ó¥É¤ÇľÀܤ¤¤í¤¤¤í»ØÄꤹ¤ëÊýË¡. ¤Á¤ç¤¤ÌÌÅÝ.
userdb "john@example.com" set home=/home/vmail \
mail=/home/vmail/Maildir-john-example uid=UUU gid=GGG"
¤Ê¤É¤È¤¹¤ëÊýË¡.
+ ¥Ñ¥¹¥ï¡¼¥É¤òÀßÄꤹ¤ë.
cd /usr/local/etc/userdb
userdbpw -hmac-md5|userdb users/¥æ¡¼¥¶Ì¾ set hmac-md5pw
¤È¤¹¤ì¤Ð¤è¤¤. ¤³¤Î hmac-md5 ¤È¤¤¤¦¤Î¤¬ CRAM-MD5 ¤ÇÍøÍѤµ...
¤¦¤Þ¤¯¤¤¤Ã¤Æ¤¤¤ë¤«¤É¤¦¤«¡¤users ¥Õ¥¡¥¤¥ë¤òÆɤó¤Ç³Îǧ¤·¤Æ...
+ Äɲá¤Êѹ¹²Õ½ê¤ò͸ú¤Ë¤¹¤ë.
makeuserdb
¤È¤¹¤ì¤Ð¤è¤¤.
¤Ç¤Ï¤³¤³¤Ç¾å¤Î¼ê½ç¤Ë¤·¤¿¤¬¤Ã¤Æ IMAP ÍѤΥ桼¥¶¾ðÊó¤òÅÐÏ¿...
** courier-imap ¤ÎÆ°ºî³Îǧ [#c34258bd]
SMTP Auth ¤Î»þ¤ÈƱÍͤˡ¤2¤Ä¤Îʸ»úüËö¥¨¥ß¥å¥ì¡¼¥¿¤òÍÑ°Õ¤·...
¤¿¤À¤·¡¤Æ°ºî³Îǧ¤Ç¤â¤¿¤Ä¤¤¤Æ¤¤¤ë¤È courier-imap ¥µ¡¼¥Ð¤¬...
¤½¤Î¤¿¤á¤Î½àÈ÷¤òÀè¤Ë¤·¤Æ¤ª¤³¤¦. ¶ñÂÎŪ¤Ë¤Ï¡¤/usr/local/et...
IMAP_IDLE_TIMEOUT=60
¤È¤¤¤¦Éôʬ¤¬¡Ö60ÉÃÈ¿±þ¤¬¤Ê¤±¤ì¤ÐÀÚÃǡפȤ¤¤¦°ÕÌ£¤Ê¤Î¤Ç¡¤...
Î㤨¤Ð 180 ¤°¤é¤¤¤Ë¤¹¤ì¤ÐÌäÂê¤Ê¤¤¤À¤í¤¦.
¤Ê¤ª¡¤¤³¤Î¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤·¤¿¤é courier-imap ¥µ¡¼¥Ð¤ò°ìö...
¶ñÂÎŪ¤Ë¤Ï
/usr/local/etc/rc.d/courier-imap-imapd.sh stop
/usr/local/etc/rc.d/courier-imap-imapd.sh start
¤È¤·¤Æ¤ª¤±¤Ð¤è¤¤.
¤µ¤Æ¡¤¤Ç¤Ï SMTP Auth ¤Î»þ¤ÈƱ¤¸¤è¤¦¤Ë¤ä¤Ã¤Æ¤ß¤ë.
''Shell-A'' ¤Ç¡¤telnet localhost 143 ¤È¤¹¤ë¤È
Connected to localhost.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE T...
¤Ê¤É¤È¸À¤Ã¤Æ¤¯¤ë. ¤³¤³¤Ç¡¤
a authenticate cram-md5
¤ÈÆþÎϤ¹¤ë¤È
+ PG5hbmlrYS1pbWFwQHNlcnZlcj4=
¤Ê¤É¤È¥µ¡¼¥Ð¤«¤éʸ»úÎó¤¬Á÷¤é¤ì¤Æ¤¯¤ë.
¤³¤Îʸ»úÎó ''PG5hbmlrYS1pbWFwQHNlcnZlcj4='' ¤ËÂФ·¤Æ¡¤Àè...
Î㤨¤Ð¼¡¤Î¤è¤¦¤Ë¤Ê¤ë¤À¤í¤¦.
Username? testuser ¢« IMAP ÍѤËÅÐÏ¿¤·¤¿¥æ¡¼¥¶Ì¾
Password? password ¢« IMAP ÍѤËÅÐÏ¿¤·¤¿¥Ñ¥¹¥ï¡¼¥É
Send: AUTH CRAM-MD5 (or for imap, A AUTHENTICATE CRAM-M...
Paste the challenge here:
+ PG5hbmlrYS1pbWFwQHNlcnZlcj4= ¢« º£¤Îʸ»úÎó
Send this response:
dGVzdHVzZXIgYjlkMDA5MzQ4YmVjMzlkNzcwMWU4MWRiZWE3NmZhN2M=
¤³¤ÎºÇ¸å¤Îʸ»úÎó ''dGVzdHVzZXIgYjlkMDA5MzQ4YmVjMzlkNzcwMW...
¤½¤·¤Æ
a OK LOGIN Ok.
¤È¤Ê¤ì¤Ð¡¤IMAP ¥µ¡¼¥Ð¤Îǧ¾Ú¤¬Ä̤俤Ȥ¤¤¦¤³¤È¤Ë¤Ê¤ê¡¤Æ°ºî...
¤Ê¤ª¡¤POP ¥µ¡¼¥Ð¤òΩ¤Á¾å¤²¤¿¤Ê¤é¤ÐƱÍͤ˥ƥ¹¥È¤¬²Äǽ¤Ç¤¢¤ë.
¤½¤ÎºÝ¤Ï
telnet localhost 110
(¥µ¡¼¥Ð¤«¤é¤Î±þÅú)
capa
(¥µ¡¼¥Ð¤«¤é¤Î±þÅú)
auth cram-md5
(¥µ¡¼¥Ð¤«¤éʸ»úÎó¤òÁ÷¤Ã¤Æ¤¯¤ë)
(¤½¤ì¤ËÂбþ¤·¤ÆÊÖÅúÍÑʸ»úÎó¤òÍÑ°Õ¤·¤Æ¡Ä)
ÊÖÅúÍÑʸ»úÎóÄ¥¤êÉÕ¤±
¤È¤¤¤¦Î®¤ì¤Ë¤Ê¤ë.
*** ¼Â½¬ [#xc95fa94]
¤³¤³¤Þ¤Ç¤Îºî¶È¤ò¹Ô¤ª¤¦.
¤Þ¤¿¡¤Í¾Íµ¤¬¤¢¤ì¤ÐŬÅö¤Ê MUA ¤Ç IMAP ¥µ¡¼¥Ð¤ËÀܳ¤·¤Æ¤ß¤è...
