Applied Mathematics 8 (2009)
¼ø¶È»ñÎÁ/09
¤ò¥Æ¥ó¥×¥ì¡¼¥È¤Ë¤·¤ÆºîÀ®
³«»Ï¹Ô:
#contents
* ǧ¾Ú¥·¥¹¥Æ¥à¤Ë¤Ä¤¤¤Æ°ìÈÌŪ¤ÊÏà [#u05079ca]
unix ¥µ¡¼¥Ð¤Ë¸Â¤é¤º¡¤¥³¥ó¥Ô¥å¡¼¥¿°ìÈ̤ˡÖǧ¾Ú¡×¤È¤¤¤¦»ÅÁÈ...
´ðËÜŪ¤Ë¡¤´í¸±¤ÊÎΰè¤Ç¤¢¤ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤ò¥Ñ¥¹¥ï¡¼¥É¤ò...
¤½¤Î¤¿¤á¤Ë½é³Ø¼Ô¤Ë¤Ïº®Í𤬤¢¤ë¤«¤È»×¤¦¤¬¡¤¼ÂºÝ¤Ï¤³¤ÎÆó¥«...
¼ÂºÝ¡¤¤ª¤ª¤Þ¤«¤Ë¤Ï¡¤unix ¾å¤Ç¤Î¥½¥Õ¥È¥¦¥§¥¢¤ÏÄ̾ï¤Ï°Ê²¼¤Î...
&ref(./authentication-structure_s.png);
CENTER:ǧ¾Ú¤Î°ìÈÌŪ¤Ê»ÅÁȤß
* SMTP Auth ¤ò»È¤¦ [#vdcf756a]
** SMTP Auth ¤ÎÀßÄê(postfix, cyrus sasl2) [#ga95b02e]
¤è¤ê¼«Í³¤Ë MTA ¤ò»È¤¦¤¿¤á¤Ë SMTP Auth ¤òÍøÍѤ¹¤ë¤³¤È¤òÁÛ...
¤µ¤Æ¡¤¤Þ¤º¤Ï postfix ¤Î smtp auth ¤¬»È¤¦¤È¤µ¤ì¤Æ¤¤¤ë cyru...
¤³¤ì¤Þ¤Ç¤ÎÀßÄêÄ̤ê¤Ê¤é¤Ð¡¤/var/log/ports/security::cyrus-...
> ------------------------------------------------------...
> Libraries have been installed in:
> /usr/local/lib/sasl2
> &br;
> If you ever happen to want to link against installed l...
> in a given directory, LIBDIR, you must either use libt...
> specify the full pathname of the library, or use the `...
> flag during linking and do at least one of the followi...
> - add LIBDIR to the `LD_LIBRARY_PATH' environment v...
> during execution
> - add LIBDIR to the `LD_RUN_PATH' environment varia...
> during linking
> - use the `-Wl,-rpath -Wl,LIBDIR' linker flag
> &br;
> See any operating system documentation about shared li...
> more information, such as the ld(1) and ld.so(8) manua...
> ------------------------------------------------------...
¤È¤¤¤¦¥é¥¤¥Ö¥é¥ê¤Ë´Ø¤¹¤ë¤¤¤Ä¤â¤Îµ½Ò¤¬²¿²ó¤«¤¢¤Ã¤¿¸å¡¤
> *** We do not create /usr/local/etc/sasldb2.db automat...
> *** BATCH mode. Please create it by yourself. It sho...
> *** owner: cyrus, group: mail, mode: 0640.
> &br;
> You can use sasldb2 for authentication, to add users u...
> &br;
> saslpasswd2 -c username
> &br;
> If you want to enable SMTP AUTH with the system Sendma...
> Sendmail.README
> &br;
> NOTE: This port has been compiled with a default pwche...
> auxprop. If you want to authenticate your user ...
> PAM or LDAP, install ports/security/cyrus-sasl2-...
> set sasl_pwcheck_method to saslauthd after insta...
> Cyrus-IMAPd 2.X port. You should also check the
> /usr/local/lib/sasl2/*.conf files for the correct
> pwcheck_method.
¤È¤¤¤¦¥á¥Ã¥»¡¼¥¸¤¬¸«¤Ä¤«¤ë¡¥
¤³¤ì¤Ï¡¤
- sasldb2.db ¤È¤¤¤¦¥Õ¥¡¥¤¥ë¤Ï¼«Æ°Åª¤Ëºî¤é¤ì¤Ê¤¤¤Î¤Ç¡¤¼«Ê¬...
- smtp auth ¤ò¤Ä¤«¤¦¤Ê¤é¤Ð¡¤¥æ¡¼¥¶¥Ñ¥¹¥ï¡¼¥É¤ò saslpasswd...
- ¤³¤Î port ¤Ï¥Ñ¥¹¥ï¡¼¥É¾È¹ç¤È¤·¤Æ pwcheck_method (ÀìÍÑ¥Õ...
¤È¤¤¤¦¤³¤È¤¬½ñ¤¤¤Æ¤¢¤ë¡¥
¤¿¤À¡¤¤³¤ì¤Ç¤ÏÍͻҤ¬¤Þ¤ÀÄϤá¤Ê¤¤¤Î¤Ç¡¤¡¤¾ðÊó¤ò¤µ¤é¤ËÄ´¤Ù...
¤Þ¤º¤Ï°ì¼¡¾ðÊ󸻤Ȥ¤¤¦¤³¤È¤Ç¡¤ËÜ²È http://www.postfix.org...
Documentation ¤ò¸«¤ë¤È¡¤³ºÅö¤·¤½¤¦¤Ê¤â¤Î¤¬¤¹¤°¸«¤Ä¤«¤ë.
¶ñÂÎŪ¤Ë¤Ï http://www.postfix.org/SASL_README.html ¤ò¥Á¥§...
¤¹¤ë¤È¡¤¤Þ¤º¤Ï¼¡¤Î¤è¤¦¤Ë½ñ¤¤¤Æ¤¢¤ë¤È¤³¤í¤¬»²¹Í¤Ë¤Ê¤ë.
> Enabling SASL authentication in the Postfix SMTP server
> &br;
> In order to enable SASL support in the Postfix SMTP se...
> &br;
> /etc/postfix/main.cf:
> smtpd_sasl_auth_enable = yes
> &br;
> In order to allow mail relaying by authenticated remot...
> &br;
> /etc/postfix/main.cf:
> smtpd_reci...
> permit...
> permit...
> reject...
> &br;
> To report SASL login names in Received: message header...
> &br;
> /etc/postfix/main.cf:
> smtpd_sasl_authenticated_header = yes
> &br;
> Note: the SASL login names will be shared with the ent...
> &br;
> Older Microsoft SMTP client software implements a non-...
> &br;
> /etc/postfix/main.cf:
> broken_sasl_auth_clients = yes
¤³¤ì¤òÆɤà¤È¡¤postfix ¤ÎÀßÄê¥Õ¥¡¥¤¥ë¤Ç¤¢¤ë main.cf ¤ò½ñ¤...
Â礶¤Ã¤Ñ¤Ë¤Ï
- SASL ¤ò»È¤¤¤¿¤±¤ì¤Ð¡¤¤³¤¦¤·¤í.
- ǧ¾Ú¤µ¤ì¤¿¥ê¥â¡¼¥È¥¯¥é¥¤¥¢¥ó¥È¤Ë¤è¤ë¥á¡¼¥ë¥ê¥ì¡¼¤òµö²Ä...
- ¥á¡¼¥ë¤Î¤ä¤ê¤È¤ê¤Î¥Ø¥Ã¥À¤Ë SASL¥æ¡¼¥¶Ì¾¤òºÜ¤»¤¿¤±¤ì¤Ð¡¤...
- Microsoft ¤Î¸Å¤¤¥á¡¼¥é¤Ë¤Ïǧ¾Ú¥×¥í¥È¥³¥ë¤Îʸˡ¤Î°ìÉô¤¬...
¤È¤¤¤¦4¤Ä¤Î¤³¤È¤¬½ñ¤¤¤Æ¤¢¤ë.
¤É¤ì¤âÆä˰ÛÏÀ¤Ï¤Ê¤¤ÆâÍƤʤΤǡ¤¤½¤Î¤Þ¤Þ½¾¤Ã¤Æ¤è¤¤¤À¤í¤¦.
&ref(./notes.png); ¤³¤Î»Ø¼¨¤Ë¤·¤¿¤¬¤Ã¤Æ main.cf ¤ò½¤Àµ¤·...
¤³¤³¤Ç¤ÏÁ´Éô¤Ç 4¤Ä¤Îµ½Ò¤¬²Ã¤ï¤ë¤³¤È¤Ë¤Ê¤ë. ¤³¤ì¤Ï main.c...
¤¿¤À¤·¡¤¾å¤ÎʸÃæ¤Î/etc/postfix ¤Ï FreeBSD ¤Ç¤Ï /usr/local...
¤Þ¤¿¡¤"Web ¤Î¥µ¥ó¥×¥ë¤Ç¤Ï smtpd_recipient_restrictions ¤¬...
&ref(./warning.png); "smtp" ¤È "smtpd" (ºÇ¸å¤Ë "d" ¤¬¤Ä¤¤...
¤µ¤é¤Ë¾åµ»ñÎÁ¤òÆɤ߿ʤà¤È¡¤ "Cyrus SASL configuration fo...
¤¿¤À¤·¡¤»ÈÍѤ¹¤ë postfix (ver.2.6.5,1)¤ä cyrus sasl (ver....
¤Þ¤º¡¤
> Cyrus SASL configuration for the Postfix SMTP server
> &br;
> You need to configure how the Cyrus SASL library shou...
> &br;
> The name of the configuration file (default: smtpd.con...
> &br;
> /etc/postfix/main.cf:
> smtpd_sasl_path = smtpd
> &br;
> Cyrus SASL searches for the configuration file in /usr...
> &br;
> Note: some Postfix distributions are modified and look...
> &br;
> Note: some Cyrus SASL distributions look for the smtpd...
¤È¤¤¤¦¤³¤È¤Ç¡¤cyrus sasl2 ¤ÎÀßÄê¥Õ¥¡¥¤¥ë¤Ï /usr/local/lib...
&ref(./notes.png); ¤Þ¤º¤Ï¾å¤Î»Ø¼¨¤Ë½¾¤Ã¤Æ postfix ¤ÎÀßÄê...
¤½¤ì¤«¤é¡¤¥Ñ¥¹¥ï¡¼¥É¾È¹çÊýË¡¤ÎÁªÂò¤Ë¤Ä¤¤¤Æ¤¬¼¡¤Ë³¤¤¤Æ½ñ...
> * To authenticate against the UNIX password datab...
> &br;
> * To authenticate against Cyrus SASL's own passwo...
> &br;
> /usr/local/lib/sasl2/smtpd.conf:
> pwcheck_method: auxprop
> auxprop_plugin: sasldb
> mech_list: PLAIN LOGIN CRAM-MD5 DIGEST-MD5
&ref(./notes.png); ¤È¤¢¤ë¤Î¤Ç¡¤¾å¤Î¤è¤¦¤Ë smtpd.conf ¤òÊÔ...
&ref(./warning.png); mech_list ¤ò½ü¤¤¤Æ¼Â¤Ï¤³¤ì¤Ï¥Ç¥Õ¥©¥ë...
¤½¤ì¤«¤é³¤±¤Æ¡¤
> This will use the Cyrus SASL password file (defa...
> &br;
> IMPORTANT: To get sasldb running, make sure that...
> &br;
> EXAMPLE:
> &br;
> % saslpasswd2 -c -u `postconf -h myhostname`...
> &br;
> You can find out SASL's idea about the realms of...
¤È¤¢¤ê¡¤¥æ¡¼¥¶¤Î¥Ñ¥¹¥ï¡¼¥É¤òÅÐÏ¿¤¹¤ëºÝ¤Ë realm(¥Ñ¥¹¥ï¡¼¥É...
&ref(./notes.png); ¾å¤Î»Ø¼¨¤Ë½¾¤¤¤Ä¤Ä¡¤smtp auth ÍѤΥ桼...
&ref(./notes.png); ¤¤Á¤ó¤ÈÅÐÏ¿¤µ¤ì¤¿¤«¡¤sasldblistusers2...
> &color(blue){ÅÐÏ¿¤·¤¿¥æ¡¼¥¶Ì¾};@&color(blue){¥Û¥¹¥È̾}...
¤È¤¤¤¦½ÐÎϤ¬½Ð¤ì¤Ð¡¤ÅÐÏ¿¤µ¤ì¤Æ¤¤¤ë¤³¤È¤¬³Îǧ¤Ç¤¤¿¤È¤¤¤¦...
¤½¤·¤Æ¡¤¤³¤Î¡Ö¥Ñ¥¹¥ï¡¼¥É¤òÅÐÏ¿¤¹¤ëºî¶È¡×¤Ç(¼«Æ°¤Ç¤Ïºî¤é¤Ê...
cd /usr/local/etc
ls -lga sasldb2.db
¤³¤¦¤·¤Æ¤³¤Î¥Õ¥¡¥¤¥ë¤ò¥Á¥§¥Ã¥¯¤¹¤ë¤È¡¤¤ª¤½¤é¤¯¾å¤Î¾ò·ï(¥Õ...
¤½¤Î¾ì¹ç¤Ï¡¤¼¡¤Î¤è¤¦¤Ë¤·¤Æ¥Õ¥¡¥¤¥ë¤Î¾ò·ï¤ò½ñ¤´¹¤¨¤è¤¦¡¥
chown cyrus:mail ./sasldb2.db
chmod 0640 ./sasldb2.db
¼¡¤Ë¡¤
> On the Postfix side, you can have only one realm...
> &br;
> /etc/postfix/main.cf:
> smtpd_sasl_local_domain = $myhostname
¤È¤¢¤ë¤Î¤Ç¡¤realm ¤Ë´Ø¤¹¤ë postfix ¤ÎÀßÄê¤â¤Þ¤¿É¬ÍפÀ.
&ref(./notes.png); ¾å¤Î»Ø¼¨¤Ë½¾¤Ã¤Æ postfix ¤ÎÀßÄê¥Õ¥¡¥¤...
¤¢¤È¤Ï¡¤¼¡¤Î¤è¤¦¤ÊÃí°Õ¤¬¤¢¤ë.
> IMPORTANT: The Cyrus SASL password verification servic...
> &br;
> * With Cyrus SASL version 2.1.x or later the mech...
> &br;
> /usr/local/lib/sasl2/smtpd.conf:
> mech_list: plain login
> &br;
> For the same reasons you might want to limit the list ...
> &br;
> /usr/local/lib/sasl2/smtpd.conf:
> pwcheck_method: auxprop
> auxprop_plugin: sql
¤³¤ì¤Ï¥Ñ¥¹¥ï¡¼¥É¤ÎÅÁãÊýË¡¤ä¾È¹çÊýË¡¤ÎÁȤ߹ç¤ï¤»¤Î¤¦¤Á¡¤...
¶ñÂÎŪ¤Ë¤Ï¡¤Unix ¤Î¥í¥°¥¤¥ó¥Ñ¥¹¥ï¡¼¥Éǧ¾Ú¤Ë»È¤¦¾ì¹ç¤ÎÏäÊ...
¤½¤·¤ÆºÇ¸å¤Ë
> To run software chrooted with SASL support is an inter...
¤È¤¢¤ë. ¤Þ¤¢¸À¤Ã¤Æ¤¤¤ë¤È¤ª¤ê¡¤¤¿¤Ö¤ó³ä¤Ë¤¢¤ï¤Ê¤¤¤À¤í¤¦¤«...
&ref(./warning.png); FreeBSD ¤Ë¤Ï chroot ¤è¤ê¤â¿Ê²½¤·¤¿µ¡...
** SMTP Auth ¤ÎÆ°ºî³Îǧ [#x3924737]
*** ½àÈ÷ [#s1b4ec58]
¸å¤ÇÍѤ¤¤ë¥³¥Þ¥ó¥É mmencode ¤ò¡¤º£¤Î¤¦¤Á¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤·...
¶ñÂÎŪ¤Ë¤Ï¡¤¤¤¤Ä¤â¤Î¤è¤¦¤Ë portsnap ¤Ç ports ¥³¥ì¥¯¥·¥ç¥ó...
psearch & portinstall ¤Ç¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤È¤¤¤¦¼ê½ç¤À¡¥
//
// portsnap fetch; portsnap update
// psearch mmencode
// portinstall &color(blue){psearch ¤Î·ë²Ì¤«¤éȽÃǤ·¤Æ};
//
// ¤È¤¹¤ì¤Ð¤è¤¤.
*** ¼ÂºÝ¤Ë¼ê¤ÇÀܳ¤·¤Æ¤ß¤ë. [#qc3947f2]
SMTP Auth ¤ÇÀܳ¤¹¤ëºÝ¤Îǧ¾ÚÊýË¡¤Ë¤â¤¤¤¯¤Ä¤«¤¢¤ê¡¤¼«Í³¤Ë...
º£²ó¤Î¥¤¥ó¥¹¥È¡¼¥ë¤Ç¤Ï¾å¤ÇÀßÄꤷ¤¿¤è¤¦¤Ë loginǧ¾Ú, plain...
(¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï¤µ¤é¤Ë NTLMǧ¾Ú¤È GSSAPIǧ¾Ú¤¬»È¤¨¤ë¤è¤¦¤Ë...
¤½¤³¤Ç¡¤¤³¤Î¤¦¤Á¤Î plainǧ¾Ú¤È CRAM-MD5ǧ¾Ú¤ò»î¤·¤Æ¤ß¤è¤¦.
¤Á¤Ê¤ß¤Ë¡¤plainǧ¾Ú¤Ï´Êñ¤ËÍøÍѤǤ¤ë¤¬°Å¹æ²½¤µ¤ì¤Æ¤¤¤Ê¤¤...
*** ¼ê¤Ç SMTP Auth ¤ò»î¤¹ : Plain ǧ¾Ú¤Î¾ì¹ç [#u13855ae]
Plain ǧ¾Ú¤Ï¤ªµ¤³Ú¤Ê¥â¥Î¤Ç¡¤SMTP Auth »þ¤Ëʸ»úÎó "\0¥æ¡¼...
&ref(./warning.png); base 64 ¤Ï°Å¹æ²½¤Ç¤Ï¤Ê¤¯¤Æ(¥³¥ó¥Ô¥å...
&ref(./notes.png);
¤µ¤Æ¡¤ÀܳÁ°¤ËÀܳ¤ËɬÍפÊʸ»úÎó¤òºî¤Ã¤Æ¤·¤Þ¤ª¤¦.
¶ñÂÎŪ¤Ë¤Ï¡¤¥³¥Þ¥ó¥É¥é¥¤¥ó¤Ç
printf '\0000¥æ¡¼¥¶Ì¾\0000¥Ñ¥¹¥ï¡¼¥É' | mmencode
¤È¤¹¤ì¤Ð¤è¤¤((\0000 ¤È¤Ê¤Ã¤Æ¤¤¤ë¤È¤³¤í¤Ï \0 ¤Ç¤â¤è¤¤¤Î¤À...