¤µ¤é¤Ë;͵¤¬¤¢¤ì¤Ð¡¤IMAP over TLS/SSL ÀßÄê¤Ç¥µ¡¼¥Ð¤ËÀܳ...
* ¥ì¥Ý¡¼¥È [#p1151247]
ÅÓÃæ¤Ç¡ÖÄ´¤Ù¤è¡×¤È»Ø¼¨¤µ¤ì¤¿»ö¹à¤Ë¤Ä¤¤¤ÆÄ´ºº¤ò¹Ô¤¤¡¤Êó¹ð...
¤Þ¤¿¡¤¤³¤³¤Þ¤Ç¤Î¼Â½¬¤ò¹Ô¤¤¡¤Êó¹ð¤»¤è.
½ªÎ»¹Ô:
* ǧ¾Ú¥·¥¹¥Æ¥à¤Ë¤Ä¤¤¤Æ°ìÈÌŪ¤ÊÏà [#ue28434b]
unix ¥µ¡¼¥Ð¤Ë¸Â¤é¤º¡¤¥³¥ó¥Ô¥å¡¼¥¿°ìÈ̤ˡÖǧ¾Ú¡×¤È¤¤¤¦»ÅÁÈ...
´ðËÜŪ¤Ë¡¤´í¸±¤ÊÎΰè¤Ç¤¢¤ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤ò¥Ñ¥¹¥ï¡¼¥É¤ò...
¤½¤Î¤¿¤á¤Ë½é³Ø¼Ô¤Ë¤Ïº®Í𤬤¢¤ë¤«¤È»×¤¦¤¬¡¤¼ÂºÝ¤Ï¤³¤ÎÆó¥«...
¼ÂºÝ¡¤¤ª¤ª¤Þ¤«¤Ë¤Ï¡¤unix ¾å¤Ç¤Î¥½¥Õ¥È¥¦¥§¥¢¤ÏÄ̾ï¤Ï°Ê²¼¤Î...
&ref(./authentication-structure_ss.png);
CENTER:ǧ¾Ú¤Î°ìÈÌŪ¤Ê»ÅÁȤß
* Á°²ó¤«¤é¤Î³¤ [#ja89ff28]
** SMTP Auth ¤ÎÀßÄê(postfix) [#z61f2855]
¤µ¤Æ¡¤SMTP Auth ¤ÎÀßÄê¤È¤Ê¤ë¤È¥Þ¥Ë¥å¥¢¥ë¤Ë¤âÆä˵½Ò¤¬¤Ê...
SMTP Auth ¤Ë´Ø¤·¤Æ¤Ï¤Þ¤À¤Þ¤ÀÊѹ¹¤¬¤¢¤¤¤Ä¤¤¤Ç¤¤¤ë¤è¤¦¤Ê¤Î...
¶ñÂÎŪ¤Ë¤Ï http://www.postfix.org/SASL_README.html ¤ò¥Á¥§...
Enabling SASL authentication in the Postfix SMTP server
In order to enable SASL support in the Postfix SMTP ser...
/etc/postfix/main.cf:
smtpd_sasl_auth_enable = yes
In order to allow mail relaying by authenticated remote...
/etc/postfix/main.cf:
smtpd_recipient_restrictions =
permit_mynetworks
permit_sasl_authenticated
reject_unauth_destination
To report SASL login names in Received: message headers...
/etc/postfix/main.cf:
smtpd_sasl_authenticated_header = yes
Note: the SASL login names will be shared with the enti...
Older Microsoft SMTP client software implements a non-s...
of the AUTH protocol syntax, and expects that the SMTP ...
EHLO with "250 AUTH=mechanism-list" instead of "250 AUT...
To accommodate such clients (in addition to conformant ...
/etc/postfix/main.cf:
broken_sasl_auth_clients = yes
¤Þ¤º¤Ï¤³¤Î»Ø¼¨¤Ë¤·¤¿¤¬¤Ã¤Æ main.cf ¤ò½¤Àµ¤·¤è¤¦. ¤¿¤À¤·...
¤µ¤é¤Ë¾åµ»ñÎÁ¤òÆɤ߿ʤà¤È¡¤
Cyrus SASL configuration for the Postfix SMTP server
¤Ç»Ï¤Þ¤ëÉôʬ¤¬¤¢¤ë¤Î¤Ç¤³¤ì¤Þ¤¿Æɤޤʤ¤¤È¤¤¤±¤Ê¤¤. ¤¿¤À¤³...
smtpd_sasl_path = smtpd
smtpd_sasl_local_domain = $myhostname
¤¿¤À¤·¡¤¤³¤³¤òÆɤßÈô¤Ð¤µ¤Ê¤¤Êý¤¬Îɤ¤. ¤È¤¤¤¦¤Î¤â¡¤SMTP au...
¶ñÂÎŪ¤Ë¤Ï¡¤
saslpasswd2 -c -u `postconf -h myhostname` exampleuser
¤È¤»¤è¡¤¤È½ñ¤¤¤Æ¤¢¤ë(ºÇ¸å¤Î "exampleuser" ¤È¤¤¤¦¤Î¤Ï¥æ¡¼...
** SMTP Auth ¤ÎÆ°ºî³Îǧ [#s456d9a5]
*** ¥æ¡¼¥¶¤ÎÅÐÏ¿(SMTP Auth ÀìÍѤÇ) [#vdd4553f]
SMTP Auth ¤ò¹Ô¤¦ºÝ¡¤¥æ¡¼¥¶¤È¥Ñ¥¹¥ï¡¼¥É¤Î¾È¹ç¤ò¤É¤¦¤¤¤¦¥Ç...
º£²ó¤ÏÆäËÊ£¿ô¤ÎÁªÂò»è¤ò»ØÄꤷ¤Æ¤¤¤Ê¤¤((¾Ü¤·¤¯¤ÏÁ°²ó¤Î¼ø...
¤È¤¤¤¦¤³¤È¤Ï¡¤SMTP Auth ¤ò»È¤¦Á°¤Ë¡¤ÍøÍѼԤÎÅÐÏ¿¤¬É¬ÍפÀ...
¶ñÂÎŪ¤Ë¤Ï¡¤¾å¤Ë¤¢¤ë¤è¤¦¤Ë saslpasswd2 ¥³¥Þ¥ó¥É¤ò»È¤¦¤³¤È...
¤Á¤Ê¤ß¤Ë¡¤¥æ¡¼¥¶¤È(SMTP Auth ÀìÍѤÎ)¥Ñ¥¹¥ï¡¼¥É¤¬¤¤Á¤ó¤È...
sasldblistusers2
¤È¤¹¤ë¤È
¥æ¡¼¥¶Ì¾@¥Û¥¹¥È̾: userPassword
¤Ê¤É¤È¤¤¤¦É½¼¨¤¬½Ð¤ë¤Î¤Ç³Îǧ¤Ç¤¤ë.