¥æ¡¼¥¶Ì¾¤È¥Ñ¥¹¥ï¡¼¥É¤Ï¤µ¤¤Û¤É SMTP Auth ÍÑ¤Ë saslpasswd2...
¤³¤¦¤¹¤ë¤È¡¤'\0¥æ¡¼¥¶Ì¾\0¥Ñ¥¹¥ï¡¼¥É' ¤¬ base64 ¥¨¥ó¥³¡¼¥É...
¤Á¤Ê¤ß¤Ë¡¤Î㤨¤Ð '\0test\0password' ¤ò mmencode ¤¹¤ë¤È "A...
&ref(./notes.png); ¤¢¤È¤Ï¤¤¤Ä¤â¤Î¤è¤¦¤Ë telnet localhost ...
Á°¤Ë¤â¤ä¤Ã¤¿¤è¤¦¤Ë "EHLO localhost" ¤È¤·¤Æ±þÅú¤ò¿Ê¤á¤ë¤È...
> 250-&color(blue){¥Û¥¹¥È̾};
> 250-PIPELINING
> 250-SIZE 10240000
> 250-VRFY
> 250-ETRN
> 250-AUTH LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-AUTH=LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-ENHANCEDSTATUSCODES
> 250-8BITMIME
> 250 DSN
¤³¤ÎÃʳ¬¤Ç SMTP Auth ¤Î Plain ǧ¾Ú¤ò»î¤·¤Æ¤ß¤è¤¦.
¶ñÂÎŪ¤Ë¤Ï¡¤¤³¤³¤Ç
> AUTH PLAIN Àè¤Û¤Ébase64¥¨¥ó¥³¡¼¥É¤·¤Æºî¤Ã¤¿Ê¸»úÎó
¤ÈÆþÎϤ¹¤ì¤Ð¤è¤¤. Plain ǧ¾Ú¤Ï¤³¤ì¤À¤±¤ÇºÑ¤à.
¤½¤·¤Æ
> 235 2.7.0 Authentication successful
¤Ê¤É¤È "success" ¤Î°Õ¤¬¥á¥Ã¥»¡¼¥¸¤ÇÊ֤äƤ¯¤ì¤Ð¡¤Ç§¾Ú¤¬ÄÌ...
¤¢¤È¤ÏÁ°¤ÈƱÍÍ¤Ë ^], quit ¤ÇÈ´¤±¤è¤¦.
¤¦¤Þ¤¯¤¤¤«¤Ê¤¤¿Í¤ÏÃúÇ«¤Ë¤³¤ì¤Þ¤Ç¤Îºî¶È¤ò¿¶¤êÊÖ¤í¤¦.
*** ¼ê¤Ç SMTP Auth ¤ò»î¤¹ : CRAM-MD5 ǧ¾Ú¤Î¾ì¹ç [#l3f17df2]
CRAM-MD5ǧ¾Ú¤ÏÀè¤Î Plainǧ¾Ú¤È°ã¤Ã¤Æ¡¤¥Ñ¥¹¥ï¡¼¥É¤òʿʸ¤Ç...
¶ñÂÎŪ¤Ë¤Ï¡¤Àܳ¤¹¤ë¤È¥µ¡¼¥Ð¤¬Å¬Åö¤Êʸ»úÎó¤òÁ÷¤Ã¤Æ¤¯¤ë¤Î...
¤ä¤ä¤³¤·¤¤¤¬¡¤¼Â¤Ï CRAM-MD5 ¤ò¥Æ¥¹¥È¤¹¤ë¤¿¤á¤Î¥¹¥¯¥ê¥×¥È ...
¤¿¤À¤·¡¤¤³¤Î¥¹¥¯¥ê¥×¥È¤Ï¸å½Ò¤Î courier-imap ¤Î¥¤¥ó¥¹¥È¡¼...
&ref(./warning.png); ¤È¤¤¤¦¤ï¤±¤Ç¡¤''½é¤á¤Æ¤³¤³¤òÆɤà¾ì¹ç...
°Ê²¼¤Îºî¶È¤Ë¤Ï¥³¥ó¥½¡¼¥ë¤¬Æó¤Ä°Ê¾å¤¢¤Ã¤¿Êý¤¬ÊØÍø¤Ê¤Î¤Ç¡¤X...
¥³¥ó¥½¡¼¥ë¤¬1¤Ä¤·¤«ÍѰդǤ¤Ê¤¤¾ì¹ç¤Ç¤â¡¤¥Þ¥¦¥¹Áàºî¤Ç¥³¥Ô...
°Ê¹ß¡¤¾õ¶·¤òʬ¤«¤ê¤ä¤¹¤¯¤¹¤ë¤¿¤á¤Ë 2¤Ä¤Îʸ»úüËö¥¨¥ß¥å¥ì...
&ref(./notes.png); ¤Þ¤º¡¤''Shell-A'' ¤Ç telnet localhost ...
> 250-&color(blue){¥Û¥¹¥È̾};
> 250-PIPELINING
> 250-SIZE 10240000
> 250-VRFY
> 250-ETRN
> 250-AUTH LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-AUTH=LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-ENHANCEDSTATUSCODES
> 250-8BITMIME
> 250 DSN
¤Þ¤Ç¤¹¤¹¤á¤è¤¦. ¤½¤·¤Æ¤³¤³¤Ç
> auth cram-md5
¤ÈÆþÎϤ¹¤ë. ¤¹¤ë¤È¡¤
> 334 PG5hbmlrYW5vLXNlcnZlcj4=
¤Ê¤É¤È½ÐÎϤ¬Ê֤äƤ¯¤ë.
¤³¤Î ''PG5hbmlrYW5vLXNlcnZlcj4='' ¤¬¥µ¡¼¥Ð¤¬ base64 ¤ÇÁ÷...
¶ñÂÎŪ¤Ë¤Ï ''Shell-B ¤Ç'' userdb-test-cram-md5 ¤ò¼Â¹Ô¤·¤Æ...
> Username? testuser &color(blue){¢« (SMTP Auth ¤Ë»È¤¦)...
> Password? password &color(blue){¢« (SMTP Auth ¤Ë»È¤¦)...
> Send: AUTH CRAM-MD5 (or for imap, A AUTHENTICATE CRAM-...
> Paste the challenge here:
> + PG5hbmlrYW5vLXNlcnZlcj4= &color(blue){¢« Shell-A ¤Ç¥µ...
> Send this response:
> dGVzdHVzZXIgY2NiNjc4YmZjZGY1YWRlMGUyYmE2MmM3ODA3OTA1NG...
¤È¤Ê¤ê¡¤ºÇ¸å¤ËÊÖÅú¤¹¤Ù¤Ê¸»úÎó¤òÀ¸À®¤·¤Æ¤¯¤ì¤ë.
¤½¤³¤Ç¤³¤Îʸ»úÎó(¤³¤ÎÎã¤Î¾ì¹ç¤Ï ''dGVzdHVzZXIgY2NiNjc4YmZ...
ǧ¾Ú¤¬Ä̤ì¤Ð¤³¤Î¤¢¤È
> 235 2.7.0 Authentication successful
¤Ê¤É¤È "success" ¤Î°Õ¤¬¥á¥Ã¥»¡¼¥¸¤ÇÊ֤äƤ¯¤ì¤Ð¡¤Ç§¾Ú¤¬ÄÌ...
¤¢¤È¤ÏÁ°¤ÈƱÍÍ¤Ë ^], quit ¤ÇÈ´¤±¤è¤¦.
¤¦¤Þ¤¯¤¤¤«¤Ê¤¤¿Í¤ÏÃúÇ«¤Ë¤³¤ì¤Þ¤Ç¤Îºî¶È¤ò¿¶¤êÊÖ¤í¤¦.
* SMTP over TLS ¤ò»È¤¦ [#z8ccd591]
** SMTP over TLS ¤ÎÀßÄê [#k7fc1fd4]
TLS ¤ÎÍøÍѤˤĤ¤¤Æ¤Ï¡¤ÀßÄê¤Î¤Þ¤¨¤Ë¸°¤È¾ÚÌÀ½ñ¤òÍÑ°Õ¤·¤Ê¤¤...
web server ¤ÎÀßÄê¤Î»þ¤Ëºî¤Ã¤¿¸°¤È¾ÚÌÀ½ñ¤ò /etc/ssl ¤Ë(ÈÆ...
º£²ó¤Ï¸°¤È¾ÚÌÀ½ñ¤ò¿·¤¿¤Ëºî¤Ã¤Æ(¤ä¤êÊý¤Ï Web ¥µ¡¼¥Ð¤Î¼ø¶È...
¤¿¤À¤·¡¤¤³¤Î¥Õ¥¡¥¤¥ë¤¬Â¾¤Î¿Í¤ËÆɤá¤Æ¤·¤Þ¤¦¤Èº¤¤ë¤Î¤Ç¡¤ºî...
&ref(./notes.png); °Ê²¼¡¤¤½¤Îºî¶È¤ò¹Ô¤ª¤¦.
cd /usr/local/etc/postfix
openssl genrsa -out postfix.key 1024
openssl req -new -x509 -days 365 -key postfix.key -out ...
¾ÚÌÀ½ñºîÀ®»þ¤Ëʹ¤«¤ì¤ë¼ÁÌä¤Î±þÅú¤Ë¤Ä¤¤¤Æ¤Ï°ÊÁ°¤ÈƱ¤¸¤Ç¤è...
¤³¤¦¤·¤Æ¾ÚÌÀ½ñÅù¤¬ºîÀ®¤Ç¤¤¿¤é¡¤¤¹¤°¤µ¤Þ
chmod 400 postfix.key
chmod 400 postfix.crt
¤È¤·¤Æ¤ª¤³¤¦.
¤µ¤Æ¡¤Postfix ¤ÎÀßÄê¤Ï¡¤ËܲȤΥɥ¥å¥á¥ó¥È( http://www.po...
¥µ¡¼¥Ð¤«¥¯¥é¥¤¥¢¥ó¥È¤«¤äǧ¾Ú¤ò¤É¤¦¤¹¤ë¤«¤Ê¤É¿¾¯¤ä¤ä¤³¤·...
&ref(./notes.png); º£²ó¤Ï¡¤ /usr/local/etc/postfix/main.c...
> smtpd_tls_cert_file = /usr/local/etc/postfix/postfix.crt
> smtpd_tls_key_file = /usr/local/etc/postfix/postfix.key
> smtpd_tls_loglevel = 1
> smtpd_tls_received_header = yes
> smtpd_tls_security_level = may
> &br;
> smtp_tls_loglevel = 1
> smtp_tls_security_level = may
> smtp_tls_note_starttls_offer = yes
¤Ê¤É¤È²Ã¤¨¤ì¤ÐÎɤ¤.
¤¿¤À¤·¡¤¤³¤ì¤Ï·ÐÏ©¤Î°Å¹æ²½¤À¤±¤Ç¤è¤¤¡¤¤È¤¤¤¦ÀßÄê¤Ê¤Î¤Ç¡¤...
&ref(./warning.png); Postfix ¤ÎÀßÄêÊýË¡¤¬¶áǯÊѤï¤Ã¤¿¤¿¤á...
¤³¤ÎÊÔ½¸¤¬½ª¤ï¤Ã¤¿¤é¡¤postfix ¤ò°ìöÄä»ß¤·¤Æ¤«¤éºÆµ¯Æ°¤¹¤ë.
/usr/local/etc/rc.d/postfix stop
/usr/local/etc/rc.d/postfix start
ºÆµ¯Æ°»þ¤Ë²¿¤«¥¨¥é¡¼¤ä·Ù¹ð¤¬½Ð¤Æ¤¤¤Ê¤¤¤«Ãí°Õ¤·¤Æ¤ª¤³¤¦.
** SMTP over TLS ¤ÎÆ°ºî³Îǧ [#y056104d]
&ref(./notes.png); telnet localhost 25 ¤Ç³Îǧ¤·¤Æ¤ß¤è¤¦.
¤³¤ì¤Þ¤Ç¤ÈƱÍÍ¤Ë EHLO localhost ¤·¤Æ, ±þÅú¤¬
> 250-&color(blue){¥Û¥¹¥È̾};
> 250-SIZE 10240000
> 250-VRFY
> 250-ETRN
> 250-STARTTLS &color(blue){¢« ¤³¤ÎÂбþ¤¬ TLS/SSL ÍѤΤâ...
> 250-AUTH LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-AUTH=LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-ENHANCEDSTATUSCODES
> 250-8BITMIME
> 250 DSN
¤Ê¤É¤È¤Ê¤ë.
¾å¤Î¤è¤¦¤Ë "250-STARTTLS" ¤È¤¤¤¦Éôʬ¤¬¤¢¤ì¤Ð¡¤¤È¤ê¤¢¤¨¤º ...
¤¢¤È¤ÏÁ°¤ÈƱÍÍ¤Ë ^], quit ¤ÇÈ´¤±¤è¤¦.
¤³¤ì¤¬½Ð¤Ê¤¤¤è¤¦¤Ê¤é²¿¤«¤ª¤«¤·¤¤¤Î¤Ç¤³¤ì¤Þ¤Ç¤Îºî¶È¤ò¿¶¤ê...
&ref(./notes.png);
¤µ¤Æ¡¤¤³¤³¤Ç SMTP ¤ÎÆ°ºî¥Á¥§¥Ã¥¯¤ËÊØÍø¤Ê¥Ä¡¼¥ë¤òƳÆþ¤·¤è...
¤½¤ì¤Ï ''swaks'' (Swiss Army Knife SMTP) ¤È¤è¤Ð¤ì¤ë¤â¤Î¤Ç...
¤È¤¤¤¦¤ï¤±¤Ç¤¤¤Ä¤â¤Î¤è¤¦¤Ë(psearch ¤Çõ¤·¤Æ) swaks ¤ò¥¤¥ó...
portinstall mail/swaks
¤È¤¹¤ì¤Ð¤è¤¤. ¥¤¥ó¥¹¥È¡¼¥ë»þ¤Ë¥ª¥×¥·¥ç¥óÁªÂò²èÌÌ
&ref(./swaks-install.png);
¤¬½Ð¤¿¤é¡¤¾¯¤Ê¤¯¤È¤â "MX lookup support" ¤È "TLS support"...
NTLM ¤Ïº£²ó¤Ï´Ø·¸¤Ê¤¤¤Î¤Ç³°¤·¤¿¤Þ¤Þ¤Ç¤è¤¤¤À¤í¤¦.
Àè¤Ø¿Ê¤à¤È¡¤p5-Net-DNS ¤Î¥¤¥ó¥¹¥È¡¼¥ë»þ¤Ë IPv6 ¤ò͸ú¤Ë¤¹...
¤µ¤é¤Ë¡¤p5-Net-SSLeay ¤Î¥¤¥ó¥¹¥È¡¼¥ë»þ¤Ë¥Æ¥¹¥È¤ò¤¹¤ë¤«¤É...
¤¢¤È¤Ï¥¤¥ó¥¹¥È¡¼¥ë¤¬½ª¤ï¤ë¤Î¤ò¤Þ¤È¤¦.
¥¤¥ó¥¹¥È¡¼¥ë»þ¤ÎºÇ¸å¤Ë¡¤¿ÆÀڤˤâ
> Try
> `swaks --help'
> to list the available options and
> `swaks --support'
> for a list of capabilities.
¤È¶µ¤¨¤Æ¤¯¤ì¤ë¤Î¤Ç¡¤³Ð¤¨¤Æ¤ª¤³¤¦¡¥
¤µ¤Æ,¤Þ¤º¤Ï¤ª¤µ¤é¤¤¤â·ó¤Í¤Æ¤³¤ì¤Þ¤Ç¤Î¥Æ¥¹¥È¤òºÆ¸½¤·¤Æ¤ß¤è...
// swaks ¤Î»È¤¤Êý¤Ï swaks --help ¤È¤¹¤ë¤È¥Þ¥Ë¥å¥¢¥ë¤¬Æɤá...
&ref(./notes.png); ¤Þ¤º¤Ïñ¤Ë MTA ¤¬Æ°ºî¤·¤Æ¤¤¤ë¤«¤Î³Îǧ...
swaks --server localhost
¤È¤¹¤ë¤È¡¤¥Æ¥¹¥È¥á¡¼¥ë¤Î°¸Àè¤òʹ¤¤¤Æ¤¯¤ë¤Î¤Ç, ¼«Ê¬¤Î¥¢¥«...
> === Trying localhost:25...
> === Connected to localhost.
> <- 220 &color(blue){¥Û¥¹¥È̾}; ESMTP Postfix
> -> EHLO &color(blue){¥Û¥¹¥È̾¤ÎƬÉôʬ};
> <- 250-&color(blue){¥Û¥¹¥È̾};
> <- 250-PIPELINING
> <- 250-SIZE 10240000
> <- 250-VRFY
> <- 250-ETRN
> <- 250-STARTTLS
> <- 250-AUTH LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> <- 250-AUTH=LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> <- 250-ENHANCEDSTATUSCODES
> <- 250-8BITMIME
> <- 250 DSN
> -> MAIL FROM:<&color(blue){º¹½Ð¿Í};>
> <- 250 2.1.0 Ok
> -> RCPT TO:<&color(blue){°¸Àè¥æ¡¼¥¶Ì¾};>
> <- 250 2.1.5 Ok
> -> DATA
> <- 354 End data with <CR><LF>.<CR><LF>
> -> Date: Mon, 30 Nov 2009 12:08:18 +0900
> -> To: &color(blue){°¸Àè¥æ¡¼¥¶Ì¾};
> -> From: &color(blue){º¹½Ð¿Í};
> -> Subject: test Mon, 30 Nov 2009 12:08:18 +0900
> -> X-Mailer: swaks v20061116.0 jetmore.org/john/code/...
> ->
> -> This is a test mailing
> ->
> -> .
> <- 250 2.0.0 Ok: queued as 727E21D0A0
> -> QUIT
> <- 221 2.0.0 Bye
> === Connection closed with remote host.
¤È MTA ¤È¤ä¤ê¼è¤ê¤·¤Æ¡¤¤½¤ÎÅÓÃæ·Ð²á¤ò¤¤Á¤ó¤È½ÐÎϤ·¤Æ¤¯¤ì...
¤¤¤Þ¤Ï¥Æ¥¹¥È¥á¡¼¥ë¤ò¼ÂºÝ¤ËÁ÷¤Ã¤¿¤Ï¤º¤Ê¤Î¤Ç¡¤¥¢¥«¥¦¥ó¥È¤Î...
¼¡¤Ë¡¤SMTP Auth ¤Î plainǧ¾Ú¤ò»î¤·¤Æ¤ß¤è¤¦.
¤¿¤À¤·¡¤¤¤¤Á¤¤¤Á¥á¡¼¥ë¤¬ÆϤ¯É¬Íפâ¤â¤¦¤Ê¤¤¤Î¤Ç¡¤Æ°ºî³Îǧ...
¤½¤ì¤Ë¤Ï¼¡¤Î¤è¤¦¤Ë¤¹¤ì¤Ð¤è¤¤.
swaks --auth PLAIN --server localhost --quit RCPT
¤¹¤ë¤ÈºÇ½é¤Ë(¼ÂºÝ¤Ë¤ÏÁ÷¤é¤Ê¤¤¤¬)¥Æ¥¹¥È¥á¡¼¥ë¤Î°¸Àè¤òʹ¤¤...
¤½¤·¤Æ¡¤¤½¤Î¸å¤Î¤ä¤ê¤È¤ê¤ÎÅÓÃæ¤Ë
> ¡Äά¡Ä
> -> AUTH PLAIN &color(blue){¥Ñ¥¹¥ï¡¼¥É¤òbase64²½¤·¤¿¤â...
> <- 235 2.7.0 Authentication successful
> ¡Äά¡Ä
¤È¤¤¤¦¤è¤¦¤Ë Auth plain ¤Ç¤Î SMTP Auth ¤¬¤¦¤Þ¤¯¤¤¤Ã¤¿¡¤¤È...
¼¡¤Ë SMTP Auth ¤Î CRAM-MD5 ǧ¾Ú¤ò»î¤·¤Æ¤ß¤ë. ¤½¤ì¤Ë¤Ï
swaks --auth CRAM-MD5 --server localhost --quit RCPT
¤È¤¹¤ì¤Ð¤è¤¤. ÆþÎϤϾå¤ÈƱÍͤÀ.
¤½¤·¤Æ¡¤¤½¤Î¸å¤Î¤ä¤ê¤È¤ê¤ÎÅÓÃæ¤Ë
> ¡Äά¡Ä
> -> AUTH CRAM-MD5
> <- 334 PDI3NTg4NzIyNTMuNDY4OTgzOUBGcmVlQlNENy5jYXMuY2...
> -> cGFvb24gMTgyODJmNzRhNjZhOWMwY2FjN2YzZTliNDQ2NzQ3Y2Y=
> <- 235 2.7.0 Authentication successful
> ¡Äά¡Ä
¤È¤¤¤¦¤è¤¦¤Ë Auth CRAM-MD5 ¤Ç¤Î SMTP Auth ¤¬¤¦¤Þ¤¯¤¤¤Ã¤¿...
¤µ¤Æ¡¤¤ä¤Ã¤È´Î¿´¤Î SMTP over TLS ¤ò¥Æ¥¹¥È¤·¤è¤¦. ¤È¤¤¤Ã¤Æ...
swaks -tls --server localhost
¤È¤¹¤ì¤Ð¤è¤¤. ¤¿¤À¤·¡¤Ç°¤Î°Ù¤Ë¥Æ¥¹¥È¥á¡¼¥ë¤ò¼ÂºÝ¤ËÁ÷¤í¤¦...
¤³¤ì¤ò¼Â¹Ô¤·¤Æ¡¤swaks ¤Î½ÐÎϤ¬
> ¡Äά¡Ä
> -> STARTTLS
> <- 220 2.0.0 Ready to start TLS
> === TLS started w/ cipher DHE-RSA-AES256-SHA
> ¡Äά¡Ä
¤È¤¤¤¦¤è¤¦¤Ë TLS ¤ò»È¤Ã¤Æ̵»ö¤ËÆ°¤¤¤Æ¤¤¤ë¤è¤¦¤Ê¤é¤ÐÂç¾æÉ×...
¤â¤Á¤í¤ó, Maildir/new ¤Ë¼ÂºÝ¤Ë¥á¡¼¥ë¤¬ÆϤ¤¤Æ¤¤¤ë¤«¤â¥Á¥§...
> (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bi...
¤È¤¤¤¦µ½Ò¤¬¤¢¤ë¤³¤È¤â³Îǧ¤·¤Æ¤ª¤³¤¦.
ºÇ¸å¤Ë¡¤SMTP Auth ¤È SMTP over TLS ¤òÁȤ߹ç¤ï¤»¤Æ¤ß¤è¤¦. ...
¶ñÂÎŪ¤Ë¤Ï¡¤Î㤨¤Ð¼¡¤Î¤è¤¦¤Ë¤¹¤ì¤Ð¤è¤¤(SMTP Auth ¤Ï¼«Æ°Åª...
swaks --auth -tls --server localhost --quit RCPT
¤³¤³¤Ç½ÐÎϤòÃúÇ«¤ËÆɤó¤Ç¤ß¤è¤¦.
&ref(./warning.png); ¤³¤Î½ÐÎϤòÆɤà¤È ''starttls ¤·¤Æ¤«¤é...
¤³¤ì¤Ï SMTP over TLS ¤ÈÁȤ߹ç¤ï¤»¤ë¤Ê¤é¤Ðǧ¾Ú(¥Ñ¥¹¥ï¡¼¥É...
µÕ¤Ë¸À¤¨¤Ð¡¤over TLS ¤·¤Æ¤¤¤Ê¤¤¤Ê¤é¤Ð¥Í¥Ã¥È¥ï¡¼¥¯¤ò²ð¤·¤Æ...
// *** ¼Â½¬
// SMTP over TLS/SSL ¤Ë¤Ï¾åµ¤Î StartTLS ¤Î¾¤Ë¤â¤¦¤Ò¤È¤Ä...
// ¤Ç¤Ï¡¤SMTPS ¤È¤Ï²¿¤«¡¤StartTLS ¤ÈÈæ¤Ù¤Æ¤ÎÍøÅÀ/·çÅÀ¤Ï²¿...
&ref(./notes.png); ¤µ¤é¤Ë;ÎϤ¬¤¢¤ë¤è¤¦¤À¤Ã¤¿¤é²¿¤«¼ê¸µ¤Î...
* IMAP/POP ¤ò»È¤¦ [#s1ecac98]
¤µ¤Æ¡¤¥æ¡¼¥¶°¸¤ËÆϤ¤¤¿¥á¡¼¥ë¤ò MUA ¤ËÅϤ¹¤Î¤Ë¹¤¯»È¤ï¤ì¤Æ...
¤¤¤Þ¤À¹¤¯»È¤ï¤ì¤Æ¤¤¤ë POP¡¤¥æ¡¼¥¶¤Ë¤È¤Ã¤Æ¤ÏÊØÍø¤À¤¬¥µ¡¼...
¤³¤³¤Ç¤Ï¡¤¾ÍèŪ¤Ê¤³¤È¤â¹Í¤¨¤Æ IMAP ¥µ¡¼¥Ð¤Ë¤Ä¤¤¤Æ³Ø½¬¤·...
¤µ¤Æ¡¤IMAP ¥µ¡¼¥Ð¤È¤·¤Æ¤Ï courier-imap ¤¬¹¤¯»È¤ï¤ì¤Æ¤¤¤ë...
¤Ê¤ª¡¤courier-imap ¤ò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤È°ì½ï¤Ë courier-pop...
** courier-imap ¤Î¥¤¥ó¥¹¥È¡¼¥ë [#oe470f80]
&ref(./notes.png); ¤µ¤Æ¡¤¤¤¤Ä¤â¤Î¤è¤¦¤Ë ports ¥³¥ì¥¯¥·¥ç...
¤¿¤À¤·¡¤imap ¥µ¡¼¥Ð¤Î¥¤¥ó¥¹¥È¡¼¥ë¤ÎÁ°¤Ë courier-authlib(c...
¤¤¤Ä¤â¤Î¤è¤¦¤Ë
portsnap fetch; portsnap update
¤È¤·¤Æ¤«¤é¡¤psearch ¤Ç courier-authlib ¤òõ¤·¤Æ¤«¤é porti...
¤Þ¤¢½ñ¤¤¤Æ¤·¤Þ¤¨¤Ð¡¤
portinstall security/courier-authlib
¤È¤¤¤¦¤³¤È¤À¡¥¤³¤Î²áÄø¤ÇɬÍפʾ¤Î¥Ä¡¼¥ë¤â°ì½ï¤Ë¥¤¥ó¥¹¥È...
¶ñÂÎŪ¤Ë¤Ï¡¤
- devel/automake19
- devel/sysconftool
- security/courier-authlib-base
- security/courier-authlib
¤¬¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤ë(¤³¤¦¤¤¤¦¾ðÊó¤Ï¸å¤Ç¥í¥°¤òµù¤ëºÝ¤ËɬÍ×...
¤Þ¤¿ courier-authlib ¤Î¥¤¥ó¥¹¥È¡¼¥ë¤ÎÃʳ¬¤Ç½Ð¤ë¥ª¥×¥·¥ç¥ó...
&ref(./courier-authlib-install.png);
¤Ç¤Ï¤È¤ê¤¢¤¨¤º "Userdb support" ¤òÁª¤ó¤Ç¤ª¤³¤¦. ¤¢¤È¤Ï¥¹...
¼¡¤Ë courier-imap ËÜÂΤò(psearch ¤Çõ¤·¤Æ¤«¤é)
portinstall mail/courier-imap
¤È¤·¤Æ courier-imap ËÜÂΤò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë. ºÇ½é¤Ë¥ª¥×¥·...
&ref(courier-imap-install.png);
¤¬½Ð¤ë¤¬¡¤Â¿Ê¬¥Ç¥Õ¥©¥ë¥È¤Ç IPv6 ¤¬Áª¤Ð¤ì¤Æ¤¤¤ë¤À¤í¤¦.
IPv6 ¤Ï»È¤ï¤Ê¤¤¤Î¤Ç³°¤·¡¤µÕ¤ËÀè¤ÈƱÍÍ¤Ë "Userdb support" ...
¤·¤Ð¤é¤¯ÂԤäƤ¤¤ë¤È¥¤¥ó¥¹¥È¡¼¥ë¤¬½ª¤ï¤ë¤À¤í¤¦.
¤µ¤Æ¡¤Ç°¤Î°Ù¤Ë¤¤¤Ä¤â¤Î¤è¤¦¤Ëº£²ó¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤¿Ê£¿ô¤Î...
(devel::automake19.log ¤«¤é ¡Ä ÆäË̵¤·)
(devel::sysconftool ¤«¤é ¡Ä ÆäË̵¤·)
(security::courier-authlib-base.log ¤«¤é)
> Set WITH_AUTHPIPE_PROG to a program you want to ...
> authProg for libauthpipe
> configure: WARNING: ----------------------------------...
> configure: WARNING: expect not found - will not be abl...
> configure: WARNING: in webmail
> configure: WARNING: ----------------------------------...
> Added group "courier".
> Added user "courier".
> ------------------------------------------------------...
> Libraries have been installed in:
> /usr/local/lib/courier-authlib
> &br;
> If you ever happen to want to link against installed l...
> in a given directory, LIBDIR, you must either use libt...
> specify the full pathname of the library, or use the `...
> flag during linking and do at least one of the followi...
> - add LIBDIR to the `LD_LIBRARY_PATH' environment v...
> during execution
> - add LIBDIR to the `LD_RUN_PATH' environment varia...
> during linking
> - use the `-Wl,-rpath -Wl,LIBDIR' linker flag
> &br;
> See any operating system documentation about shared li...
> more information, such as the ld(1) and ld.so(8) manua...
> ------------------------------------------------------...
> This port has installed the following files whic...
> servers and may therefore pose a remote security...
> /usr/local/libexec/courier-authlib/authdaemond
> &br;
> This port has installed the following startup sc...
> these network services to be started at boot time.
> /usr/local/etc/rc.d/courier-authdaemond
> &br;
> If there are vulnerabilities in these programs t...
> risk to the system. FreeBSD makes no guarantee a...
> ports included in the Ports Collection. Please t...
> to deinstall the port if this is a concern.
> &br;
> For more information, and contact details about ...
> status of this software, see the following webpa...
> http://www.Courier-MTA.org/authlib/
(security::courier-authlib.log ¤«¤é)
> configure: WARNING: ----------------------------------...
> configure: WARNING: expect not found - will not be abl...
> configure: WARNING: in webmail
> configure: WARNING: ----------------------------------...
> ------------------------------------------------------...
> Libraries have been installed in:
> /usr/local/lib/courier-authlib
> &br;
> If you ever happen to want to link against installed l...
> in a given directory, LIBDIR, you must either use libt...
> specify the full pathname of the library, or use the `...
> flag during linking and do at least one of the followi...
> - add LIBDIR to the `LD_LIBRARY_PATH' environment v...
> during execution
> - add LIBDIR to the `LD_RUN_PATH' environment varia...
> during linking
> - use the `-Wl,-rpath -Wl,LIBDIR' linker flag
> &br;
> See any operating system documentation about shared li...
> more information, such as the ld(1) and ld.so(8) manua...
> ------------------------------------------------------...
(mail::courier-imap.log ¤«¤é)
> In case you use authpam, you should put the following ...
> in your /etc/pam.d/imap
> auth required pam_unix.so try_first_pass
> account required pam_unix.so try_first_pass
> session required pam_permit.so
> &br;
> You will have to run /usr/local/share/courier-imap/mki...
> a self-signed certificate if you want to use imapd-ssl.
> And you will have to copy and edit the *.dist files to *
> in /usr/local/etc/courier-imap.
> This port has installed the following files whic...
> servers and may therefore pose a remote security...
> /usr/local/libexec/courier-imap/couriertcpd
> /usr/local/bin/couriertls
> &br;
> This port has installed the following startup sc...
> these network services to be started at boot time.
> /usr/local/etc/rc.d/courier-imap-imapd
> /usr/local/etc/rc.d/courier-imap-pop3d
> /usr/local/etc/rc.d/courier-imap-pop3d-ssl
> /usr/local/etc/rc.d/courier-imap-imapd-ssl
> &br;
> If there are vulnerabilities in these programs t...
> risk to the system. FreeBSD makes no guarantee a...
> ports included in the Ports Collection. Please t...
> to deinstall the port if this is a concern.
> &br;
> For more information, and contact details about ...
> status of this software, see the following webpa...
> http://www.courier-mta.org/imap/
¤È¤¤¤¦¥á¥Ã¥»¡¼¥¸¤¬¸«¤Ä¤«¤ë.
courier-authlib ´ØÏ¢¤Î¥í¥°¥Õ¥¡¥¤¥ë¤ÎÆâÍƤÏÆäËÌäÂê¤Ê¤¤.
courier-imap ¤Î¥í¥°¥Õ¥¡¥¤¥ë¤Ë¤ÏÀßÄê¤Ë´Ø¤ï¤ëÉôʬ¤¬¤¢¤ë¤Î¤Ç...
// ¤³¤ì¤Ï¡¤IMAP ¤Îǧ¾ÚÊýË¡¤È¤·¤Æ¾¤ÎÊýË¡¤Ç¤¢¤ë PAM ¤ò»È¤¤...
// ¤¤¤º¤ì¤â·ë¹½½ÅÍפʥá¥Ã¥»¡¼¥¸¤Ê¤Î¤Ç¡¤ÆɤßÈô¤Ð¤µ¤Ê¤¤¤è¤¦...
&ref(./warning.png); SMTP Auth ¤ÎÅÓÃ椫¤é courier-imap ¤Î...
** courier-imap ¤ÎÀßÄê [#xa79a0fd]
¤µ¤Æ¡¤¥¤¥ó¥¹¥È¡¼¥ë¤¬ºÑ¤à¤È /usr/local/etc/authlib ¤Ëǧ¾Ú...
¤Þ¤ºÇ§¾Ú´Ø·¸¤òÀ°Íý¤·¤è¤¦.
ǧ¾Úµ¡¹½¤½¤Î¤â¤Î¤ÎÀßÄê¤Ë¤Ä¤¤¤Æ¤Ï /usr/local/etc/authlib ...
&ref(./notes.png); ¼¡¤Ë¡¤over TLS/SSL ¤Ç»È¤¦¼«¸Êǧ¾Ú¾ÚÌÀ...
Àè¤Ëºî¤Ã¤¿¸°¤È¾ÚÌÀ½ñ¤È¤Ï°ã¤¦µ¡Ç½¤Î¤â¤Î¤Ê¤Î¤Ç¡¤¿·¤¿¤Ëºî¤í...
ÊýË¡¤Ï´Êñ¤Ç¡¤¤Þ¤º /usr/local/etc/courier-imap ¤Ë¥µ¥ó¥×¥ë...
¶ñÂÎŪ¤Ë¤Ï
cd /usr/local/etc/courier-imap
cp imapd.cnf.dist imapd.cnf
cp pop3d.cnf.dist pop3d.cnf
chmod u+w *.cnf
emacs imapd.cnf
emacs pop3d.cnf
¤È¤¤¤¦´¶¤¸¤À. ¤½¤ì¤«¤é¡¤
cd /usr/local/share/courier-imap/
./mkimapdcert
./mkpop3dcert
¤È¤¹¤ë¤È¡¤/usr/local/share/courier-imap/ ¤Ë imapd.pem, po...
¥Õ¥¡¥¤¥ë̾¤â¾ì½ê¤âÆäËÊѹ¹¤òÍפ·¤Ê¤¤¤Î¤Ç¡¤¤³¤ì¤Ç¾ÚÌÀ½ñ¤Î...
¼¡¤Ë¡¤IMAP ËÜÂΤÎÀßÄê¤ò¹Ô¤ª¤¦.
&ref(./warning.png);¤¤¤Ä¤â¤Î¤è¤¦¤ËÇ°¤Î°Ù¥Ð¥Ã¥¯¥¢¥Ã¥×¤ò¤È...
/usr/local/etc/courier-imap ¤Î imapd ¤È¤¤¤¦¥Õ¥¡¥¤¥ë¤òÊÔ½¸...
¶ñÂÎŪ¤Ë¤Ï¡¤
> IMAP_CAPABILITY="IMAP4rev1 UIDPLUS CHILDREN NAMESPACE ...
> IMAP_CAPABILITY_TLS="$IMAP_CAPABILITY AUTH=PLAIN AUTH=...
¤ÎÆ󥫽ê¤ò½¤Àµ(²èÌ̤ÎÅÔ¹ç¤ÇÀÞ¤êÊÖ¤·¤Æ¤¤¤ë¤¬¡¤³Æ¡¹ 1¹Ô¤º¤Ä...
³Æ¡¹¡¤¥Ç¥Õ¥©¥ë¥ÈÃͤ«¤éÊѤï¤Ã¤¿Éôʬ¤ò¸«¤ì¤Ð²¿¤ò¤·¤¿¤«¤Ï¤ï...
¤¢¤È¡¤POP ¥µ¡¼¥Ð¤â»È¤¤¤¿¤¤¤Ê¤é¤Ð¡¤¤È¤ê¤¢¤¨¤ºÆ±ÍÍ¤Ë pop3d ...
> POP3AUTH="LOGIN CRAM-MD5 CRAM-SHA1"
> POP3AUTH_TLS="LOGIN PLAIN"
¤È½¤Àµ¤·¤Æ¤ª¤±¤Ð¤è¤¤.
¤µ¤Æ¡¤¤¢¤È¤Ï IMAP ¥µ¡¼¥Ð¤Îµ¯Æ°½àÈ÷¤Ç¤¢¤ë¤¬¡¤¤³¤ì¤Ï¾ðÊó¤¬...
¤·¤«¤¿¤Ê¤¤¤Î¤Ç¡¤courier-imap ¥¤¥ó¥¹¥È¡¼¥ë»þ¤Î¥á¥Ã¥»¡¼¥¸¤ò...