*** ¼Â½¬ [#ha38d029]
¥æ¡¼¥¶¤ò SMTP Auth ÍѤËÅÐÏ¿¤·¤è¤¦.
¤Þ¤¿¡¤Á°²ó¼ø¶È»ñÎÁ¤ËºÜ¤Ã¤Æ¤¤¤ë¥í¥°¥á¥Ã¥»¡¼¥¸¤Ë¤è¤ë¤È SMTP...
¤³¤ì¤é¤Ï²¿¤«¡¤Ä´¤Ù¤Æ¤ß¤è.
*** ¼ÂºÝ¤Ë¼ê¤ÇÀܳ¤·¤Æ¤ß¤ë. [#f569f61c]
SMTP Auth ¤ÇÀܳ¤¹¤ëºÝ¤Îǧ¾ÚÊýË¡¤Ë¤â¤¤¤¯¤Ä¤«¤¢¤ê¡¤¼«Í³¤Ë...
º£²ó¤Î¥¤¥ó¥¹¥È¡¼¥ë¤Ç¤ÏÆäËÀßÄê¤ò²Ã¤¨¤Ê¤±¤ì¤Ð NTLMǧ¾Ú¡¤lo...
¤½¤³¤Ç¡¤¤³¤Î¤¦¤Á¤Î´Êñ¤ËÍøÍѤǤ¤ë¤¬°Å¹æ²½¥Ê¥·¤Î plainǧ...
¤½¤ÎÁ°¤Ë¡¤¸å¤ÇÍѤ¤¤ë¥³¥Þ¥ó¥É¤Ç¤¢¤ë mmencode ¤ò½àÈ÷¤È¤·¤Æ...
¶ñÂÎŪ¤Ë¤Ï¡¤ports ¥³¥ì¥¯¥·¥ç¥ó¤ò¿·¤·¤¯¤·¤Æ¤ª¤¤¤Æ¤«¤é¡¤
portinstall mmencode
¤È¤¹¤ì¤Ð¤è¤¤.
*** ¼ê¤Ç SMTP Auth ¤ò»î¤¹ : Plain ǧ¾Ú¤Î¾ì¹ç [#ub232516]
Plain ǧ¾Ú¤Ï¤ªµ¤³Ú¤Ê¥â¥Î¤Ç¡¤SMTP Auth »þ¤Ëʸ»úÎó "\0¥æ¡¼...
¤Á¤Ê¤ß¤Ë¡¤base 64 ¤Ï°Å¹æ²½¤Ç¤Ï¤Ê¤¯¤Æ(¥³¥ó¥Ô¥å¡¼¥¿¤Ç°·¤¦¤Î...
¤Ä¤Þ¤ê¡¤¥Ñ¥¹¥ï¡¼¥ÉÅù¤ò base64 ¥¨¥ó¥³¡¼¥É¤·¤¿¤â¤Î(¸å½Ò¤Î m...
¤µ¤Æ¡¤ÀܳÁ°¤ËÀܳ¤ËɬÍפÊʸ»úÎó¤òºî¤Ã¤Æ¤·¤Þ¤ª¤¦.
¶ñÂÎŪ¤Ë¤Ï¡¤¥³¥Þ¥ó¥É¥é¥¤¥ó¤Ç
printf '\0000¥æ¡¼¥¶Ì¾\0000¥Ñ¥¹¥ï¡¼¥É' | mmencode
¤È¤¹¤ì¤Ð¤è¤¤((\0000 ¤È¤Ê¤Ã¤Æ¤¤¤ë¤È¤³¤í¤Ï \0 ¤Ç¤â¤è¤¤¤Î¤À...
¥æ¡¼¥¶Ì¾¤È¥Ñ¥¹¥ï¡¼¥É¤Ï¤µ¤¤Û¤É SMTP Auth ÍÑ¤Ë saslpasswd2...
¤³¤¦¤¹¤ë¤È¡¤'\0¥æ¡¼¥¶Ì¾\0¥Ñ¥¹¥ï¡¼¥É' ¤¬ base64 ¥¨¥ó¥³¡¼¥É...
¤¢¤È¤Ï¤¤¤Ä¤â¤Î¤è¤¦¤Ë telnet localhost 25 ¤Ç¼«Á°¤Î MTA ¤Ë...
¤¤¤Ä¤â¤Î¤è¤¦¤Ë "EHLO localhost" ¤È¤·¤Æ±þÅú¤ò¿Ê¤á¤ë¤È¡¤¼¡...
250-(¥Û¥¹¥È̾)
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-AUTH NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-AUTH=NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
¤³¤ÎÃʳ¬¤Ç SMTP Auth ¤Î Plain ǧ¾Ú¤ò»î¤·¤Æ¤ß¤è¤¦.
¶ñÂÎŪ¤Ë¤Ï¡¤¤³¤³¤Ç
AUTH PLAIN Àè¤Û¤Ébase64¥¨¥ó¥³¡¼¥É¤·¤Æºî¤Ã¤¿Ê¸»úÎó
¤ÈÆþÎϤ¹¤ì¤Ð¤è¤¤. Plain ǧ¾Ú¤Ï¤³¤ì¤À¤±¤ÇºÑ¤à.
¤½¤·¤Æ
235 2.0.0 Authentication successful
¤Ê¤É¤È "success" ¤Î°Õ¤¬¥á¥Ã¥»¡¼¥¸¤ÇÊ֤äƤ¯¤ì¤Ð¡¤Ç§¾Ú¤¬ÄÌ...
¤¦¤Þ¤¯¤¤¤«¤Ê¤¤¿Í¤ÏÃúÇ«¤Ë¤³¤ì¤Þ¤Ç¤Îºî¶È¤ò¿¶¤êÊÖ¤í¤¦.
*** ¼Â½¬ [#y3077878]
¤³¤³¤Þ¤Ç½ñ¤¤¤Æ¤¢¤ë¤³¤È¤ò¼Â¹Ô¤·¤è¤¦.
*** ¼ê¤Ç SMTP Auth ¤ò»î¤¹ : CRAM-MD5 ǧ¾Ú¤Î¾ì¹ç [#eee6a04a]
CRAM-MD5ǧ¾Ú¤ÏÀè¤Î Plainǧ¾Ú¤È°ã¤Ã¤Æ¡¤¥Ñ¥¹¥ï¡¼¥É¤òʿʸ¤Ç...
¶ñÂÎŪ¤Ë¤Ï¡¤Àܳ¤¹¤ë¤È¥µ¡¼¥Ð¤¬Å¬Åö¤Êʸ»úÎó¤òÁ÷¤Ã¤Æ¤¯¤ë¤Î...
¤ä¤ä¤³¤·¤¤¤¬¡¤¼Â¤Ï CRAM-MD5 ¤ò¥Æ¥¹¥È¤¹¤ë¤¿¤á¤Î¥¹¥¯¥ê¥×¥È ...