> This port has installed the following startup scripts ...
> ¡Äά¡Ä
¤È¤¢¤ë¤Î¤Ç¡¤¼ÂºÝ¤Ï¤³¤ì¤é¤Î¥¹¥¯¥ê¥×¥È¤¬µ¯Æ°Áàºî¤ò¹Ô¤¦¤Î¤À...
¤½¤·¤ÆÇ°¤Î°Ù¤Ë /usr/local/etc/rc.d ¥Ç¥£¥ì¥¯¥È¥ê¤òÇÁ¤¤¤Æ¤ß...
¤½¤³¤Ç¤³¤ì¤é¤Î¥Õ¥¡¥¤¥ë¤Î¤¦¤Á¡¤IMAP/POP ¥µ¡¼¥Ð¤Îµ¯Æ°¤Ë´ØÏ¢...
¤¹¤ë¤È¡¤Î㤨¤Ð courier-authdaemond ¤Ë¤Ï
> # Define these courier_authdaemond_* variables in one ...
> # /etc/rc.conf
> # /etc/rc.conf.local
> # /etc/rc.conf.d/courier_authdaemond
> #
> # DO NOT CHANGE THESE DEFAULT VALUES HERE
> &br;
> courier_authdaemond_enable=${courier_authdaemond_enabl...
> (YES/NO).
¤È½ñ¤¤¤Æ¤¢¤ê¡¤¤É¤¦¤ä¤é /etc/rc.conf ¤Ë courier_authdaemon...
ƱÍͤ˾¤Î¥¹¥¯¥ê¥×¥È¥Õ¥¡¥¤¥ë¤Ë¤âµ½Ò¤¬¤¢¤ê¡¤¤³¤ì¤é¤òÁí¹ç...
> # for IMAP
> courier_authdaemond_enable="YES"
> courier_imap_imapd_enable="YES"
> courier_imap_imapd_ssl_enable="YES"
> courier_imap_pop3d_enable="YES"
> courier_imap_pop3d_ssl_enable="YES"
¤Ê¤É¤È½ñ¤¹þ¤à¤Î¤¬Îɤµ¤½¤¦¤À¤È¤¤¤¦¤³¤È¤¬¿ä¬¤Ç¤¤ë.
&ref(./notes.png); ¾å¤Î¤è¤¦¤Ë½ñ¤¹þ¤ß¡¤Ç°¤Î°Ù¤Ë¥ê¥Ö¡¼¥È¤·...
¤½¤Î¸å¡¤lsof ¤Ê¤É¤òÍѤ¤¤Æ imapd ¤¬Æ°¤¤¤Æ¤¤¤ë¤³¤È¤ò³Îǧ¤·...
lsof -i4 | grep -i courier
¤È¤·¤Æ½ÐÎϤò¤ß¤¿¤È¤¤Ë¡¤
> couriertc 838 root 3u IPv4 0xc342c740 0t0 ...
> couriertc 847 root 3u IPv4 0xc342c570 0t0 ...
> couriertc 857 root 3u IPv4 0xc342c3a0 0t0 ...
> couriertc 867 root 3u IPv4 0xc342c1d0 0t0 ...
¤È¤¤¤¦¤è¤¦¤Ë¡¤imap, imaps, pop3, pop3s ¤Î4¤Ä¤¬½Ð¤Æ¤¯¤ì¤Ð...
imapd ¤ä pop3d ¤¬Æ°¤¤¤Æ¤¤¤Ê¤¤¤è¤¦¤Ê¤é¤Ð¤â¤¦°ìÅÙÀßÄê¤ò¸«Ä¾...
** IMAP ÍѤΥ桼¥¶¾ðÊó¤ÎÅÐÏ¿ [#u3b18504]
º£²ó¤Ï userdb ¤Ç¥Ñ¥¹¥ï¡¼¥É¾È¹ç¤ò¹Ô¤¦¤è¤¦¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤·...
&ref(./notes.png); °Ê²¼¤Î¼ê½ç¤Ç¥æ¡¼¥¶¾ðÊó¤ÎÅÐÏ¿ºî¶È¤ò¹Ô¤ª...
¤è¤ê¾Ü¤·¤¯ÃΤꤿ¤¤¼Ô¤Ï¡¤http://www.courier-mta.org/FAQ.ht...
+ ¤Þ¤º¶õ¤Î¥Ç¥£¥ì¥¯¥È¥ê /usr/local/etc/userdb ¤òºîÀ®¤¹¤ë.
cd /usr/local/etc
mkdir userdb
chmod 700 ./userdb
¤Ê¤É¤È¤¹¤ì¤Ð¤è¤¤.
+ (¥Ñ¥¹¥ï¡¼¥É°Ê³°¤Î)¥æ¡¼¥¶¾ðÊó¤òÅÐÏ¿¤¹¤ë
-- /etc/passwd ¤«¤éºî¤ëÊýË¡
´û¤Ë¥·¥¹¥Æ¥à¤Î¥æ¡¼¥¶¤Ç¤â¤¢¤ë¤Ê¤é¤Ð´Êñ¤Ç¤ª¤¹¤¹¤á. ¤³¤Á¤é...
pw2userdb ¥³¥Þ¥ó¥É¤òÍѤ¤¤Æ
cd /usr/local/etc/userdb/
pw2userdb | grep ¥æ¡¼¥¶Ì¾ >> ./users
¤È¤¹¤ì¤Ð¤è¤¤.
-- Îí¤«¤éºî¤ëÊýË¡.
userdb ¥³¥Þ¥ó¥É¤ÇľÀܤ¤¤í¤¤¤í»ØÄꤹ¤ëÊýË¡. ¤Á¤ç¤¤ÌÌÅÝ.
userdb "john@example.com" set home=/home/vmail \
mail=/home/vmail/Maildir-john-example uid=UUU gid=GGG"
¤Ê¤É¤È¤¹¤ëÊýË¡.
+ ¥Ñ¥¹¥ï¡¼¥É¤òÀßÄꤹ¤ë.
cd /usr/local/etc/userdb
userdbpw -hmac-md5 | userdb users/¥æ¡¼¥¶Ì¾ set hmac-md5pw
¤È¤¹¤ì¤Ð¤è¤¤. ¤³¤Î hmac-md5 ¤È¤¤¤¦¤Î¤¬ CRAM-MD5 ¤ÇÍøÍѤµ...
¤¦¤Þ¤¯¤¤¤Ã¤Æ¤¤¤ë¤«¤É¤¦¤«¡¤users ¥Õ¥¡¥¤¥ë¤ò¤Ñ¤Ã¤ÈÆɤó¤Ç³Î...
+ Äɲá¤Êѹ¹²Õ½ê¤ò͸ú¤Ë¤¹¤ë.
makeuserdb
¤È¤¹¤ì¤Ð¤è¤¤.
¤³¤Î¼ê½ç¤Ï¤¤¤«¤Ë¤âÌÌÅݤÀ¤·¡¤´Ö°ã¤¨¤ä¤¹¤½¤¦¤Ç¿´ÇÛ¤À.
¤½¤³¤Ç¡¤¤¤Á¤ó¤ÈÅÐÏ¿¤µ¤ì¤Æ¤¤¤ë¤«³Îǧ¤·¤Æ¤ª¤³¤¦¡¥
&ref(./warning.png); courierÍѥѥ¹¥ï¡¼¥É¤¬¤¤Á¤ó¤ÈÅÐÏ¿¤µ...
(¤¤¤Ä¤â¤Î¤è¤¦¤Ë psearch ¤Çõ¤·¤¿¤È¤·¤Æ)¶ñÂÎŪ¤Ë¤Ï
portinstall security/courierpasswd
¤Ç¥¤¥ó¥¹¥È¡¼¥ë¤Ç¤¤ë¡¥
¤³¤Î»þ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤ò¤ß¤ë¤È¡¤
> ######################################################...
> &br;
> You should set the following build option.
> &br;
> MINUID=uid
> Accounts with uids below this value cannot have
> their passwords changed. Default value is 100.
> &br;
> ######################################################...
> ######################################################...
> NOTES FOR RUNNING COURIERPASSWD
> &br;
> In order to use courierpasswd, it must be able to acce...
> authdaemon domain socket, named 'socket'. When courier...
> root, this presents no problem. However, if you need t...
> as a non-root user, you have three options, all of whi...
> manual work.
> &br;
> Option 1: Add the user courierpasswd will run as to th...
> owns the authdaemon socket directory in /etc/group. Mo...
> can be added to the group vector in this way. This arr...
> well if courierpasswd will be run by only a small numb...
> If the authdaemon socket directory is owned by courier...
> run courierpasswd as user vmail, your /etc/group file ...
> something like this:
> &br;
> courier:x:465:vmail
> &br;
> Option 2: Some programs, such as tcpserver, allow you ...
> the uid and gid of programs they call but don't honour...
> found in /etc/group. If you invoke courierpasswd from ...
> set the gid to the group ownership of the authdaemon s...
> For tcpserver, you could do something like this:
> &br;
> #!/bin/sh
> &br;
> QMAILUID=`/usr/bin/id -u qmaild`
> COURIERGID=`/usr/bin/id -g courier`
> &br;
> exec /usr/local/bin/tcpserver -u "$QMAILUID" -g "$...
> 0 smtp /var/qmail/bin/qmail-smtpd /usr/local/sbin/...
> /usr/bin/true 2>&1
> &br;
> Option 3: Change the permissions on courierpasswd to s...
> group ownership of the socket directory. Again, if the...
> is owned by courier:courier, change the ownership and ...
> of courierpasswd like so:
> &br;
> chgrp courier courierpasswd
> chmod g+s courierpasswd
> &br;
> Be aware that courierpasswd does not provide any max-f...
> functionality so it is possible for local users to per...
> attacks against account passwords if courierpasswd is ...
> &br;
> The location of the authdaemon domain socket is listed...
> authdaemonrc configuration file as the parameter authd...
> &br;
> ######################################################...
¤È½ñ¤¤¤Æ¤¢¤ë¡¥
Á°¼Ô¤Ï¡¤¡Öuid ¤¬(¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï)100°Ê²¼¤Î¥æ¡¼¥¶¤Î¥Ñ¥¹¥ï¡¼...
¸å¼Ô¤Ï¡¤courierpasswd ¤ò¥¹¡¼¥Ñ¡¼¥æ¡¼¥¶°Ê³°¤¬»È¤¤¤¿¤¤¾ì¹ç...
¤¿¤À¤·¡¤º£²ó¤Ï¥¹¡¼¥Ñ¡¼¥æ¡¼¥¶¤Ç¤·¤«ÍøÍѤ·¤Ê¤¤¤Î¤Ç¡¤ÌäÂê¤Ê...
¤µ¤Æ¡¤¥¤¥ó¥¹¥È¡¼¥ë¤Ç¤¤¿¤é¡¤
printf '¥æ¡¼¥¶Ì¾\0¥Ñ¥¹¥ï¡¼¥É\0' | courierpasswd --stder...
¤È¤·¤ÆÅÐÏ¿¤ò³Î¤«¤á¤è¤¦¡¥
> Username is: &color(blue){ÆþÎϤ·¤¿¥æ¡¼¥¶Ì¾};
> Password is: &color(blue){ÆþÎϤ·¤¿¥Ñ¥¹¥ï¡¼¥É};
> Authenticated for user &color(blue){ÆþÎϤ·¤¿¥æ¡¼¥¶Ì¾};
¤È¤¤¤¦¤è¤¦¤Ë¡¤"Authenticated" ¤È½Ð¤ì¤ÐÂç¾æÉפÀ¡¥µÕ¤Ë¡¤¤Ê...
> Authentication failuer for user &color(blue){ÆþÎϤ·¤¿...
¤È¤Ê¤ë¤Î¤Ç¡¤¤½¤Î¾ì¹ç¤ÏºÇ½é¤ËÁ̤äƤä¤êľ¤½¤¦¡¥
¤ä¤êľ¤·¤ò¤¹¤ë¤Ê¤é¤Ð¡¤º£²ó¤ÏÂоݥ桼¥¶¤¬1¿Í¤·¤«¤¤¤Ê¤¤¤Î¤Ç...
** courier-imap ¤ÎÆ°ºî³Îǧ [#s8167bde]
SMTP Auth ¤Î»þ¤ÈƱÍͤˡ¤2¤Ä¤Îʸ»úüËö¥¨¥ß¥å¥ì¡¼¥¿¤òÍÑ°Õ¤·...
¤¿¤À¤·¡¤Æ°ºî³Îǧ¤Ç¤â¤¿¤Ä¤¤¤Æ¤¤¤ë¤È courier-imap ¥µ¡¼¥Ð¤¬...
&ref(./notes.png); ¤½¤Î¤¿¤á¤Î½àÈ÷¤òÀè¤Ë¤·¤Æ¤ª¤³¤¦. ¶ñÂÎŪ...
> IMAP_IDLE_TIMEOUT=60
¤È¤¤¤¦Éôʬ¤¬¡Ö60ÉÃÈ¿±þ¤¬¤Ê¤±¤ì¤ÐÀÚÃǡפȤ¤¤¦°ÕÌ£¤Ê¤Î¤Ç¡¤...
Î㤨¤Ð 180 ¤°¤é¤¤¤Ë¤¹¤ì¤ÐÌäÂê¤Ê¤¤¤À¤í¤¦.
¤Ê¤ª¡¤¤³¤Î¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤·¤¿¤é courier-imap ¥µ¡¼¥Ð¤ò°ìö...
¶ñÂÎŪ¤Ë¤Ï
/usr/local/etc/rc.d/courier-imap-imapd stop
/usr/local/etc/rc.d/courier-imap-imapd start
¤È¤·¤Æ¤ª¤±¤Ð¤è¤¤.
&ref(./notes.png); ¤µ¤Æ¡¤¤Ç¤Ï SMTP Auth ¤Î»þ¤ÈƱ¤¸¤è¤¦¤Ë...
''Shell-A'' ¤Ç¡¤telnet localhost 143 ¤È¤¹¤ë¤È
> Trying 127.0.0.1...
> Connected to localhost.
> Escape character is '^]'.
> * OK [CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE ...
¤Ê¤É¤È¸À¤Ã¤Æ¤¯¤ë. ¤³¤³¤Ç¡¤
> a authenticate cram-md5
¤ÈÆþÎϤ¹¤ë¤È
> + PG5hbmlrYS1pbWFwQHNlcnZlcj4=
¤Ê¤É¤È¥µ¡¼¥Ð¤«¤éʸ»úÎó¤¬Á÷¤é¤ì¤Æ¤¯¤ë.
¤³¤Îʸ»úÎó ''PG5hbmlrYS1pbWFwQHNlcnZlcj4='' ¤ËÂФ·¤Æ¡¤Àè...
Î㤨¤Ð¼¡¤Î¤è¤¦¤Ë¤Ê¤ë¤À¤í¤¦.
> Username? testuser &color(blue){¢« IMAP ÍѤËÅÐÏ¿¤·¤¿¥æ...
> Password? password &color(blue){¢« IMAP ÍѤËÅÐÏ¿¤·¤¿¥Ñ...
> Send: AUTH CRAM-MD5 (or for imap, A AUTHENTICATE CRAM-...
> Paste the challenge here:
> + PG5hbmlrYS1pbWFwQHNlcnZlcj4= &color(blue){¢« º£¤Îʸ»ú...
> Send this response:
> dGVzdHVzZXIgYjlkMDA5MzQ4YmVjMzlkNzcwMWU4MWRiZWE3NmZhN2...
¤³¤ÎºÇ¸å¤Îʸ»úÎó ''dGVzdHVzZXIgYjlkMDA5MzQ4YmVjMzlkNzcwMW...
¤½¤·¤Æ
> a OK LOGIN Ok.
¤È¤Ê¤ì¤Ð¡¤IMAP ¥µ¡¼¥Ð¤Îǧ¾Ú¤¬Ä̤俤Ȥ¤¤¦¤³¤È¤Ë¤Ê¤ê¡¤Æ°ºî...
¤¢¤È¤Ï¤¤¤Ä¤â¤Î¤è¤¦¤Ë ^] ¤È¤·¤Æ¤«¤é quit ¤È¤¹¤ì¤ÐÈ´¤±¤é¤ì¤ë.
¤Ê¤ª¡¤POP ¥µ¡¼¥Ð¤òΩ¤Á¾å¤²¤¿¤Ê¤é¤ÐƱÍͤ˥ƥ¹¥È¤¬²Äǽ¤Ç¤¢¤ë.
¤½¤ÎºÝ¤Ï
telnet localhost 110
¤È¤¹¤ë¤È¡¤
> Trying 127.0.0.1...
> Connected to localhost.
> Escape character is '^]'.
> +OK Hello there.
¤È¤Ê¤ë¤Î¤Ç¡¤¤³¤³¤Ç
> capa
¤ÈÆþÎϤ¹¤ë¤È
> SASL CRAM-MD5 CRAM-SHA
> STLS
> TOP
> USER
> LOGIN-DELAY 10
> PIPELINING
> UIDL
> IMPLEMENTATION Courier Mail Server
> .
¤È±þÅú¤¬Ê֤äƤ¯¤ë.
¤³¤³¤Ç
> auth cram-md5
¤ÈÆþÎϤ¹¤ë¤È
> + PG5hbmlrYS1pbWFwQHNlcnZlcj4=
¤Ê¤É¤È¥µ¡¼¥Ð¤«¤éʸ»úÎó¤¬Á÷¤é¤ì¤Æ¤¯¤ë¤Î¤Ç¡¤
¤³¤ì¤Ë userdb-test-cram-md5 ¥³¥Þ¥ó¥É¤ÇÊÖÅúÍÑʸ»úÎó¤òºîÀ®...
> +OK logged in.
¤Èǧ¾Ú¤µ¤ì¤ë¤È¤¤¤¦Î®¤ì¤Ë¤Ê¤ë.
&ref(./notes.png); ;͵¤¬¤¢¤ì¤ÐŬÅö¤Ê MUA ¤Ç IMAP ¥µ¡¼¥Ð...
¤µ¤é¤Ë;͵¤¬¤¢¤ì¤Ð¡¤IMAP over TLS/SSL ÀßÄê¤Ç¥µ¡¼¥Ð¤ËÀܳ...
* ¥ì¥Ý¡¼¥È [#w8848073]
ÅÓÃæ¤Ç¡ÖÄ´¤Ù¤è¡×¤È»Ø¼¨¤µ¤ì¤¿»ö¹à¤Ë¤Ä¤¤¤ÆÄ´ºº¤ò¹Ô¤¤¡¤Êó¹ð...
¤Þ¤¿¡¤ËÜÆü¹Ô¤Ã¤¿ºî¶È¤Ë¤Ä¤¤¤ÆÊó¹ð¤»¤è.
¤â¤Á¤í¤ó³Æ¼«¤Î
+ ½ê°(³ØÉô¡¤³Ø²Ê)
+ ³ØÀÒÈÖ¹æ
+ ³Øǯ
+ »á̾
+ Æü»þ
+ ´Î¿´¤Î¥ì¥Ý¡¼¥ÈÆâÍÆ(ÆÀ¤¿Ãθ«¡¤ºî¶È¤Ë¤Ä¤¤¤Æµ¤¤Å¤¤¤¿¤³¤ÈÅù)
¤ò½ñ¤¯¤Î¤ò˺¤ì¤Ê¤¤¤è¤¦¤Ë.