¤è¤Ã¤Æ¡¤''¤³¤³¤Îºî¶È¤Ï¸å½Ò¤Î courier-imap ¤ò¥¤¥ó¥¹¥È¡¼¥ë...
¤¿¤À¤·¡¤courier-imap ¤ÎÀßÄê¤Ï¤·¤Ê¤¤¤ÇÌá¤Ã¤Æ¤¤Æ¤è¤¤.
°Ê²¼¤Îºî¶È¤Ë¤Ï¥³¥ó¥½¡¼¥ë¤¬Æó¤Ä°Ê¾å¤¢¤Ã¤¿Êý¤¬ÊØÍø¤Ê¤Î¤Ç¡¤X...
¾õ¶·¤òʬ¤«¤ê¤ä¤¹¤¯¤¹¤ë¤¿¤á¤Ë¡¤¤³¤ì¤«¤é³Æ¡¹¤Î¥¨¥ß¥å¥ì¡¼¥¿...
¤Þ¤º¡¤''Shell-A'' ¤Ç telnet localhost 25 ¤ÇÀè¤ÈƱ¤¸¤è¤¦¤Ë
250-AUTH NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-AUTH=NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
¤È¤¤¤¦¤È¤³¤í¤Þ¤Ç¤¤¤³¤¦. ¤½¤·¤Æ¤³¤³¤Ç
auth cram-md5
¤ÈÆþÎϤ¹¤ë. ¤¹¤ë¤È¡¤
334 PG5hbmlrYW5vLXNlcnZlcj4=
¤Ê¤É¤È½ÐÎϤ¬Ê֤äƤ¯¤ë.
¤³¤Î ''PG5hbmlrYW5vLXNlcnZlcj4='' ¤¬¥µ¡¼¥Ð¤¬ base64 ¤ÇÁ÷...
¶ñÂÎŪ¤Ë¤Ï ''Shell-B ¤Ç'' userdb-test-cram-md5 ¤ò¼Â¹Ô¤·¤Æ...
Username? testuser ¢« (SMTP Auth ¤Ë»È¤¦)¥æ¡¼¥¶Ì¾¤òÆþÎϤ¹¤ë
Password? password ¢« (SMTP Auth ¤Ë»È¤¦)¥Ñ¥¹¥ï¡¼¥É¤òÆþ...
Send: AUTH CRAM-MD5 (or for imap, A AUTHENTICATE CRAM-M...
Paste the challenge here:
+ PG5hbmlrYW5vLXNlcnZlcj4= ¢« Shell-A ¤Ç¥µ¡¼¥Ð¤¬Á÷¤Ã¤Æ¤...
Send this response:
dGVzdHVzZXIgY2NiNjc4YmZjZGY1YWRlMGUyYmE2MmM3ODA3OTA1NGI=
¤¹¤ë¤È¡¤¾å¤Î¤è¤¦¤ËºÇ¸å¤ËÊÖÅú¤¹¤Ù¤Ê¸»úÎó¤òÀ¸À®¤·¤Æ¤¯¤ì¤ë.
¤½¤³¤Ç¤³¤Îʸ»úÎó(¤³¤ÎÎã¤Î¾ì¹ç¤Ï ''dGVzdHVzZXIgY2NiNjc4YmZ...
¤ò¤µ¤Ã¤¤Î ''Shell-A ¤Ç¤Îºî¶È¤Î³¤¤Ë'' ÆþÎϤ¹¤ë.
ǧ¾Ú¤¬Ä̤ì¤Ð¤³¤Î¤¢¤È
235 2.0.0 Authentication successful
¤Ê¤É¤È¤¦¤Þ¤¯¤¤¤¯¤À¤í¤¦.
** SMTP over TLS ¤ÎÀßÄê¤ÈÆ°ºî³Îǧ [#ia488eff]
*** SMTP over TLS ¤ÎÀßÄê [#odede9af]
TLS ¤ÎÍøÍѤˤĤ¤¤Æ¤Ï¡¤ÀßÄê¤Î¤Þ¤¨¤Ë¸°¤È¾ÚÌÀ½ñ¤òÍÑ°Õ¤·¤Ê¤¤...
web server ¤ÎÀßÄê¤Î»þ¤Ëºî¤Ã¤¿¸°¤È¾ÚÌÀ½ñ¤ò /etc/ssl ¤Ë(ÈÆ...
º£²ó¤Ï¸°¤È¾ÚÌÀ½ñ¤ò¿·¤·¤¯ºî¤Ã¤Æ((¤ä¤êÊý¤Ï¼ø¶ÈÂè07²ó¤Î SSL ...
¤¿¤À¤·¡¤¤³¤Î¥Õ¥¡¥¤¥ë¤¬Â¾¤Î¿Í¤ËÆɤá¤Æ¤·¤Þ¤¦¤Èº¤¤ë¤Î¤Ç¡¤ºî...
chmod 400 postfix.key
chmod 400 postfix.crt
¤È¤·¤Æ¤ª¤³¤¦.
¤µ¤Æ¡¤Postfix ¤ÎÀßÄê¤Ï¡¤ËܲȤΥɥ¥å¥á¥ó¥È(http://www.pos...
¥µ¡¼¥Ð¤«¥¯¥é¥¤¥¢¥ó¥È¤«¤äǧ¾Ú¤ò¤É¤¦¤¹¤ë¤«¤Ê¤É¿¾¯¤ä¤ä¤³¤·...
¤È¤ê¤¢¤¨¤º /usr/local/etc/postfix/main.cf ¤Ë
smtpd_tls_cert_file = /usr/local/etc/postfix/postfix.crt
smtpd_tls_key_file = /usr/local/etc/postfix/postfix.key
smtpd_tls_received_header = yes
smtpd_tls_security_level = may
smtp_tls_security_level = may
smtp_tls_note_starttls = yes
¤Ê¤É¤È²Ã¤¨¤ì¤ÐÎɤ¤((Postfix ¤ÎÀßÄêÊýË¡¤¬ºÇ¶áÊѤï¤Ã¤¿¤¿¤á...
¤³¤ÎÊÔ½¸¤¬½ª¤ï¤Ã¤¿¤é¡¤postfix ¤ò°ìöÄä»ß¤·¤Æ¤«¤éºÆµ¯Æ°¤¹¤ë.
/usr/local/etc/rc.d/postfix stop
/usr/local/etc/rc.d/postfix start
ºÆµ¯Æ°»þ¤Ë²¿¤«¥¨¥é¡¼¤ä·Ù¹ð¤¬½Ð¤Æ¤¤¤Ê¤¤¤«Ãí°Õ¤·¤Æ¤ª¤³¤¦.
*** SMTP over TLS ¤ÎÆ°ºî³Îǧ [#c0579bf3]
¤¦¤Þ¤¯¤¤¤Ã¤Æ¤¤¤ë¤è¤¦¤À¤Ã¤¿¤éºÆ¤Ó telnet localhost 25 ¤Ç³Î...