*** about Icons [#te833230]
Some icons in this page are downloadable at [[ICONFINDER:...
The "note" icon designed by [[Marco Martin:http://www.not...
and the "warning" icon designed by [[Alexandre Moore:http...
½ªÎ»¹Ô:
#contents
* ǧ¾Ú¥·¥¹¥Æ¥à¤Ë¤Ä¤¤¤Æ°ìÈÌŪ¤ÊÏà [#u05079ca]
unix ¥µ¡¼¥Ð¤Ë¸Â¤é¤º¡¤¥³¥ó¥Ô¥å¡¼¥¿°ìÈ̤ˡÖǧ¾Ú¡×¤È¤¤¤¦»ÅÁÈ...
´ðËÜŪ¤Ë¡¤´í¸±¤ÊÎΰè¤Ç¤¢¤ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤ò¥Ñ¥¹¥ï¡¼¥É¤ò...
¤½¤Î¤¿¤á¤Ë½é³Ø¼Ô¤Ë¤Ïº®Í𤬤¢¤ë¤«¤È»×¤¦¤¬¡¤¼ÂºÝ¤Ï¤³¤ÎÆó¥«...
¼ÂºÝ¡¤¤ª¤ª¤Þ¤«¤Ë¤Ï¡¤unix ¾å¤Ç¤Î¥½¥Õ¥È¥¦¥§¥¢¤ÏÄ̾ï¤Ï°Ê²¼¤Î...
&ref(./authentication-structure_s.png);
CENTER:ǧ¾Ú¤Î°ìÈÌŪ¤Ê»ÅÁȤß
* SMTP Auth ¤ò»È¤¦ [#vdcf756a]
** SMTP Auth ¤ÎÀßÄê(postfix, cyrus sasl2) [#ga95b02e]
¤è¤ê¼«Í³¤Ë MTA ¤ò»È¤¦¤¿¤á¤Ë SMTP Auth ¤òÍøÍѤ¹¤ë¤³¤È¤òÁÛ...
¤µ¤Æ¡¤¤Þ¤º¤Ï postfix ¤Î smtp auth ¤¬»È¤¦¤È¤µ¤ì¤Æ¤¤¤ë cyru...
¤³¤ì¤Þ¤Ç¤ÎÀßÄêÄ̤ê¤Ê¤é¤Ð¡¤/var/log/ports/security::cyrus-...
> ------------------------------------------------------...
> Libraries have been installed in:
> /usr/local/lib/sasl2
> &br;
> If you ever happen to want to link against installed l...
> in a given directory, LIBDIR, you must either use libt...
> specify the full pathname of the library, or use the `...
> flag during linking and do at least one of the followi...
> - add LIBDIR to the `LD_LIBRARY_PATH' environment v...
> during execution
> - add LIBDIR to the `LD_RUN_PATH' environment varia...
> during linking
> - use the `-Wl,-rpath -Wl,LIBDIR' linker flag
> &br;
> See any operating system documentation about shared li...
> more information, such as the ld(1) and ld.so(8) manua...
> ------------------------------------------------------...
¤È¤¤¤¦¥é¥¤¥Ö¥é¥ê¤Ë´Ø¤¹¤ë¤¤¤Ä¤â¤Îµ½Ò¤¬²¿²ó¤«¤¢¤Ã¤¿¸å¡¤
> *** We do not create /usr/local/etc/sasldb2.db automat...
> *** BATCH mode. Please create it by yourself. It sho...
> *** owner: cyrus, group: mail, mode: 0640.
> &br;
> You can use sasldb2 for authentication, to add users u...
> &br;
> saslpasswd2 -c username
> &br;
> If you want to enable SMTP AUTH with the system Sendma...
> Sendmail.README
> &br;
> NOTE: This port has been compiled with a default pwche...
> auxprop. If you want to authenticate your user ...
> PAM or LDAP, install ports/security/cyrus-sasl2-...
> set sasl_pwcheck_method to saslauthd after insta...
> Cyrus-IMAPd 2.X port. You should also check the
> /usr/local/lib/sasl2/*.conf files for the correct
> pwcheck_method.
¤È¤¤¤¦¥á¥Ã¥»¡¼¥¸¤¬¸«¤Ä¤«¤ë¡¥
¤³¤ì¤Ï¡¤
- sasldb2.db ¤È¤¤¤¦¥Õ¥¡¥¤¥ë¤Ï¼«Æ°Åª¤Ëºî¤é¤ì¤Ê¤¤¤Î¤Ç¡¤¼«Ê¬...
- smtp auth ¤ò¤Ä¤«¤¦¤Ê¤é¤Ð¡¤¥æ¡¼¥¶¥Ñ¥¹¥ï¡¼¥É¤ò saslpasswd...
- ¤³¤Î port ¤Ï¥Ñ¥¹¥ï¡¼¥É¾È¹ç¤È¤·¤Æ pwcheck_method (ÀìÍÑ¥Õ...
¤È¤¤¤¦¤³¤È¤¬½ñ¤¤¤Æ¤¢¤ë¡¥
¤¿¤À¡¤¤³¤ì¤Ç¤ÏÍͻҤ¬¤Þ¤ÀÄϤá¤Ê¤¤¤Î¤Ç¡¤¡¤¾ðÊó¤ò¤µ¤é¤ËÄ´¤Ù...
¤Þ¤º¤Ï°ì¼¡¾ðÊ󸻤Ȥ¤¤¦¤³¤È¤Ç¡¤ËÜ²È http://www.postfix.org...
Documentation ¤ò¸«¤ë¤È¡¤³ºÅö¤·¤½¤¦¤Ê¤â¤Î¤¬¤¹¤°¸«¤Ä¤«¤ë.
¶ñÂÎŪ¤Ë¤Ï http://www.postfix.org/SASL_README.html ¤ò¥Á¥§...
¤¹¤ë¤È¡¤¤Þ¤º¤Ï¼¡¤Î¤è¤¦¤Ë½ñ¤¤¤Æ¤¢¤ë¤È¤³¤í¤¬»²¹Í¤Ë¤Ê¤ë.
> Enabling SASL authentication in the Postfix SMTP server
> &br;
> In order to enable SASL support in the Postfix SMTP se...
> &br;
> /etc/postfix/main.cf:
> smtpd_sasl_auth_enable = yes
> &br;
> In order to allow mail relaying by authenticated remot...
> &br;
> /etc/postfix/main.cf:
> smtpd_reci...
> permit...
> permit...
> reject...
> &br;
> To report SASL login names in Received: message header...
> &br;
> /etc/postfix/main.cf:
> smtpd_sasl_authenticated_header = yes
> &br;
> Note: the SASL login names will be shared with the ent...
> &br;
> Older Microsoft SMTP client software implements a non-...
> &br;
> /etc/postfix/main.cf:
> broken_sasl_auth_clients = yes
¤³¤ì¤òÆɤà¤È¡¤postfix ¤ÎÀßÄê¥Õ¥¡¥¤¥ë¤Ç¤¢¤ë main.cf ¤ò½ñ¤...
Â礶¤Ã¤Ñ¤Ë¤Ï
- SASL ¤ò»È¤¤¤¿¤±¤ì¤Ð¡¤¤³¤¦¤·¤í.
- ǧ¾Ú¤µ¤ì¤¿¥ê¥â¡¼¥È¥¯¥é¥¤¥¢¥ó¥È¤Ë¤è¤ë¥á¡¼¥ë¥ê¥ì¡¼¤òµö²Ä...
- ¥á¡¼¥ë¤Î¤ä¤ê¤È¤ê¤Î¥Ø¥Ã¥À¤Ë SASL¥æ¡¼¥¶Ì¾¤òºÜ¤»¤¿¤±¤ì¤Ð¡¤...
- Microsoft ¤Î¸Å¤¤¥á¡¼¥é¤Ë¤Ïǧ¾Ú¥×¥í¥È¥³¥ë¤Îʸˡ¤Î°ìÉô¤¬...
¤È¤¤¤¦4¤Ä¤Î¤³¤È¤¬½ñ¤¤¤Æ¤¢¤ë.
¤É¤ì¤âÆä˰ÛÏÀ¤Ï¤Ê¤¤ÆâÍƤʤΤǡ¤¤½¤Î¤Þ¤Þ½¾¤Ã¤Æ¤è¤¤¤À¤í¤¦.
&ref(./notes.png); ¤³¤Î»Ø¼¨¤Ë¤·¤¿¤¬¤Ã¤Æ main.cf ¤ò½¤Àµ¤·...
¤³¤³¤Ç¤ÏÁ´Éô¤Ç 4¤Ä¤Îµ½Ò¤¬²Ã¤ï¤ë¤³¤È¤Ë¤Ê¤ë. ¤³¤ì¤Ï main.c...
¤¿¤À¤·¡¤¾å¤ÎʸÃæ¤Î/etc/postfix ¤Ï FreeBSD ¤Ç¤Ï /usr/local...
¤Þ¤¿¡¤"Web ¤Î¥µ¥ó¥×¥ë¤Ç¤Ï smtpd_recipient_restrictions ¤¬...
&ref(./warning.png); "smtp" ¤È "smtpd" (ºÇ¸å¤Ë "d" ¤¬¤Ä¤¤...
¤µ¤é¤Ë¾åµ»ñÎÁ¤òÆɤ߿ʤà¤È¡¤ "Cyrus SASL configuration fo...
¤¿¤À¤·¡¤»ÈÍѤ¹¤ë postfix (ver.2.6.5,1)¤ä cyrus sasl (ver....
¤Þ¤º¡¤
> Cyrus SASL configuration for the Postfix SMTP server
> &br;
> You need to configure how the Cyrus SASL library shou...
> &br;
> The name of the configuration file (default: smtpd.con...
> &br;
> /etc/postfix/main.cf:
> smtpd_sasl_path = smtpd
> &br;
> Cyrus SASL searches for the configuration file in /usr...
> &br;
> Note: some Postfix distributions are modified and look...
> &br;
> Note: some Cyrus SASL distributions look for the smtpd...
¤È¤¤¤¦¤³¤È¤Ç¡¤cyrus sasl2 ¤ÎÀßÄê¥Õ¥¡¥¤¥ë¤Ï /usr/local/lib...
&ref(./notes.png); ¤Þ¤º¤Ï¾å¤Î»Ø¼¨¤Ë½¾¤Ã¤Æ postfix ¤ÎÀßÄê...
¤½¤ì¤«¤é¡¤¥Ñ¥¹¥ï¡¼¥É¾È¹çÊýË¡¤ÎÁªÂò¤Ë¤Ä¤¤¤Æ¤¬¼¡¤Ë³¤¤¤Æ½ñ...
> * To authenticate against the UNIX password datab...
> &br;
> * To authenticate against Cyrus SASL's own passwo...
> &br;
> /usr/local/lib/sasl2/smtpd.conf:
> pwcheck_method: auxprop
> auxprop_plugin: sasldb
> mech_list: PLAIN LOGIN CRAM-MD5 DIGEST-MD5
&ref(./notes.png); ¤È¤¢¤ë¤Î¤Ç¡¤¾å¤Î¤è¤¦¤Ë smtpd.conf ¤òÊÔ...
&ref(./warning.png); mech_list ¤ò½ü¤¤¤Æ¼Â¤Ï¤³¤ì¤Ï¥Ç¥Õ¥©¥ë...
¤½¤ì¤«¤é³¤±¤Æ¡¤
> This will use the Cyrus SASL password file (defa...
> &br;
> IMPORTANT: To get sasldb running, make sure that...
> &br;
> EXAMPLE:
> &br;
> % saslpasswd2 -c -u `postconf -h myhostname`...
> &br;
> You can find out SASL's idea about the realms of...
¤È¤¢¤ê¡¤¥æ¡¼¥¶¤Î¥Ñ¥¹¥ï¡¼¥É¤òÅÐÏ¿¤¹¤ëºÝ¤Ë realm(¥Ñ¥¹¥ï¡¼¥É...
&ref(./notes.png); ¾å¤Î»Ø¼¨¤Ë½¾¤¤¤Ä¤Ä¡¤smtp auth ÍѤΥ桼...
&ref(./notes.png); ¤¤Á¤ó¤ÈÅÐÏ¿¤µ¤ì¤¿¤«¡¤sasldblistusers2...
> &color(blue){ÅÐÏ¿¤·¤¿¥æ¡¼¥¶Ì¾};@&color(blue){¥Û¥¹¥È̾}...
¤È¤¤¤¦½ÐÎϤ¬½Ð¤ì¤Ð¡¤ÅÐÏ¿¤µ¤ì¤Æ¤¤¤ë¤³¤È¤¬³Îǧ¤Ç¤¤¿¤È¤¤¤¦...
¤½¤·¤Æ¡¤¤³¤Î¡Ö¥Ñ¥¹¥ï¡¼¥É¤òÅÐÏ¿¤¹¤ëºî¶È¡×¤Ç(¼«Æ°¤Ç¤Ïºî¤é¤Ê...
cd /usr/local/etc
ls -lga sasldb2.db
¤³¤¦¤·¤Æ¤³¤Î¥Õ¥¡¥¤¥ë¤ò¥Á¥§¥Ã¥¯¤¹¤ë¤È¡¤¤ª¤½¤é¤¯¾å¤Î¾ò·ï(¥Õ...
¤½¤Î¾ì¹ç¤Ï¡¤¼¡¤Î¤è¤¦¤Ë¤·¤Æ¥Õ¥¡¥¤¥ë¤Î¾ò·ï¤ò½ñ¤´¹¤¨¤è¤¦¡¥
chown cyrus:mail ./sasldb2.db
chmod 0640 ./sasldb2.db
¼¡¤Ë¡¤
> On the Postfix side, you can have only one realm...
> &br;
> /etc/postfix/main.cf:
> smtpd_sasl_local_domain = $myhostname
¤È¤¢¤ë¤Î¤Ç¡¤realm ¤Ë´Ø¤¹¤ë postfix ¤ÎÀßÄê¤â¤Þ¤¿É¬ÍפÀ.
&ref(./notes.png); ¾å¤Î»Ø¼¨¤Ë½¾¤Ã¤Æ postfix ¤ÎÀßÄê¥Õ¥¡¥¤...
¤¢¤È¤Ï¡¤¼¡¤Î¤è¤¦¤ÊÃí°Õ¤¬¤¢¤ë.
> IMPORTANT: The Cyrus SASL password verification servic...
> &br;
> * With Cyrus SASL version 2.1.x or later the mech...
> &br;
> /usr/local/lib/sasl2/smtpd.conf:
> mech_list: plain login
> &br;
> For the same reasons you might want to limit the list ...
> &br;
> /usr/local/lib/sasl2/smtpd.conf:
> pwcheck_method: auxprop
> auxprop_plugin: sql
¤³¤ì¤Ï¥Ñ¥¹¥ï¡¼¥É¤ÎÅÁãÊýË¡¤ä¾È¹çÊýË¡¤ÎÁȤ߹ç¤ï¤»¤Î¤¦¤Á¡¤...
¶ñÂÎŪ¤Ë¤Ï¡¤Unix ¤Î¥í¥°¥¤¥ó¥Ñ¥¹¥ï¡¼¥Éǧ¾Ú¤Ë»È¤¦¾ì¹ç¤ÎÏäÊ...
¤½¤·¤ÆºÇ¸å¤Ë
> To run software chrooted with SASL support is an inter...
¤È¤¢¤ë. ¤Þ¤¢¸À¤Ã¤Æ¤¤¤ë¤È¤ª¤ê¡¤¤¿¤Ö¤ó³ä¤Ë¤¢¤ï¤Ê¤¤¤À¤í¤¦¤«...
&ref(./warning.png); FreeBSD ¤Ë¤Ï chroot ¤è¤ê¤â¿Ê²½¤·¤¿µ¡...
** SMTP Auth ¤ÎÆ°ºî³Îǧ [#x3924737]
*** ½àÈ÷ [#s1b4ec58]
¸å¤ÇÍѤ¤¤ë¥³¥Þ¥ó¥É mmencode ¤ò¡¤º£¤Î¤¦¤Á¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤·...
¶ñÂÎŪ¤Ë¤Ï¡¤¤¤¤Ä¤â¤Î¤è¤¦¤Ë portsnap ¤Ç ports ¥³¥ì¥¯¥·¥ç¥ó...
psearch & portinstall ¤Ç¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤È¤¤¤¦¼ê½ç¤À¡¥
//
// portsnap fetch; portsnap update
// psearch mmencode
// portinstall &color(blue){psearch ¤Î·ë²Ì¤«¤éȽÃǤ·¤Æ};
//
// ¤È¤¹¤ì¤Ð¤è¤¤.
*** ¼ÂºÝ¤Ë¼ê¤ÇÀܳ¤·¤Æ¤ß¤ë. [#qc3947f2]
SMTP Auth ¤ÇÀܳ¤¹¤ëºÝ¤Îǧ¾ÚÊýË¡¤Ë¤â¤¤¤¯¤Ä¤«¤¢¤ê¡¤¼«Í³¤Ë...
º£²ó¤Î¥¤¥ó¥¹¥È¡¼¥ë¤Ç¤Ï¾å¤ÇÀßÄꤷ¤¿¤è¤¦¤Ë loginǧ¾Ú, plain...
(¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï¤µ¤é¤Ë NTLMǧ¾Ú¤È GSSAPIǧ¾Ú¤¬»È¤¨¤ë¤è¤¦¤Ë...
¤½¤³¤Ç¡¤¤³¤Î¤¦¤Á¤Î plainǧ¾Ú¤È CRAM-MD5ǧ¾Ú¤ò»î¤·¤Æ¤ß¤è¤¦.
¤Á¤Ê¤ß¤Ë¡¤plainǧ¾Ú¤Ï´Êñ¤ËÍøÍѤǤ¤ë¤¬°Å¹æ²½¤µ¤ì¤Æ¤¤¤Ê¤¤...
*** ¼ê¤Ç SMTP Auth ¤ò»î¤¹ : Plain ǧ¾Ú¤Î¾ì¹ç [#u13855ae]
Plain ǧ¾Ú¤Ï¤ªµ¤³Ú¤Ê¥â¥Î¤Ç¡¤SMTP Auth »þ¤Ëʸ»úÎó "\0¥æ¡¼...
&ref(./warning.png); base 64 ¤Ï°Å¹æ²½¤Ç¤Ï¤Ê¤¯¤Æ(¥³¥ó¥Ô¥å...
&ref(./notes.png);
¤µ¤Æ¡¤ÀܳÁ°¤ËÀܳ¤ËɬÍפÊʸ»úÎó¤òºî¤Ã¤Æ¤·¤Þ¤ª¤¦.
¶ñÂÎŪ¤Ë¤Ï¡¤¥³¥Þ¥ó¥É¥é¥¤¥ó¤Ç
printf '\0000¥æ¡¼¥¶Ì¾\0000¥Ñ¥¹¥ï¡¼¥É' | mmencode
¤È¤¹¤ì¤Ð¤è¤¤((\0000 ¤È¤Ê¤Ã¤Æ¤¤¤ë¤È¤³¤í¤Ï \0 ¤Ç¤â¤è¤¤¤Î¤À...
¥æ¡¼¥¶Ì¾¤È¥Ñ¥¹¥ï¡¼¥É¤Ï¤µ¤¤Û¤É SMTP Auth ÍÑ¤Ë saslpasswd2...
¤³¤¦¤¹¤ë¤È¡¤'\0¥æ¡¼¥¶Ì¾\0¥Ñ¥¹¥ï¡¼¥É' ¤¬ base64 ¥¨¥ó¥³¡¼¥É...
¤Á¤Ê¤ß¤Ë¡¤Î㤨¤Ð '\0test\0password' ¤ò mmencode ¤¹¤ë¤È "A...
&ref(./notes.png); ¤¢¤È¤Ï¤¤¤Ä¤â¤Î¤è¤¦¤Ë telnet localhost ...
Á°¤Ë¤â¤ä¤Ã¤¿¤è¤¦¤Ë "EHLO localhost" ¤È¤·¤Æ±þÅú¤ò¿Ê¤á¤ë¤È...
> 250-&color(blue){¥Û¥¹¥È̾};
> 250-PIPELINING
> 250-SIZE 10240000
> 250-VRFY
> 250-ETRN
> 250-AUTH LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-AUTH=LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-ENHANCEDSTATUSCODES
> 250-8BITMIME
> 250 DSN
¤³¤ÎÃʳ¬¤Ç SMTP Auth ¤Î Plain ǧ¾Ú¤ò»î¤·¤Æ¤ß¤è¤¦.
¶ñÂÎŪ¤Ë¤Ï¡¤¤³¤³¤Ç
> AUTH PLAIN Àè¤Û¤Ébase64¥¨¥ó¥³¡¼¥É¤·¤Æºî¤Ã¤¿Ê¸»úÎó
¤ÈÆþÎϤ¹¤ì¤Ð¤è¤¤. Plain ǧ¾Ú¤Ï¤³¤ì¤À¤±¤ÇºÑ¤à.
¤½¤·¤Æ
> 235 2.7.0 Authentication successful
¤Ê¤É¤È "success" ¤Î°Õ¤¬¥á¥Ã¥»¡¼¥¸¤ÇÊ֤äƤ¯¤ì¤Ð¡¤Ç§¾Ú¤¬ÄÌ...
¤¢¤È¤ÏÁ°¤ÈƱÍÍ¤Ë ^], quit ¤ÇÈ´¤±¤è¤¦.
¤¦¤Þ¤¯¤¤¤«¤Ê¤¤¿Í¤ÏÃúÇ«¤Ë¤³¤ì¤Þ¤Ç¤Îºî¶È¤ò¿¶¤êÊÖ¤í¤¦.
*** ¼ê¤Ç SMTP Auth ¤ò»î¤¹ : CRAM-MD5 ǧ¾Ú¤Î¾ì¹ç [#l3f17df2]
CRAM-MD5ǧ¾Ú¤ÏÀè¤Î Plainǧ¾Ú¤È°ã¤Ã¤Æ¡¤¥Ñ¥¹¥ï¡¼¥É¤òʿʸ¤Ç...
¶ñÂÎŪ¤Ë¤Ï¡¤Àܳ¤¹¤ë¤È¥µ¡¼¥Ð¤¬Å¬Åö¤Êʸ»úÎó¤òÁ÷¤Ã¤Æ¤¯¤ë¤Î...
¤ä¤ä¤³¤·¤¤¤¬¡¤¼Â¤Ï CRAM-MD5 ¤ò¥Æ¥¹¥È¤¹¤ë¤¿¤á¤Î¥¹¥¯¥ê¥×¥È ...
¤¿¤À¤·¡¤¤³¤Î¥¹¥¯¥ê¥×¥È¤Ï¸å½Ò¤Î courier-imap ¤Î¥¤¥ó¥¹¥È¡¼...
&ref(./warning.png); ¤È¤¤¤¦¤ï¤±¤Ç¡¤''½é¤á¤Æ¤³¤³¤òÆɤà¾ì¹ç...
°Ê²¼¤Îºî¶È¤Ë¤Ï¥³¥ó¥½¡¼¥ë¤¬Æó¤Ä°Ê¾å¤¢¤Ã¤¿Êý¤¬ÊØÍø¤Ê¤Î¤Ç¡¤X...
¥³¥ó¥½¡¼¥ë¤¬1¤Ä¤·¤«ÍѰդǤ¤Ê¤¤¾ì¹ç¤Ç¤â¡¤¥Þ¥¦¥¹Áàºî¤Ç¥³¥Ô...
°Ê¹ß¡¤¾õ¶·¤òʬ¤«¤ê¤ä¤¹¤¯¤¹¤ë¤¿¤á¤Ë 2¤Ä¤Îʸ»úüËö¥¨¥ß¥å¥ì...
&ref(./notes.png); ¤Þ¤º¡¤''Shell-A'' ¤Ç telnet localhost ...
> 250-&color(blue){¥Û¥¹¥È̾};
> 250-PIPELINING
> 250-SIZE 10240000
> 250-VRFY
> 250-ETRN
> 250-AUTH LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-AUTH=LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-ENHANCEDSTATUSCODES
> 250-8BITMIME
> 250 DSN
¤Þ¤Ç¤¹¤¹¤á¤è¤¦. ¤½¤·¤Æ¤³¤³¤Ç
> auth cram-md5
¤ÈÆþÎϤ¹¤ë. ¤¹¤ë¤È¡¤
> 334 PG5hbmlrYW5vLXNlcnZlcj4=
¤Ê¤É¤È½ÐÎϤ¬Ê֤äƤ¯¤ë.
¤³¤Î ''PG5hbmlrYW5vLXNlcnZlcj4='' ¤¬¥µ¡¼¥Ð¤¬ base64 ¤ÇÁ÷...
¶ñÂÎŪ¤Ë¤Ï ''Shell-B ¤Ç'' userdb-test-cram-md5 ¤ò¼Â¹Ô¤·¤Æ...
> Username? testuser &color(blue){¢« (SMTP Auth ¤Ë»È¤¦)...
> Password? password &color(blue){¢« (SMTP Auth ¤Ë»È¤¦)...
> Send: AUTH CRAM-MD5 (or for imap, A AUTHENTICATE CRAM-...
> Paste the challenge here:
> + PG5hbmlrYW5vLXNlcnZlcj4= &color(blue){¢« Shell-A ¤Ç¥µ...
> Send this response:
> dGVzdHVzZXIgY2NiNjc4YmZjZGY1YWRlMGUyYmE2MmM3ODA3OTA1NG...
¤È¤Ê¤ê¡¤ºÇ¸å¤ËÊÖÅú¤¹¤Ù¤Ê¸»úÎó¤òÀ¸À®¤·¤Æ¤¯¤ì¤ë.
¤½¤³¤Ç¤³¤Îʸ»úÎó(¤³¤ÎÎã¤Î¾ì¹ç¤Ï ''dGVzdHVzZXIgY2NiNjc4YmZ...
ǧ¾Ú¤¬Ä̤ì¤Ð¤³¤Î¤¢¤È
> 235 2.7.0 Authentication successful
¤Ê¤É¤È "success" ¤Î°Õ¤¬¥á¥Ã¥»¡¼¥¸¤ÇÊ֤äƤ¯¤ì¤Ð¡¤Ç§¾Ú¤¬ÄÌ...
¤¢¤È¤ÏÁ°¤ÈƱÍÍ¤Ë ^], quit ¤ÇÈ´¤±¤è¤¦.
¤¦¤Þ¤¯¤¤¤«¤Ê¤¤¿Í¤ÏÃúÇ«¤Ë¤³¤ì¤Þ¤Ç¤Îºî¶È¤ò¿¶¤êÊÖ¤í¤¦.
* SMTP over TLS ¤ò»È¤¦ [#z8ccd591]
** SMTP over TLS ¤ÎÀßÄê [#k7fc1fd4]
TLS ¤ÎÍøÍѤˤĤ¤¤Æ¤Ï¡¤ÀßÄê¤Î¤Þ¤¨¤Ë¸°¤È¾ÚÌÀ½ñ¤òÍÑ°Õ¤·¤Ê¤¤...
web server ¤ÎÀßÄê¤Î»þ¤Ëºî¤Ã¤¿¸°¤È¾ÚÌÀ½ñ¤ò /etc/ssl ¤Ë(ÈÆ...
º£²ó¤Ï¸°¤È¾ÚÌÀ½ñ¤ò¿·¤¿¤Ëºî¤Ã¤Æ(¤ä¤êÊý¤Ï Web ¥µ¡¼¥Ð¤Î¼ø¶È...
¤¿¤À¤·¡¤¤³¤Î¥Õ¥¡¥¤¥ë¤¬Â¾¤Î¿Í¤ËÆɤá¤Æ¤·¤Þ¤¦¤Èº¤¤ë¤Î¤Ç¡¤ºî...
&ref(./notes.png); °Ê²¼¡¤¤½¤Îºî¶È¤ò¹Ô¤ª¤¦.
cd /usr/local/etc/postfix
openssl genrsa -out postfix.key 1024
openssl req -new -x509 -days 365 -key postfix.key -out ...
¾ÚÌÀ½ñºîÀ®»þ¤Ëʹ¤«¤ì¤ë¼ÁÌä¤Î±þÅú¤Ë¤Ä¤¤¤Æ¤Ï°ÊÁ°¤ÈƱ¤¸¤Ç¤è...
¤³¤¦¤·¤Æ¾ÚÌÀ½ñÅù¤¬ºîÀ®¤Ç¤¤¿¤é¡¤¤¹¤°¤µ¤Þ
chmod 400 postfix.key
chmod 400 postfix.crt
¤È¤·¤Æ¤ª¤³¤¦.
¤µ¤Æ¡¤Postfix ¤ÎÀßÄê¤Ï¡¤ËܲȤΥɥ¥å¥á¥ó¥È( http://www.po...
¥µ¡¼¥Ð¤«¥¯¥é¥¤¥¢¥ó¥È¤«¤äǧ¾Ú¤ò¤É¤¦¤¹¤ë¤«¤Ê¤É¿¾¯¤ä¤ä¤³¤·...
&ref(./notes.png); º£²ó¤Ï¡¤ /usr/local/etc/postfix/main.c...
> smtpd_tls_cert_file = /usr/local/etc/postfix/postfix.crt
> smtpd_tls_key_file = /usr/local/etc/postfix/postfix.key
> smtpd_tls_loglevel = 1
> smtpd_tls_received_header = yes
> smtpd_tls_security_level = may
> &br;
> smtp_tls_loglevel = 1
> smtp_tls_security_level = may
> smtp_tls_note_starttls_offer = yes
¤Ê¤É¤È²Ã¤¨¤ì¤ÐÎɤ¤.
¤¿¤À¤·¡¤¤³¤ì¤Ï·ÐÏ©¤Î°Å¹æ²½¤À¤±¤Ç¤è¤¤¡¤¤È¤¤¤¦ÀßÄê¤Ê¤Î¤Ç¡¤...
&ref(./warning.png); Postfix ¤ÎÀßÄêÊýË¡¤¬¶áǯÊѤï¤Ã¤¿¤¿¤á...
¤³¤ÎÊÔ½¸¤¬½ª¤ï¤Ã¤¿¤é¡¤postfix ¤ò°ìöÄä»ß¤·¤Æ¤«¤éºÆµ¯Æ°¤¹¤ë.
/usr/local/etc/rc.d/postfix stop
/usr/local/etc/rc.d/postfix start
ºÆµ¯Æ°»þ¤Ë²¿¤«¥¨¥é¡¼¤ä·Ù¹ð¤¬½Ð¤Æ¤¤¤Ê¤¤¤«Ãí°Õ¤·¤Æ¤ª¤³¤¦.
** SMTP over TLS ¤ÎÆ°ºî³Îǧ [#y056104d]
&ref(./notes.png); telnet localhost 25 ¤Ç³Îǧ¤·¤Æ¤ß¤è¤¦.
¤³¤ì¤Þ¤Ç¤ÈƱÍÍ¤Ë EHLO localhost ¤·¤Æ, ±þÅú¤¬
> 250-&color(blue){¥Û¥¹¥È̾};
> 250-SIZE 10240000
> 250-VRFY
> 250-ETRN
> 250-STARTTLS &color(blue){¢« ¤³¤ÎÂбþ¤¬ TLS/SSL ÍѤΤâ...
> 250-AUTH LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-AUTH=LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> 250-ENHANCEDSTATUSCODES
> 250-8BITMIME
> 250 DSN
¤Ê¤É¤È¤Ê¤ë.
¾å¤Î¤è¤¦¤Ë "250-STARTTLS" ¤È¤¤¤¦Éôʬ¤¬¤¢¤ì¤Ð¡¤¤È¤ê¤¢¤¨¤º ...
¤¢¤È¤ÏÁ°¤ÈƱÍÍ¤Ë ^], quit ¤ÇÈ´¤±¤è¤¦.
¤³¤ì¤¬½Ð¤Ê¤¤¤è¤¦¤Ê¤é²¿¤«¤ª¤«¤·¤¤¤Î¤Ç¤³¤ì¤Þ¤Ç¤Îºî¶È¤ò¿¶¤ê...
&ref(./notes.png);
¤µ¤Æ¡¤¤³¤³¤Ç SMTP ¤ÎÆ°ºî¥Á¥§¥Ã¥¯¤ËÊØÍø¤Ê¥Ä¡¼¥ë¤òƳÆþ¤·¤è...
¤½¤ì¤Ï ''swaks'' (Swiss Army Knife SMTP) ¤È¤è¤Ð¤ì¤ë¤â¤Î¤Ç...
¤È¤¤¤¦¤ï¤±¤Ç¤¤¤Ä¤â¤Î¤è¤¦¤Ë(psearch ¤Çõ¤·¤Æ) swaks ¤ò¥¤¥ó...
portinstall mail/swaks
¤È¤¹¤ì¤Ð¤è¤¤. ¥¤¥ó¥¹¥È¡¼¥ë»þ¤Ë¥ª¥×¥·¥ç¥óÁªÂò²èÌÌ
&ref(./swaks-install.png);
¤¬½Ð¤¿¤é¡¤¾¯¤Ê¤¯¤È¤â "MX lookup support" ¤È "TLS support"...
NTLM ¤Ïº£²ó¤Ï´Ø·¸¤Ê¤¤¤Î¤Ç³°¤·¤¿¤Þ¤Þ¤Ç¤è¤¤¤À¤í¤¦.
Àè¤Ø¿Ê¤à¤È¡¤p5-Net-DNS ¤Î¥¤¥ó¥¹¥È¡¼¥ë»þ¤Ë IPv6 ¤ò͸ú¤Ë¤¹...
¤µ¤é¤Ë¡¤p5-Net-SSLeay ¤Î¥¤¥ó¥¹¥È¡¼¥ë»þ¤Ë¥Æ¥¹¥È¤ò¤¹¤ë¤«¤É...
¤¢¤È¤Ï¥¤¥ó¥¹¥È¡¼¥ë¤¬½ª¤ï¤ë¤Î¤ò¤Þ¤È¤¦.
¥¤¥ó¥¹¥È¡¼¥ë»þ¤ÎºÇ¸å¤Ë¡¤¿ÆÀڤˤâ
> Try
> `swaks --help'
> to list the available options and
> `swaks --support'
> for a list of capabilities.
¤È¶µ¤¨¤Æ¤¯¤ì¤ë¤Î¤Ç¡¤³Ð¤¨¤Æ¤ª¤³¤¦¡¥
¤µ¤Æ,¤Þ¤º¤Ï¤ª¤µ¤é¤¤¤â·ó¤Í¤Æ¤³¤ì¤Þ¤Ç¤Î¥Æ¥¹¥È¤òºÆ¸½¤·¤Æ¤ß¤è...
// swaks ¤Î»È¤¤Êý¤Ï swaks --help ¤È¤¹¤ë¤È¥Þ¥Ë¥å¥¢¥ë¤¬Æɤá...
&ref(./notes.png); ¤Þ¤º¤Ïñ¤Ë MTA ¤¬Æ°ºî¤·¤Æ¤¤¤ë¤«¤Î³Îǧ...
swaks --server localhost
¤È¤¹¤ë¤È¡¤¥Æ¥¹¥È¥á¡¼¥ë¤Î°¸Àè¤òʹ¤¤¤Æ¤¯¤ë¤Î¤Ç, ¼«Ê¬¤Î¥¢¥«...
> === Trying localhost:25...
> === Connected to localhost.
> <- 220 &color(blue){¥Û¥¹¥È̾}; ESMTP Postfix
> -> EHLO &color(blue){¥Û¥¹¥È̾¤ÎƬÉôʬ};
> <- 250-&color(blue){¥Û¥¹¥È̾};
> <- 250-PIPELINING
> <- 250-SIZE 10240000
> <- 250-VRFY
> <- 250-ETRN
> <- 250-STARTTLS
> <- 250-AUTH LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> <- 250-AUTH=LOGIN PLAIN DIGEST-MD5 CRAM-MD5
> <- 250-ENHANCEDSTATUSCODES
> <- 250-8BITMIME
> <- 250 DSN
> -> MAIL FROM:<&color(blue){º¹½Ð¿Í};>
> <- 250 2.1.0 Ok
> -> RCPT TO:<&color(blue){°¸Àè¥æ¡¼¥¶Ì¾};>
> <- 250 2.1.5 Ok
> -> DATA
> <- 354 End data with <CR><LF>.<CR><LF>
> -> Date: Mon, 30 Nov 2009 12:08:18 +0900
> -> To: &color(blue){°¸Àè¥æ¡¼¥¶Ì¾};
> -> From: &color(blue){º¹½Ð¿Í};
> -> Subject: test Mon, 30 Nov 2009 12:08:18 +0900
> -> X-Mailer: swaks v20061116.0 jetmore.org/john/code/...
> ->
> -> This is a test mailing
> ->
> -> .
> <- 250 2.0.0 Ok: queued as 727E21D0A0
> -> QUIT
> <- 221 2.0.0 Bye
> === Connection closed with remote host.
¤È MTA ¤È¤ä¤ê¼è¤ê¤·¤Æ¡¤¤½¤ÎÅÓÃæ·Ð²á¤ò¤¤Á¤ó¤È½ÐÎϤ·¤Æ¤¯¤ì...
¤¤¤Þ¤Ï¥Æ¥¹¥È¥á¡¼¥ë¤ò¼ÂºÝ¤ËÁ÷¤Ã¤¿¤Ï¤º¤Ê¤Î¤Ç¡¤¥¢¥«¥¦¥ó¥È¤Î...
¼¡¤Ë¡¤SMTP Auth ¤Î plainǧ¾Ú¤ò»î¤·¤Æ¤ß¤è¤¦.
¤¿¤À¤·¡¤¤¤¤Á¤¤¤Á¥á¡¼¥ë¤¬ÆϤ¯É¬Íפâ¤â¤¦¤Ê¤¤¤Î¤Ç¡¤Æ°ºî³Îǧ...