¤³¤ì¤Þ¤Ç¤ÈƱÍͤË(ÅÓÃæ¤Ç EHLO localhost ¤·¤Æ)
250-(¥Û¥¹¥È̾)
250-PIPELINING
250-SIZE 10240000
250-VRFY
250-ETRN
250-STARTTLS
250-AUTH NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-AUTH=NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
¤Ê¤É¤È¤Ê¤ë(¤³¤³¤Ç quit ¤ÈÆþÎϤ¹¤ë¤ÈÈ´¤±¤é¤ì¤ë).
Îɤ¯¤ß¤ë¤È "250-STARTTLS" ¤È¤¤¤¦Éôʬ¤¬¤¢¤ê¡¤¤È¤ê¤¢¤¨¤º TL...
¤³¤ì¤¬½Ð¤Ê¤¤¤è¤¦¤Ê¤é²¿¤«¤ª¤«¤·¤¤¤Î¤Ç¤³¤ì¤Þ¤Ç¤Îºî¶È¤ò¿¶¤ê...
¤µ¤Æ¡¤TLS ¤ÎÆ°ºî¤Î³Îǧ¤À¤¬¡¤¤³¤³¤Ç SMTP ¤ÎÆ°ºî¥Á¥§¥Ã¥¯¤Ë...
¤½¤ì¤Ï ''swaks'' (Swiss Army Knife SMTP) ¤È¤è¤Ð¤ì¤ë¤â¤Î¤Ç...
¤È¤¤¤¦¤ï¤±¤Ç¤Þ¤º¤Ï ports¥³¥ì¥¯¥·¥ç¥ó¤ò portsnap ¤Ç¿·¤·¤¯...
portinstall swaks
¤È¤¹¤ì¤Ð¤è¤¤. ¥¤¥ó¥¹¥È¡¼¥ë»þ¤Ë¥ª¥×¥·¥ç¥óÁªÂò²èÌÌ
&ref(./swaks-install_s.png);
¤¬½Ð¤¿¤é¡¤¾¯¤Ê¤¯¤È¤â "MX lookup support" ¤È "TLS support"...
¤µ¤Æ, swaks ¤Î»È¤¤Êý¤Ï swaks --help ¤È¤¹¤ë¤È¥Þ¥Ë¥å¥¢¥ë¤¬...
¤Þ¤º¤Ïñ¤Ë MTA ¤¬Æ°ºî¤·¤Æ¤¤¤ë¤«¤Î³Îǧ¤«¤é.
swaks --server localhost
¤È¤¹¤ë¤È¡¤¥Æ¥¹¥È¥á¡¼¥ë¤Î°¸Àè¤òʹ¤¤¤Æ¤¯¤ë¤Î¤Ç, ¼«Ê¬¤Î¥¢¥«...
=== Trying localhost:25...
=== Connected to localhost.
<- 220 ¥µ¡¼¥Ð̾ ESMTP Postfix
-> EHLO ¥µ¡¼¥Ð̾
<- 250-¥µ¡¼¥Ð̾
<- 250-PIPELINING
<- 250-SIZE 10240000
<- 250-VRFY
<- 250-ETRN
<- 250-STARTTLS
<- 250-AUTH NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
<- 250-AUTH=NTLM LOGIN PLAIN GSSAPI DIGEST-MD5 CRAM-MD5
<- 250-ENHANCEDSTATUSCODES
<- 250-8BITMIME
<- 250 DSN
-> MAIL FROM:<º¹½Ð¿Í¥¢¥É¥ì¥¹>
<- 250 2.1.0 Ok
-> RCPT TO:<°¸Àè>
<- 250 2.1.5 Ok
-> DATA
<- 354 End data with <CR><LF>.<CR><LF>
-> Date: ÆüÉÕ
-> To: °¸Àè
-> From: º¹½Ð¿Í
-> Subject: test ÆüÉÕ
-> X-Mailer: swaks v20061116.0 jetmore.org/john/code/#...
->
-> This is a test mailing
->
-> .
<- 250 2.0.0 Ok: queued as D6E7C11430
-> QUIT
<- 221 2.0.0 Bye
¤È MTA ¤È¤ä¤ê¼è¤ê¤·¤Æ¡¤¤½¤ÎÅÓÃæ·Ð²á¤ò¤¤Á¤ó¤È½ÐÎϤ·¤Æ¤¯¤ì...
¼¡¤Ë¡¤SMTP Auth ¤Î plainǧ¾Ú¤ò»î¤·¤Æ¤ß¤è¤¦. ¤¿¤À¤·¡¤¤¤¤Á...
swaks --auth PLAIN --server localhost --quit RCPT
¤¹¤ë¤ÈºÇ½é¤Ë(¼ÂºÝ¤Ë¤ÏÁ÷¤é¤Ê¤¤¤¬)¥Æ¥¹¥È¥á¡¼¥ë¤Î°¸Àè¤òʹ¤¤...
¼¡¤Ë SMTP Auth ¤Î CRAM-MD5 ǧ¾Ú¤ò»î¤·¤Æ¤ß¤ë. ¤½¤ì¤Ë¤Ï
swaks --auth CRAM-MD5 --server localhost --quit RCPT
¤È¤¹¤ì¤Ð¤è¤¤. ¸å¤Ï¤µ¤Ã¤¤Î¤ÈƱ¤¸¤Ç¤¢¤ë.
¤µ¤Æ¡¤¤ä¤Ã¤È´Î¿´¤Î SMTP over TLS ¤ò¥Æ¥¹¥È¤·¤è¤¦. ¤È¤¤¤Ã¤Æ...
swaks -tls --server localhost
¤È¤¹¤ì¤Ð¤è¤¤. ¤¿¤À¤·¡¤Ç°¤Î°Ù¤Ë¥Æ¥¹¥È¥á¡¼¥ë¤ò¼ÂºÝ¤ËÁ÷¤í¤¦...
¤³¤ì¤ò¼Â¹Ô¤·¤Æ¡¤swaks ¤Î½ÐÎϤòÆɤó¤ÇÌäÂ꤬¤Ê¤±¤ì¤Ð OK ¤À....
ºÇ¸å¤Ë¡¤SMTP Auth ¤È SMTP over TLS ¤òÁȤ߹ç¤ï¤»¤Æ¤ß¤è¤¦. ...
¶ñÂÎŪ¤Ë¤ÏÎ㤨¤Ð¼¡¤Î¤è¤¦¤Ë¤¹¤ì¤Ð¤è¤¤(SMTP Auth ¤Ï¼«Æ°Åª¤Ë...
swaks --auth -tls --server localhost --quit RCPT
¤³¤³¤Ç½ÐÎϤòÃúÇ«¤ËÆɤó¤Ç¤ß¤è¤¦. ¤½¤·¤Æ ''starttls ¤·¤Æ¤«...