¤½¤ì¤Ë¤Ï¼¡¤Î¤è¤¦¤Ë¤¹¤ì¤Ð¤è¤¤.
swaks --auth PLAIN --server localhost --quit RCPT
¤¹¤ë¤ÈºÇ½é¤Ë(¼ÂºÝ¤Ë¤ÏÁ÷¤é¤Ê¤¤¤¬)¥Æ¥¹¥È¥á¡¼¥ë¤Î°¸Àè¤òʹ¤¤...
¤½¤·¤Æ¡¤¤½¤Î¸å¤Î¤ä¤ê¤È¤ê¤ÎÅÓÃæ¤Ë
> ¡Äά¡Ä
> -> AUTH PLAIN &color(blue){¥Ñ¥¹¥ï¡¼¥É¤òbase64²½¤·¤¿¤â...
> <- 235 2.7.0 Authentication successful
> ¡Äά¡Ä
¤È¤¤¤¦¤è¤¦¤Ë Auth plain ¤Ç¤Î SMTP Auth ¤¬¤¦¤Þ¤¯¤¤¤Ã¤¿¡¤¤È...
¼¡¤Ë SMTP Auth ¤Î CRAM-MD5 ǧ¾Ú¤ò»î¤·¤Æ¤ß¤ë. ¤½¤ì¤Ë¤Ï
swaks --auth CRAM-MD5 --server localhost --quit RCPT
¤È¤¹¤ì¤Ð¤è¤¤. ÆþÎϤϾå¤ÈƱÍͤÀ.
¤½¤·¤Æ¡¤¤½¤Î¸å¤Î¤ä¤ê¤È¤ê¤ÎÅÓÃæ¤Ë
> ¡Äά¡Ä
> -> AUTH CRAM-MD5
> <- 334 PDI3NTg4NzIyNTMuNDY4OTgzOUBGcmVlQlNENy5jYXMuY2...
> -> cGFvb24gMTgyODJmNzRhNjZhOWMwY2FjN2YzZTliNDQ2NzQ3Y2Y=
> <- 235 2.7.0 Authentication successful
> ¡Äά¡Ä
¤È¤¤¤¦¤è¤¦¤Ë Auth CRAM-MD5 ¤Ç¤Î SMTP Auth ¤¬¤¦¤Þ¤¯¤¤¤Ã¤¿...
¤µ¤Æ¡¤¤ä¤Ã¤È´Î¿´¤Î SMTP over TLS ¤ò¥Æ¥¹¥È¤·¤è¤¦. ¤È¤¤¤Ã¤Æ...
swaks -tls --server localhost
¤È¤¹¤ì¤Ð¤è¤¤. ¤¿¤À¤·¡¤Ç°¤Î°Ù¤Ë¥Æ¥¹¥È¥á¡¼¥ë¤ò¼ÂºÝ¤ËÁ÷¤í¤¦...
¤³¤ì¤ò¼Â¹Ô¤·¤Æ¡¤swaks ¤Î½ÐÎϤ¬
> ¡Äά¡Ä
> -> STARTTLS
> <- 220 2.0.0 Ready to start TLS
> === TLS started w/ cipher DHE-RSA-AES256-SHA
> ¡Äά¡Ä
¤È¤¤¤¦¤è¤¦¤Ë TLS ¤ò»È¤Ã¤Æ̵»ö¤ËÆ°¤¤¤Æ¤¤¤ë¤è¤¦¤Ê¤é¤ÐÂç¾æÉ×...
¤â¤Á¤í¤ó, Maildir/new ¤Ë¼ÂºÝ¤Ë¥á¡¼¥ë¤¬ÆϤ¤¤Æ¤¤¤ë¤«¤â¥Á¥§...
> (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bi...
¤È¤¤¤¦µ½Ò¤¬¤¢¤ë¤³¤È¤â³Îǧ¤·¤Æ¤ª¤³¤¦.
ºÇ¸å¤Ë¡¤SMTP Auth ¤È SMTP over TLS ¤òÁȤ߹ç¤ï¤»¤Æ¤ß¤è¤¦. ...
¶ñÂÎŪ¤Ë¤Ï¡¤Î㤨¤Ð¼¡¤Î¤è¤¦¤Ë¤¹¤ì¤Ð¤è¤¤(SMTP Auth ¤Ï¼«Æ°Åª...
swaks --auth -tls --server localhost --quit RCPT
¤³¤³¤Ç½ÐÎϤòÃúÇ«¤ËÆɤó¤Ç¤ß¤è¤¦.
&ref(./warning.png); ¤³¤Î½ÐÎϤòÆɤà¤È ''starttls ¤·¤Æ¤«¤é...
¤³¤ì¤Ï SMTP over TLS ¤ÈÁȤ߹ç¤ï¤»¤ë¤Ê¤é¤Ðǧ¾Ú(¥Ñ¥¹¥ï¡¼¥É...
µÕ¤Ë¸À¤¨¤Ð¡¤over TLS ¤·¤Æ¤¤¤Ê¤¤¤Ê¤é¤Ð¥Í¥Ã¥È¥ï¡¼¥¯¤ò²ð¤·¤Æ...
// *** ¼Â½¬
// SMTP over TLS/SSL ¤Ë¤Ï¾åµ¤Î StartTLS ¤Î¾¤Ë¤â¤¦¤Ò¤È¤Ä...
// ¤Ç¤Ï¡¤SMTPS ¤È¤Ï²¿¤«¡¤StartTLS ¤ÈÈæ¤Ù¤Æ¤ÎÍøÅÀ/·çÅÀ¤Ï²¿...
&ref(./notes.png); ¤µ¤é¤Ë;ÎϤ¬¤¢¤ë¤è¤¦¤À¤Ã¤¿¤é²¿¤«¼ê¸µ¤Î...
* IMAP/POP ¤ò»È¤¦ [#s1ecac98]
¤µ¤Æ¡¤¥æ¡¼¥¶°¸¤ËÆϤ¤¤¿¥á¡¼¥ë¤ò MUA ¤ËÅϤ¹¤Î¤Ë¹¤¯»È¤ï¤ì¤Æ...
¤¤¤Þ¤À¹¤¯»È¤ï¤ì¤Æ¤¤¤ë POP¡¤¥æ¡¼¥¶¤Ë¤È¤Ã¤Æ¤ÏÊØÍø¤À¤¬¥µ¡¼...
¤³¤³¤Ç¤Ï¡¤¾ÍèŪ¤Ê¤³¤È¤â¹Í¤¨¤Æ IMAP ¥µ¡¼¥Ð¤Ë¤Ä¤¤¤Æ³Ø½¬¤·...
¤µ¤Æ¡¤IMAP ¥µ¡¼¥Ð¤È¤·¤Æ¤Ï courier-imap ¤¬¹¤¯»È¤ï¤ì¤Æ¤¤¤ë...
¤Ê¤ª¡¤courier-imap ¤ò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤È°ì½ï¤Ë courier-pop...
** courier-imap ¤Î¥¤¥ó¥¹¥È¡¼¥ë [#oe470f80]
&ref(./notes.png); ¤µ¤Æ¡¤¤¤¤Ä¤â¤Î¤è¤¦¤Ë ports ¥³¥ì¥¯¥·¥ç...
¤¿¤À¤·¡¤imap ¥µ¡¼¥Ð¤Î¥¤¥ó¥¹¥È¡¼¥ë¤ÎÁ°¤Ë courier-authlib(c...
¤¤¤Ä¤â¤Î¤è¤¦¤Ë
portsnap fetch; portsnap update
¤È¤·¤Æ¤«¤é¡¤psearch ¤Ç courier-authlib ¤òõ¤·¤Æ¤«¤é porti...
¤Þ¤¢½ñ¤¤¤Æ¤·¤Þ¤¨¤Ð¡¤
portinstall security/courier-authlib
¤È¤¤¤¦¤³¤È¤À¡¥¤³¤Î²áÄø¤ÇɬÍפʾ¤Î¥Ä¡¼¥ë¤â°ì½ï¤Ë¥¤¥ó¥¹¥È...
¶ñÂÎŪ¤Ë¤Ï¡¤
- devel/automake19
- devel/sysconftool
- security/courier-authlib-base
- security/courier-authlib
¤¬¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤ë(¤³¤¦¤¤¤¦¾ðÊó¤Ï¸å¤Ç¥í¥°¤òµù¤ëºÝ¤ËɬÍ×...
¤Þ¤¿ courier-authlib ¤Î¥¤¥ó¥¹¥È¡¼¥ë¤ÎÃʳ¬¤Ç½Ð¤ë¥ª¥×¥·¥ç¥ó...
&ref(./courier-authlib-install.png);
¤Ç¤Ï¤È¤ê¤¢¤¨¤º "Userdb support" ¤òÁª¤ó¤Ç¤ª¤³¤¦. ¤¢¤È¤Ï¥¹...
¼¡¤Ë courier-imap ËÜÂΤò(psearch ¤Çõ¤·¤Æ¤«¤é)
portinstall mail/courier-imap
¤È¤·¤Æ courier-imap ËÜÂΤò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë. ºÇ½é¤Ë¥ª¥×¥·...
&ref(courier-imap-install.png);
¤¬½Ð¤ë¤¬¡¤Â¿Ê¬¥Ç¥Õ¥©¥ë¥È¤Ç IPv6 ¤¬Áª¤Ð¤ì¤Æ¤¤¤ë¤À¤í¤¦.
IPv6 ¤Ï»È¤ï¤Ê¤¤¤Î¤Ç³°¤·¡¤µÕ¤ËÀè¤ÈƱÍÍ¤Ë "Userdb support" ...
¤·¤Ð¤é¤¯ÂԤäƤ¤¤ë¤È¥¤¥ó¥¹¥È¡¼¥ë¤¬½ª¤ï¤ë¤À¤í¤¦.
¤µ¤Æ¡¤Ç°¤Î°Ù¤Ë¤¤¤Ä¤â¤Î¤è¤¦¤Ëº£²ó¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤¿Ê£¿ô¤Î...
(devel::automake19.log ¤«¤é ¡Ä ÆäË̵¤·)
(devel::sysconftool ¤«¤é ¡Ä ÆäË̵¤·)
(security::courier-authlib-base.log ¤«¤é)
> Set WITH_AUTHPIPE_PROG to a program you want to ...
> authProg for libauthpipe
> configure: WARNING: ----------------------------------...
> configure: WARNING: expect not found - will not be abl...
> configure: WARNING: in webmail
> configure: WARNING: ----------------------------------...
> Added group "courier".
> Added user "courier".
> ------------------------------------------------------...
> Libraries have been installed in:
> /usr/local/lib/courier-authlib
> &br;
> If you ever happen to want to link against installed l...
> in a given directory, LIBDIR, you must either use libt...
> specify the full pathname of the library, or use the `...
> flag during linking and do at least one of the followi...
> - add LIBDIR to the `LD_LIBRARY_PATH' environment v...
> during execution
> - add LIBDIR to the `LD_RUN_PATH' environment varia...
> during linking
> - use the `-Wl,-rpath -Wl,LIBDIR' linker flag
> &br;
> See any operating system documentation about shared li...
> more information, such as the ld(1) and ld.so(8) manua...
> ------------------------------------------------------...
> This port has installed the following files whic...
> servers and may therefore pose a remote security...
> /usr/local/libexec/courier-authlib/authdaemond
> &br;
> This port has installed the following startup sc...
> these network services to be started at boot time.
> /usr/local/etc/rc.d/courier-authdaemond
> &br;
> If there are vulnerabilities in these programs t...
> risk to the system. FreeBSD makes no guarantee a...
> ports included in the Ports Collection. Please t...
> to deinstall the port if this is a concern.
> &br;
> For more information, and contact details about ...
> status of this software, see the following webpa...
> http://www.Courier-MTA.org/authlib/
(security::courier-authlib.log ¤«¤é)
> configure: WARNING: ----------------------------------...
> configure: WARNING: expect not found - will not be abl...
> configure: WARNING: in webmail
> configure: WARNING: ----------------------------------...
> ------------------------------------------------------...
> Libraries have been installed in:
> /usr/local/lib/courier-authlib
> &br;
> If you ever happen to want to link against installed l...
> in a given directory, LIBDIR, you must either use libt...
> specify the full pathname of the library, or use the `...
> flag during linking and do at least one of the followi...
> - add LIBDIR to the `LD_LIBRARY_PATH' environment v...
> during execution
> - add LIBDIR to the `LD_RUN_PATH' environment varia...
> during linking
> - use the `-Wl,-rpath -Wl,LIBDIR' linker flag
> &br;
> See any operating system documentation about shared li...
> more information, such as the ld(1) and ld.so(8) manua...
> ------------------------------------------------------...
(mail::courier-imap.log ¤«¤é)
> In case you use authpam, you should put the following ...
> in your /etc/pam.d/imap
> auth required pam_unix.so try_first_pass
> account required pam_unix.so try_first_pass
> session required pam_permit.so
> &br;
> You will have to run /usr/local/share/courier-imap/mki...
> a self-signed certificate if you want to use imapd-ssl.
> And you will have to copy and edit the *.dist files to *
> in /usr/local/etc/courier-imap.
> This port has installed the following files whic...
> servers and may therefore pose a remote security...
> /usr/local/libexec/courier-imap/couriertcpd
> /usr/local/bin/couriertls
> &br;
> This port has installed the following startup sc...
> these network services to be started at boot time.
> /usr/local/etc/rc.d/courier-imap-imapd
> /usr/local/etc/rc.d/courier-imap-pop3d
> /usr/local/etc/rc.d/courier-imap-pop3d-ssl
> /usr/local/etc/rc.d/courier-imap-imapd-ssl
> &br;
> If there are vulnerabilities in these programs t...
> risk to the system. FreeBSD makes no guarantee a...
> ports included in the Ports Collection. Please t...
> to deinstall the port if this is a concern.
> &br;
> For more information, and contact details about ...
> status of this software, see the following webpa...
> http://www.courier-mta.org/imap/
¤È¤¤¤¦¥á¥Ã¥»¡¼¥¸¤¬¸«¤Ä¤«¤ë.
courier-authlib ´ØÏ¢¤Î¥í¥°¥Õ¥¡¥¤¥ë¤ÎÆâÍƤÏÆäËÌäÂê¤Ê¤¤.
courier-imap ¤Î¥í¥°¥Õ¥¡¥¤¥ë¤Ë¤ÏÀßÄê¤Ë´Ø¤ï¤ëÉôʬ¤¬¤¢¤ë¤Î¤Ç...
// ¤³¤ì¤Ï¡¤IMAP ¤Îǧ¾ÚÊýË¡¤È¤·¤Æ¾¤ÎÊýË¡¤Ç¤¢¤ë PAM ¤ò»È¤¤...
// ¤¤¤º¤ì¤â·ë¹½½ÅÍפʥá¥Ã¥»¡¼¥¸¤Ê¤Î¤Ç¡¤ÆɤßÈô¤Ð¤µ¤Ê¤¤¤è¤¦...
&ref(./warning.png); SMTP Auth ¤ÎÅÓÃ椫¤é courier-imap ¤Î...
** courier-imap ¤ÎÀßÄê [#xa79a0fd]
¤µ¤Æ¡¤¥¤¥ó¥¹¥È¡¼¥ë¤¬ºÑ¤à¤È /usr/local/etc/authlib ¤Ëǧ¾Ú...
¤Þ¤ºÇ§¾Ú´Ø·¸¤òÀ°Íý¤·¤è¤¦.
ǧ¾Úµ¡¹½¤½¤Î¤â¤Î¤ÎÀßÄê¤Ë¤Ä¤¤¤Æ¤Ï /usr/local/etc/authlib ...
&ref(./notes.png); ¼¡¤Ë¡¤over TLS/SSL ¤Ç»È¤¦¼«¸Êǧ¾Ú¾ÚÌÀ...
Àè¤Ëºî¤Ã¤¿¸°¤È¾ÚÌÀ½ñ¤È¤Ï°ã¤¦µ¡Ç½¤Î¤â¤Î¤Ê¤Î¤Ç¡¤¿·¤¿¤Ëºî¤í...
ÊýË¡¤Ï´Êñ¤Ç¡¤¤Þ¤º /usr/local/etc/courier-imap ¤Ë¥µ¥ó¥×¥ë...
¶ñÂÎŪ¤Ë¤Ï
cd /usr/local/etc/courier-imap
cp imapd.cnf.dist imapd.cnf
cp pop3d.cnf.dist pop3d.cnf
chmod u+w *.cnf
emacs imapd.cnf
emacs pop3d.cnf
¤È¤¤¤¦´¶¤¸¤À. ¤½¤ì¤«¤é¡¤
cd /usr/local/share/courier-imap/
./mkimapdcert
./mkpop3dcert
¤È¤¹¤ë¤È¡¤/usr/local/share/courier-imap/ ¤Ë imapd.pem, po...
¥Õ¥¡¥¤¥ë̾¤â¾ì½ê¤âÆäËÊѹ¹¤òÍפ·¤Ê¤¤¤Î¤Ç¡¤¤³¤ì¤Ç¾ÚÌÀ½ñ¤Î...
¼¡¤Ë¡¤IMAP ËÜÂΤÎÀßÄê¤ò¹Ô¤ª¤¦.
&ref(./warning.png);¤¤¤Ä¤â¤Î¤è¤¦¤ËÇ°¤Î°Ù¥Ð¥Ã¥¯¥¢¥Ã¥×¤ò¤È...
/usr/local/etc/courier-imap ¤Î imapd ¤È¤¤¤¦¥Õ¥¡¥¤¥ë¤òÊÔ½¸...
¶ñÂÎŪ¤Ë¤Ï¡¤
> IMAP_CAPABILITY="IMAP4rev1 UIDPLUS CHILDREN NAMESPACE ...
> IMAP_CAPABILITY_TLS="$IMAP_CAPABILITY AUTH=PLAIN AUTH=...
¤ÎÆ󥫽ê¤ò½¤Àµ(²èÌ̤ÎÅÔ¹ç¤ÇÀÞ¤êÊÖ¤·¤Æ¤¤¤ë¤¬¡¤³Æ¡¹ 1¹Ô¤º¤Ä...
³Æ¡¹¡¤¥Ç¥Õ¥©¥ë¥ÈÃͤ«¤éÊѤï¤Ã¤¿Éôʬ¤ò¸«¤ì¤Ð²¿¤ò¤·¤¿¤«¤Ï¤ï...
¤¢¤È¡¤POP ¥µ¡¼¥Ð¤â»È¤¤¤¿¤¤¤Ê¤é¤Ð¡¤¤È¤ê¤¢¤¨¤ºÆ±ÍÍ¤Ë pop3d ...
> POP3AUTH="LOGIN CRAM-MD5 CRAM-SHA1"
> POP3AUTH_TLS="LOGIN PLAIN"
¤È½¤Àµ¤·¤Æ¤ª¤±¤Ð¤è¤¤.