¤³¤ì¤Ï SMTP over TLS ¤ÈÁȤ߹ç¤ï¤»¤ë¤Ê¤é¤Ðǧ¾Ú(¥Ñ¥¹¥ï¡¼¥É...
*** ¼Â½¬ [#l2766ac6]
SMTP over TLS/SSL ¤Ë¤Ï¾åµ¤Î StartTLS ¤Î¾¤Ë¤â¤¦¤Ò¤È¤Ä SM...
¤Ç¤Ï¡¤SMTPS ¤È¤Ï²¿¤«¡¤StartTLS ¤ÈÈæ¤Ù¤Æ¤ÎÍøÅÀ/·çÅÀ¤Ï²¿¤«...
¤µ¤é¤Ë;ÎϤ¬¤¢¤ë¤è¤¦¤À¤Ã¤¿¤é²¿¤«¼ê¸µ¤Î MUA ¤Ç starttls ¤Ë...
* IMAP/POP ¥µ¡¼¥Ð¤Î¥¤¥ó¥¹¥È¡¼¥ë¡¤´ÉÍý [#bc50b8a7]
¤µ¤Æ¡¤¥æ¡¼¥¶°¸¤ËÆϤ¤¤¿¥á¡¼¥ë¤ò MUA ¤ËÅϤ¹¤Î¤Ë¹¤¯»È¤ï¤ì¤Æ...
¤¤¤Þ¤À¹¤¯»È¤ï¤ì¤Æ¤¤¤ë POP¡¤¥æ¡¼¥¶¤Ë¤È¤Ã¤Æ¤ÏÊØÍø¤À¤¬¥µ¡¼...
¤³¤³¤Ç¤Ï¡¤¾ÍèŪ¤Ê¤³¤È¤â¹Í¤¨¤Æ IMAP ¥µ¡¼¥Ð¤Ë¤Ä¤¤¤Æ³Ø½¬¤·...
¤µ¤Æ¡¤IMAP ¥µ¡¼¥Ð¤È¤·¤Æ¤Ï courier-imap ¤¬¹¤¯»È¤ï¤ì¤Æ¤¤¤ë...
¤Ê¤ª¡¤courier-imap ¤ò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤È°ì½ï¤Ë courier-pop...
** courier-imap ¤Î¥¤¥ó¥¹¥È¡¼¥ë [#s46e219d]
¤µ¤Æ¡¤¤¤¤Ä¤â¤Î¤è¤¦¤Ë ports ¥³¥ì¥¯¥·¥ç¥ó¤«¤é¥¤¥ó¥¹¥È¡¼¥ë¤·...
¤¿¤À¤·¡¤imap ¥µ¡¼¥Ð¤Î¥¤¥ó¥¹¥È¡¼¥ë¤ÎÁ°¤Ë courier-authlib(c...
¤¤¤Ä¤â¤Î¤è¤¦¤Ë
portinstall courier-authlib
¤È¤¹¤ë. ºÇ½é¤Ë½Ð¤ë¥ª¥×¥·¥ç¥ó²èÌ̤ǤÏ
&ref(./courierauth-install.png);
¤Î¤è¤¦¤Ë¾¯¤Ê¤¯¤È¤â userdb ¤òÁª¤ó¤Ç¤ª¤¯. ¤¢¤È¤Ï¥¹¥à¡¼¥º¤Ë...
¼¡¤Ë
portinstall courier-imap
¤È¤·¤Æ courier-imap ËÜÂΤò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë. ºÇ½é¤Ë¥ª¥×¥·...
&ref(courierimap-install.png);
¤¬½Ð¤ë¤¬¡¤Â¿Ê¬¥Ç¥Õ¥©¥ë¥È¤Ç OpenSSL ¤È IPv6 ¤¬Áª¤Ð¤ì¤Æ¤¤¤ë...
¤·¤Ð¤é¤¯ÂԤäƤ¤¤ë¤È(¤¤¤¯¤Ä¤«Â¾¤ËɬÍפʥ½¥Õ¥È¥¦¥§¥¢¤ò¥¤¥ó...
¤½¤ÎÅÓÃæ¤Ç¤ä¤Ï¤ê¤¤¤¯¤Ä¤«¥á¥Ã¥»¡¼¥¸¤¬½Ð¤ë¤¬¡¤º£²ó¤Ï¾¯¤Ê¤á...
In case you use authpam, you should put the following l...
in your /etc/pam.d/imap
auth required pam_unix.so try_first_pass
account required pam_unix.so try_first_pass
session required pam_permit.so
You will have to run /usr/local/share/courier-imap/mkim...
a self-signed certificate if you want to use imapd-ssl.
And you will have to copy and edit the *.dist files to *
in /usr/local/etc/courier-imap.
¤³¤ì¤Ï¡¤IMAP ¤Îǧ¾ÚÊýË¡¤È¤·¤Æ¾¤ÎÊýË¡¤Ç¤¢¤ë PAM ¤ò»È¤¤¤¿...
¤¤¤º¤ì¤â·ë¹½½ÅÍפʥá¥Ã¥»¡¼¥¸¤Ê¤Î¤Ç¡¤ÆɤßÈô¤Ð¤µ¤Ê¤¤¤è¤¦¤Ë...
** courier-imap ¤ÎÀßÄê [#m47e11c1]
¤µ¤Æ¡¤¥¤¥ó¥¹¥È¡¼¥ë¤¬ºÑ¤à¤È /usr/local/etc/authlib ¤Ëǧ¾Ú...
¤Þ¤ºÇ§¾Ú´Ø·¸¤òÀ°Íý¤·¤è¤¦.
ǧ¾Úµ¡¹½¤½¤Î¤â¤Î¤ÎÀßÄê¤Ë¤Ä¤¤¤Æ¤Ï /usr/local/etc/authlib ...
¼¡¤Ë¡¤over TLS/SSL ¤Ç»È¤¦¼«¸Êǧ¾Ú¾ÚÌÀ½ñ(courier-imap ¤Ï¤³...
Àè¤Ëºî¤Ã¤¿¸°¤È¾ÚÌÀ½ñ¤È¤Ï°ã¤¦µ¡Ç½¤Î¤â¤Î¤Ê¤Î¤Ç¡¤¿·¤¿¤Ëºî¤é...
ÊýË¡¤Ï´Êñ¤Ç¡¤/usr/local/etc/courier-imap ¤Ë¥µ¥ó¥×¥ë¤È¤·...
¤½¤ì¤«¤é¡¤
cd /usr/local/share/courier-imap/
mkimapdcert
mkpop3dcert
¤È¤¹¤ë¤È¡¤/usr/local/share/courier-imap/ ¤Ë imapd.pem, po...
¥Õ¥¡¥¤¥ë̾¤â¾ì½ê¤âÆäËÊѹ¹¤òÍפ·¤Ê¤¤¤Î¤Ç¡¤¤³¤ì¤Ç¾ÚÌÀ½ñ¤Î...
¼¡¤Ë¡¤IMAP ËÜÂΤÎÀßÄê¤ò¹Ô¤ª¤¦. /usr/local/etc/courier-ima...
¶ñÂÎŪ¤Ë¤Ï¡¤
> IMAP_CAPABILITY="IMAP4rev1 UIDPLUS CHILDREN NAMESPACE ...
> IMAP_CAPABILITY_TLS="$IMAP_CAPABILITY AUTH=PLAIN AUTH=...
¤ÎÆ󥫽ê¤ò½¤Àµ(²èÌ̤ÎÅÔ¹ç¤ÇÀÞ¤êÊÖ¤·¤Æ¤¤¤ë¤¬¡¤³Æ¡¹ 1¹Ô¤º¤Ä...
³Æ¡¹¡¤¥Ç¥Õ¥©¥ë¥ÈÃͤ«¤éÊѤï¤Ã¤¿Éôʬ¤ò¸«¤ì¤Ð²¿¤ò¤·¤¿¤«¤Ï¤ï...
¤¢¤È¡¤POP ¥µ¡¼¥Ð¤â»È¤¤¤¿¤¤¤Ê¤é¤Ð¡¤¤È¤ê¤¢¤¨¤ºÆ±ÍÍ¤Ë pop3d ...
POP3AUTH="CRAM-MD5 CRAM-SHA1"
POP3AUTH_TLS="LOGIN PLAIN"
¤È½¤Àµ¤·¤Æ¤ª¤±¤Ð¤è¤¤.
¤µ¤Æ¡¤¤¢¤È¤Ï IMAP ¥µ¡¼¥Ð¤Îµ¯Æ°½àÈ÷¤Ç¤¢¤ë¤¬¡¤¤³¤ì¤Ï¥Ò¥ó¥È...
¤·¤«¤¿¤Ê¤¤¤Î¤Ç¡¤courier-imap ¥¤¥ó¥¹¥È¡¼¥ë»þ¤Î¥á¥Ã¥»¡¼¥¸¤ò...
This port has installed the following startup scrip...
these network services to be started at boot time.
/usr/local/etc/rc.d/courier-imap-pop3d-ssl.sh
/usr/local/etc/rc.d/courier-imap-imapd-ssl.sh
/usr/local/etc/rc.d/courier-imap-imapd.sh
/usr/local/etc/rc.d/courier-imap-pop3d.sh
¤È¤¢¤ë¤Î¤Ç¡¤¼ÂºÝ¤Ï¤³¤ì¤é¤Î¥¹¥¯¥ê¥×¥È¤¬µ¯Æ°Áàºî¤ò¹Ô¤¦¤Î¤À...
¤½¤·¤ÆÇ°¤Î°Ù¤Ë /usr/local/etc/rc.d ¥Ç¥£¥ì¥¯¥È¥ê¤òÇÁ¤¤¤Æ¤ß...
¤½¤³¤Ç¤³¤ì¤é¤Î¥Õ¥¡¥¤¥ë¤Î¤¦¤Á¡¤IMAP ¥µ¡¼¥Ð¤Îµ¯Æ°¤Ë´ØÏ¢¤·¤½...
¤¹¤ë¤È¡¤Î㤨¤Ð courier-imap-imapd.sh ¤Ë¤Ï
# Define these courier_imap_imapd_* variables in one of...
# /etc/rc.conf
# /etc/rc.conf.local
# /etc/rc.conf.d/courier_imap_imapd
#
# DO NOT CHANGE THESE DEFAULT VALUES HERE
courier_imap_imapd_enable=${courier_imap_imapd_enable-"...
¤È½ñ¤¤¤Æ¤¢¤ê¡¤¤É¤¦¤ä¤é /etc/rc.conf ¤Ë courier_imap_imapd...
ƱÍͤ˾£²¤Ä¤Î¥¹¥¯¥ê¥×¥È¥Õ¥¡¥¤¥ë¤Ë¤âµ½Ò¤¬¤¢¤ê¡¤¤³¤ì¤é¤ò...
# for IMAP
courier_authdaemond_enable="YES"
courier_imap_imapd_enable="YES"
courier_imap_imapd_ssl_enable="YES"
¤Ê¤É¤È½ñ¤¹þ¤à¤Î¤¬Îɤµ¤½¤¦¤À¤È¤¤¤¦¤³¤È¤¬¿ä¬¤Ç¤¤ë. ¤½¤³...
** IMAP ÍѤΥ桼¥¶¾ðÊó¤ÎÅÐÏ¿ [#y88b0d6e]
º£²ó¤Ï userdb ¤Ç¥Ñ¥¹¥ï¡¼¥É¾È¹ç¤ò¹Ô¤¦¤è¤¦¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤·...
¶ñÂÎŪ¤Ë¤Ï¼¡¤Î½çÈ֤Ǻî¶È¤ò¹Ô¤¨¤Ð¤è¤¤.
+ ¤Þ¤º¶õ¤Î¥Ç¥£¥ì¥¯¥È¥ê /usr/local/etc/userdb ¤òºîÀ®¤¹¤ë.
cd /usr/local/etc
mkdir userdb
chmod 700 ./userdb
¤Ê¤É¤È¤¹¤ì¤Ð¤è¤¤.
+ (¥Ñ¥¹¥ï¡¼¥É°Ê³°¤Î)¥æ¡¼¥¶¾ðÊó¤òÅÐÏ¿¤¹¤ë
-- /etc/passwd ¤«¤éºî¤ëÊýË¡
´û¤Ë¥·¥¹¥Æ¥à¤Î¥æ¡¼¥¶¤Ç¤â¤¢¤ë¤Ê¤é¤Ð´Êñ¤Ç¤ª¤¹¤¹¤á.
pw2userdb ¥³¥Þ¥ó¥É¤òÍѤ¤¤Æ
cd /usr/local/etc/userdb/
pw2userdb | grep ¥æ¡¼¥¶Ì¾ >> ./users
¤È¤¹¤ì¤Ð¤è¤¤.
-- Îí¤«¤éºî¤ëÊýË¡.
userdb ¥³¥Þ¥ó¥É¤ÇľÀܤ¤¤í¤¤¤í»ØÄꤹ¤ëÊýË¡. ¤Á¤ç¤¤ÌÌÅÝ.
userdb "john@example.com" set home=/home/vmail \
mail=/home/vmail/Maildir-john-example uid=UUU gid=GGG"
¤Ê¤É¤È¤¹¤ëÊýË¡.
+ ¥Ñ¥¹¥ï¡¼¥É¤òÀßÄꤹ¤ë.
cd /usr/local/etc/userdb
userdbpw -hmac-md5|userdb users/¥æ¡¼¥¶Ì¾ set hmac-md5pw
¤È¤¹¤ì¤Ð¤è¤¤. ¤³¤Î hmac-md5 ¤È¤¤¤¦¤Î¤¬ CRAM-MD5 ¤ÇÍøÍѤµ...