¤µ¤Æ¡¤¤¢¤È¤Ï IMAP ¥µ¡¼¥Ð¤Îµ¯Æ°½àÈ÷¤Ç¤¢¤ë¤¬¡¤¤³¤ì¤Ï¾ðÊó¤¬...
¤·¤«¤¿¤Ê¤¤¤Î¤Ç¡¤courier-imap ¥¤¥ó¥¹¥È¡¼¥ë»þ¤Î¥á¥Ã¥»¡¼¥¸¤ò...
> This port has installed the following startup scripts ...
> ¡Äά¡Ä
¤È¤¢¤ë¤Î¤Ç¡¤¼ÂºÝ¤Ï¤³¤ì¤é¤Î¥¹¥¯¥ê¥×¥È¤¬µ¯Æ°Áàºî¤ò¹Ô¤¦¤Î¤À...
¤½¤·¤ÆÇ°¤Î°Ù¤Ë /usr/local/etc/rc.d ¥Ç¥£¥ì¥¯¥È¥ê¤òÇÁ¤¤¤Æ¤ß...
¤½¤³¤Ç¤³¤ì¤é¤Î¥Õ¥¡¥¤¥ë¤Î¤¦¤Á¡¤IMAP/POP ¥µ¡¼¥Ð¤Îµ¯Æ°¤Ë´ØÏ¢...
¤¹¤ë¤È¡¤Î㤨¤Ð courier-authdaemond ¤Ë¤Ï
> # Define these courier_authdaemond_* variables in one ...
> # /etc/rc.conf
> # /etc/rc.conf.local
> # /etc/rc.conf.d/courier_authdaemond
> #
> # DO NOT CHANGE THESE DEFAULT VALUES HERE
> &br;
> courier_authdaemond_enable=${courier_authdaemond_enabl...
> (YES/NO).
¤È½ñ¤¤¤Æ¤¢¤ê¡¤¤É¤¦¤ä¤é /etc/rc.conf ¤Ë courier_authdaemon...
ƱÍͤ˾¤Î¥¹¥¯¥ê¥×¥È¥Õ¥¡¥¤¥ë¤Ë¤âµ½Ò¤¬¤¢¤ê¡¤¤³¤ì¤é¤òÁí¹ç...
> # for IMAP
> courier_authdaemond_enable="YES"
> courier_imap_imapd_enable="YES"
> courier_imap_imapd_ssl_enable="YES"
> courier_imap_pop3d_enable="YES"
> courier_imap_pop3d_ssl_enable="YES"
¤Ê¤É¤È½ñ¤¹þ¤à¤Î¤¬Îɤµ¤½¤¦¤À¤È¤¤¤¦¤³¤È¤¬¿ä¬¤Ç¤¤ë.
&ref(./notes.png); ¾å¤Î¤è¤¦¤Ë½ñ¤¹þ¤ß¡¤Ç°¤Î°Ù¤Ë¥ê¥Ö¡¼¥È¤·...
¤½¤Î¸å¡¤lsof ¤Ê¤É¤òÍѤ¤¤Æ imapd ¤¬Æ°¤¤¤Æ¤¤¤ë¤³¤È¤ò³Îǧ¤·...
lsof -i4 | grep -i courier
¤È¤·¤Æ½ÐÎϤò¤ß¤¿¤È¤¤Ë¡¤
> couriertc 838 root 3u IPv4 0xc342c740 0t0 ...
> couriertc 847 root 3u IPv4 0xc342c570 0t0 ...
> couriertc 857 root 3u IPv4 0xc342c3a0 0t0 ...
> couriertc 867 root 3u IPv4 0xc342c1d0 0t0 ...
¤È¤¤¤¦¤è¤¦¤Ë¡¤imap, imaps, pop3, pop3s ¤Î4¤Ä¤¬½Ð¤Æ¤¯¤ì¤Ð...
imapd ¤ä pop3d ¤¬Æ°¤¤¤Æ¤¤¤Ê¤¤¤è¤¦¤Ê¤é¤Ð¤â¤¦°ìÅÙÀßÄê¤ò¸«Ä¾...
** IMAP ÍѤΥ桼¥¶¾ðÊó¤ÎÅÐÏ¿ [#u3b18504]
º£²ó¤Ï userdb ¤Ç¥Ñ¥¹¥ï¡¼¥É¾È¹ç¤ò¹Ô¤¦¤è¤¦¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤·...
&ref(./notes.png); °Ê²¼¤Î¼ê½ç¤Ç¥æ¡¼¥¶¾ðÊó¤ÎÅÐÏ¿ºî¶È¤ò¹Ô¤ª...
¤è¤ê¾Ü¤·¤¯ÃΤꤿ¤¤¼Ô¤Ï¡¤http://www.courier-mta.org/FAQ.ht...
+ ¤Þ¤º¶õ¤Î¥Ç¥£¥ì¥¯¥È¥ê /usr/local/etc/userdb ¤òºîÀ®¤¹¤ë.
cd /usr/local/etc
mkdir userdb
chmod 700 ./userdb
¤Ê¤É¤È¤¹¤ì¤Ð¤è¤¤.
+ (¥Ñ¥¹¥ï¡¼¥É°Ê³°¤Î)¥æ¡¼¥¶¾ðÊó¤òÅÐÏ¿¤¹¤ë
-- /etc/passwd ¤«¤éºî¤ëÊýË¡
´û¤Ë¥·¥¹¥Æ¥à¤Î¥æ¡¼¥¶¤Ç¤â¤¢¤ë¤Ê¤é¤Ð´Êñ¤Ç¤ª¤¹¤¹¤á. ¤³¤Á¤é...
pw2userdb ¥³¥Þ¥ó¥É¤òÍѤ¤¤Æ
cd /usr/local/etc/userdb/
pw2userdb | grep ¥æ¡¼¥¶Ì¾ >> ./users
¤È¤¹¤ì¤Ð¤è¤¤.
-- Îí¤«¤éºî¤ëÊýË¡.
userdb ¥³¥Þ¥ó¥É¤ÇľÀܤ¤¤í¤¤¤í»ØÄꤹ¤ëÊýË¡. ¤Á¤ç¤¤ÌÌÅÝ.
userdb "john@example.com" set home=/home/vmail \
mail=/home/vmail/Maildir-john-example uid=UUU gid=GGG"
¤Ê¤É¤È¤¹¤ëÊýË¡.
+ ¥Ñ¥¹¥ï¡¼¥É¤òÀßÄꤹ¤ë.
cd /usr/local/etc/userdb
userdbpw -hmac-md5 | userdb users/¥æ¡¼¥¶Ì¾ set hmac-md5pw
¤È¤¹¤ì¤Ð¤è¤¤. ¤³¤Î hmac-md5 ¤È¤¤¤¦¤Î¤¬ CRAM-MD5 ¤ÇÍøÍѤµ...
¤¦¤Þ¤¯¤¤¤Ã¤Æ¤¤¤ë¤«¤É¤¦¤«¡¤users ¥Õ¥¡¥¤¥ë¤ò¤Ñ¤Ã¤ÈÆɤó¤Ç³Î...
+ Äɲá¤Êѹ¹²Õ½ê¤ò͸ú¤Ë¤¹¤ë.
makeuserdb
¤È¤¹¤ì¤Ð¤è¤¤.
¤³¤Î¼ê½ç¤Ï¤¤¤«¤Ë¤âÌÌÅݤÀ¤·¡¤´Ö°ã¤¨¤ä¤¹¤½¤¦¤Ç¿´ÇÛ¤À.
¤½¤³¤Ç¡¤¤¤Á¤ó¤ÈÅÐÏ¿¤µ¤ì¤Æ¤¤¤ë¤«³Îǧ¤·¤Æ¤ª¤³¤¦¡¥
&ref(./warning.png); courierÍѥѥ¹¥ï¡¼¥É¤¬¤¤Á¤ó¤ÈÅÐÏ¿¤µ...
(¤¤¤Ä¤â¤Î¤è¤¦¤Ë psearch ¤Çõ¤·¤¿¤È¤·¤Æ)¶ñÂÎŪ¤Ë¤Ï
portinstall security/courierpasswd
¤Ç¥¤¥ó¥¹¥È¡¼¥ë¤Ç¤¤ë¡¥
¤³¤Î»þ¤Î¥¤¥ó¥¹¥È¡¼¥ë¥í¥°¤ò¤ß¤ë¤È¡¤
> ######################################################...
> &br;
> You should set the following build option.
> &br;
> MINUID=uid
> Accounts with uids below this value cannot have
> their passwords changed. Default value is 100.
> &br;
> ######################################################...
> ######################################################...
> NOTES FOR RUNNING COURIERPASSWD
> &br;
> In order to use courierpasswd, it must be able to acce...
> authdaemon domain socket, named 'socket'. When courier...
> root, this presents no problem. However, if you need t...
> as a non-root user, you have three options, all of whi...
> manual work.
> &br;
> Option 1: Add the user courierpasswd will run as to th...
> owns the authdaemon socket directory in /etc/group. Mo...
> can be added to the group vector in this way. This arr...
> well if courierpasswd will be run by only a small numb...
> If the authdaemon socket directory is owned by courier...
> run courierpasswd as user vmail, your /etc/group file ...
> something like this:
> &br;
> courier:x:465:vmail
> &br;
> Option 2: Some programs, such as tcpserver, allow you ...
> the uid and gid of programs they call but don't honour...
> found in /etc/group. If you invoke courierpasswd from ...
> set the gid to the group ownership of the authdaemon s...
> For tcpserver, you could do something like this:
> &br;
> #!/bin/sh
> &br;
> QMAILUID=`/usr/bin/id -u qmaild`
> COURIERGID=`/usr/bin/id -g courier`
> &br;
> exec /usr/local/bin/tcpserver -u "$QMAILUID" -g "$...
> 0 smtp /var/qmail/bin/qmail-smtpd /usr/local/sbin/...
> /usr/bin/true 2>&1
> &br;
> Option 3: Change the permissions on courierpasswd to s...
> group ownership of the socket directory. Again, if the...
> is owned by courier:courier, change the ownership and ...
> of courierpasswd like so:
> &br;
> chgrp courier courierpasswd
> chmod g+s courierpasswd
> &br;
> Be aware that courierpasswd does not provide any max-f...
> functionality so it is possible for local users to per...
> attacks against account passwords if courierpasswd is ...
> &br;
> The location of the authdaemon domain socket is listed...
> authdaemonrc configuration file as the parameter authd...
> &br;
> ######################################################...
¤È½ñ¤¤¤Æ¤¢¤ë¡¥
Á°¼Ô¤Ï¡¤¡Öuid ¤¬(¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï)100°Ê²¼¤Î¥æ¡¼¥¶¤Î¥Ñ¥¹¥ï¡¼...
¸å¼Ô¤Ï¡¤courierpasswd ¤ò¥¹¡¼¥Ñ¡¼¥æ¡¼¥¶°Ê³°¤¬»È¤¤¤¿¤¤¾ì¹ç...
¤¿¤À¤·¡¤º£²ó¤Ï¥¹¡¼¥Ñ¡¼¥æ¡¼¥¶¤Ç¤·¤«ÍøÍѤ·¤Ê¤¤¤Î¤Ç¡¤ÌäÂê¤Ê...
¤µ¤Æ¡¤¥¤¥ó¥¹¥È¡¼¥ë¤Ç¤¤¿¤é¡¤
printf '¥æ¡¼¥¶Ì¾\0¥Ñ¥¹¥ï¡¼¥É\0' | courierpasswd --stder...
¤È¤·¤ÆÅÐÏ¿¤ò³Î¤«¤á¤è¤¦¡¥
> Username is: &color(blue){ÆþÎϤ·¤¿¥æ¡¼¥¶Ì¾};
> Password is: &color(blue){ÆþÎϤ·¤¿¥Ñ¥¹¥ï¡¼¥É};
> Authenticated for user &color(blue){ÆþÎϤ·¤¿¥æ¡¼¥¶Ì¾};
¤È¤¤¤¦¤è¤¦¤Ë¡¤"Authenticated" ¤È½Ð¤ì¤ÐÂç¾æÉפÀ¡¥µÕ¤Ë¡¤¤Ê...
> Authentication failuer for user &color(blue){ÆþÎϤ·¤¿...
¤È¤Ê¤ë¤Î¤Ç¡¤¤½¤Î¾ì¹ç¤ÏºÇ½é¤ËÁ̤äƤä¤êľ¤½¤¦¡¥
¤ä¤êľ¤·¤ò¤¹¤ë¤Ê¤é¤Ð¡¤º£²ó¤ÏÂоݥ桼¥¶¤¬1¿Í¤·¤«¤¤¤Ê¤¤¤Î¤Ç...
** courier-imap ¤ÎÆ°ºî³Îǧ [#s8167bde]
SMTP Auth ¤Î»þ¤ÈƱÍͤˡ¤2¤Ä¤Îʸ»úüËö¥¨¥ß¥å¥ì¡¼¥¿¤òÍÑ°Õ¤·...
¤¿¤À¤·¡¤Æ°ºî³Îǧ¤Ç¤â¤¿¤Ä¤¤¤Æ¤¤¤ë¤È courier-imap ¥µ¡¼¥Ð¤¬...
&ref(./notes.png); ¤½¤Î¤¿¤á¤Î½àÈ÷¤òÀè¤Ë¤·¤Æ¤ª¤³¤¦. ¶ñÂÎŪ...
> IMAP_IDLE_TIMEOUT=60
¤È¤¤¤¦Éôʬ¤¬¡Ö60ÉÃÈ¿±þ¤¬¤Ê¤±¤ì¤ÐÀÚÃǡפȤ¤¤¦°ÕÌ£¤Ê¤Î¤Ç¡¤...
Î㤨¤Ð 180 ¤°¤é¤¤¤Ë¤¹¤ì¤ÐÌäÂê¤Ê¤¤¤À¤í¤¦.
¤Ê¤ª¡¤¤³¤Î¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤·¤¿¤é courier-imap ¥µ¡¼¥Ð¤ò°ìö...
¶ñÂÎŪ¤Ë¤Ï
/usr/local/etc/rc.d/courier-imap-imapd stop
/usr/local/etc/rc.d/courier-imap-imapd start
¤È¤·¤Æ¤ª¤±¤Ð¤è¤¤.
&ref(./notes.png); ¤µ¤Æ¡¤¤Ç¤Ï SMTP Auth ¤Î»þ¤ÈƱ¤¸¤è¤¦¤Ë...
''Shell-A'' ¤Ç¡¤telnet localhost 143 ¤È¤¹¤ë¤È
> Trying 127.0.0.1...
> Connected to localhost.
> Escape character is '^]'.
> * OK [CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE ...
¤Ê¤É¤È¸À¤Ã¤Æ¤¯¤ë. ¤³¤³¤Ç¡¤
> a authenticate cram-md5
¤ÈÆþÎϤ¹¤ë¤È
> + PG5hbmlrYS1pbWFwQHNlcnZlcj4=
¤Ê¤É¤È¥µ¡¼¥Ð¤«¤éʸ»úÎó¤¬Á÷¤é¤ì¤Æ¤¯¤ë.
¤³¤Îʸ»úÎó ''PG5hbmlrYS1pbWFwQHNlcnZlcj4='' ¤ËÂФ·¤Æ¡¤Àè...
Î㤨¤Ð¼¡¤Î¤è¤¦¤Ë¤Ê¤ë¤À¤í¤¦.
> Username? testuser &color(blue){¢« IMAP ÍѤËÅÐÏ¿¤·¤¿¥æ...
> Password? password &color(blue){¢« IMAP ÍѤËÅÐÏ¿¤·¤¿¥Ñ...
> Send: AUTH CRAM-MD5 (or for imap, A AUTHENTICATE CRAM-...
> Paste the challenge here:
> + PG5hbmlrYS1pbWFwQHNlcnZlcj4= &color(blue){¢« º£¤Îʸ»ú...
> Send this response:
> dGVzdHVzZXIgYjlkMDA5MzQ4YmVjMzlkNzcwMWU4MWRiZWE3NmZhN2...
¤³¤ÎºÇ¸å¤Îʸ»úÎó ''dGVzdHVzZXIgYjlkMDA5MzQ4YmVjMzlkNzcwMW...
¤½¤·¤Æ
> a OK LOGIN Ok.
¤È¤Ê¤ì¤Ð¡¤IMAP ¥µ¡¼¥Ð¤Îǧ¾Ú¤¬Ä̤俤Ȥ¤¤¦¤³¤È¤Ë¤Ê¤ê¡¤Æ°ºî...
¤¢¤È¤Ï¤¤¤Ä¤â¤Î¤è¤¦¤Ë ^] ¤È¤·¤Æ¤«¤é quit ¤È¤¹¤ì¤ÐÈ´¤±¤é¤ì¤ë.
¤Ê¤ª¡¤POP ¥µ¡¼¥Ð¤òΩ¤Á¾å¤²¤¿¤Ê¤é¤ÐƱÍͤ˥ƥ¹¥È¤¬²Äǽ¤Ç¤¢¤ë.
¤½¤ÎºÝ¤Ï
telnet localhost 110
¤È¤¹¤ë¤È¡¤
> Trying 127.0.0.1...
> Connected to localhost.
> Escape character is '^]'.
> +OK Hello there.
¤È¤Ê¤ë¤Î¤Ç¡¤¤³¤³¤Ç
> capa
¤ÈÆþÎϤ¹¤ë¤È
> SASL CRAM-MD5 CRAM-SHA
> STLS
> TOP
> USER
> LOGIN-DELAY 10
> PIPELINING
> UIDL
> IMPLEMENTATION Courier Mail Server
> .
¤È±þÅú¤¬Ê֤äƤ¯¤ë.
¤³¤³¤Ç
> auth cram-md5
¤ÈÆþÎϤ¹¤ë¤È
> + PG5hbmlrYS1pbWFwQHNlcnZlcj4=
¤Ê¤É¤È¥µ¡¼¥Ð¤«¤éʸ»úÎó¤¬Á÷¤é¤ì¤Æ¤¯¤ë¤Î¤Ç¡¤
¤³¤ì¤Ë userdb-test-cram-md5 ¥³¥Þ¥ó¥É¤ÇÊÖÅúÍÑʸ»úÎó¤òºîÀ®...
> +OK logged in.
¤Èǧ¾Ú¤µ¤ì¤ë¤È¤¤¤¦Î®¤ì¤Ë¤Ê¤ë.
&ref(./notes.png); ;͵¤¬¤¢¤ì¤ÐŬÅö¤Ê MUA ¤Ç IMAP ¥µ¡¼¥Ð...
¤µ¤é¤Ë;͵¤¬¤¢¤ì¤Ð¡¤IMAP over TLS/SSL ÀßÄê¤Ç¥µ¡¼¥Ð¤ËÀܳ...
* ¥ì¥Ý¡¼¥È [#w8848073]
ÅÓÃæ¤Ç¡ÖÄ´¤Ù¤è¡×¤È»Ø¼¨¤µ¤ì¤¿»ö¹à¤Ë¤Ä¤¤¤ÆÄ´ºº¤ò¹Ô¤¤¡¤Êó¹ð...
¤Þ¤¿¡¤ËÜÆü¹Ô¤Ã¤¿ºî¶È¤Ë¤Ä¤