¤¦¤Þ¤¯¤¤¤Ã¤Æ¤¤¤ë¤«¤É¤¦¤«¡¤users ¥Õ¥¡¥¤¥ë¤òÆɤó¤Ç³Îǧ¤·¤Æ...
+ Äɲá¤Êѹ¹²Õ½ê¤ò͸ú¤Ë¤¹¤ë.
makeuserdb
¤È¤¹¤ì¤Ð¤è¤¤.
¤Ç¤Ï¤³¤³¤Ç¾å¤Î¼ê½ç¤Ë¤·¤¿¤¬¤Ã¤Æ IMAP ÍѤΥ桼¥¶¾ðÊó¤òÅÐÏ¿...
** courier-imap ¤ÎÆ°ºî³Îǧ [#c34258bd]
SMTP Auth ¤Î»þ¤ÈƱÍͤˡ¤2¤Ä¤Îʸ»úüËö¥¨¥ß¥å¥ì¡¼¥¿¤òÍÑ°Õ¤·...
¤¿¤À¤·¡¤Æ°ºî³Îǧ¤Ç¤â¤¿¤Ä¤¤¤Æ¤¤¤ë¤È courier-imap ¥µ¡¼¥Ð¤¬...
¤½¤Î¤¿¤á¤Î½àÈ÷¤òÀè¤Ë¤·¤Æ¤ª¤³¤¦. ¶ñÂÎŪ¤Ë¤Ï¡¤/usr/local/et...
IMAP_IDLE_TIMEOUT=60
¤È¤¤¤¦Éôʬ¤¬¡Ö60ÉÃÈ¿±þ¤¬¤Ê¤±¤ì¤ÐÀÚÃǡפȤ¤¤¦°ÕÌ£¤Ê¤Î¤Ç¡¤...
Î㤨¤Ð 180 ¤°¤é¤¤¤Ë¤¹¤ì¤ÐÌäÂê¤Ê¤¤¤À¤í¤¦.
¤Ê¤ª¡¤¤³¤Î¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤·¤¿¤é courier-imap ¥µ¡¼¥Ð¤ò°ìö...
¶ñÂÎŪ¤Ë¤Ï
/usr/local/etc/rc.d/courier-imap-imapd.sh stop
/usr/local/etc/rc.d/courier-imap-imapd.sh start
¤È¤·¤Æ¤ª¤±¤Ð¤è¤¤.
¤µ¤Æ¡¤¤Ç¤Ï SMTP Auth ¤Î»þ¤ÈƱ¤¸¤è¤¦¤Ë¤ä¤Ã¤Æ¤ß¤ë.
''Shell-A'' ¤Ç¡¤telnet localhost 143 ¤È¤¹¤ë¤È
Connected to localhost.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE T...
¤Ê¤É¤È¸À¤Ã¤Æ¤¯¤ë. ¤³¤³¤Ç¡¤
a authenticate cram-md5
¤ÈÆþÎϤ¹¤ë¤È
+ PG5hbmlrYS1pbWFwQHNlcnZlcj4=
¤Ê¤É¤È¥µ¡¼¥Ð¤«¤éʸ»úÎó¤¬Á÷¤é¤ì¤Æ¤¯¤ë.
¤³¤Îʸ»úÎó ''PG5hbmlrYS1pbWFwQHNlcnZlcj4='' ¤ËÂФ·¤Æ¡¤Àè...
Î㤨¤Ð¼¡¤Î¤è¤¦¤Ë¤Ê¤ë¤À¤í¤¦.
Username? testuser ¢« IMAP ÍѤËÅÐÏ¿¤·¤¿¥æ¡¼¥¶Ì¾
Password? password ¢« IMAP ÍѤËÅÐÏ¿¤·¤¿¥Ñ¥¹¥ï¡¼¥É
Send: AUTH CRAM-MD5 (or for imap, A AUTHENTICATE CRAM-M...
Paste the challenge here:
+ PG5hbmlrYS1pbWFwQHNlcnZlcj4= ¢« º£¤Îʸ»úÎó
Send this response:
dGVzdHVzZXIgYjlkMDA5MzQ4YmVjMzlkNzcwMWU4MWRiZWE3NmZhN2M=
¤³¤ÎºÇ¸å¤Îʸ»úÎó ''dGVzdHVzZXIgYjlkMDA5MzQ4YmVjMzlkNzcwMW...
¤½¤·¤Æ
a OK LOGIN Ok.
¤È¤Ê¤ì¤Ð¡¤IMAP ¥µ¡¼¥Ð¤Îǧ¾Ú¤¬Ä̤俤Ȥ¤¤¦¤³¤È¤Ë¤Ê¤ê¡¤Æ°ºî...
¤Ê¤ª¡¤POP ¥µ¡¼¥Ð¤òΩ¤Á¾å¤²¤¿¤Ê¤é¤ÐƱÍͤ˥ƥ¹¥È¤¬²Äǽ¤Ç¤¢¤ë.
¤½¤ÎºÝ¤Ï
telnet localhost 110
(¥µ¡¼¥Ð¤«¤é¤Î±þÅú)
capa
(¥µ¡¼¥Ð¤«¤é¤Î±þÅú)
auth cram-md5
(¥µ¡¼¥Ð¤«¤éʸ»úÎó¤òÁ÷¤Ã¤Æ¤¯¤ë)
(¤½¤ì¤ËÂбþ¤·¤ÆÊÖÅúÍÑʸ»úÎó¤òÍÑ°Õ¤·¤Æ¡Ä)
ÊÖÅúÍÑʸ»úÎóÄ¥¤êÉÕ¤±
¤È¤¤¤¦Î®¤ì¤Ë¤Ê¤ë.
*** ¼Â½¬ [#xc95fa94]
¤³¤³¤Þ¤Ç¤Îºî¶È¤ò¹Ô¤ª¤¦.
¤Þ¤¿¡¤Í¾Íµ¤¬¤¢¤ì¤ÐŬÅö¤Ê MUA ¤Ç IMAP ¥µ¡¼¥Ð¤ËÀܳ¤·¤Æ¤ß¤è...
¤µ¤é¤Ë;͵¤¬¤¢¤ì¤Ð¡¤IMAP over TLS/SSL ÀßÄê¤Ç¥µ¡¼¥Ð¤ËÀܳ...
* ¥ì¥Ý¡¼¥È [#p1151247]
ÅÓÃæ¤Ç¡ÖÄ´¤Ù¤è¡×¤È»Ø¼¨¤µ¤ì¤¿»ö¹à¤Ë¤Ä¤¤¤ÆÄ´ºº¤ò¹Ô¤¤¡¤Êó¹ð...
¤Þ¤¿¡¤¤³¤³¤Þ¤Ç¤Î¼Â½¬¤ò¹Ô¤¤¡¤Êó¹ð¤»¤è.
¥Ú¡¼¥¸Ì¾: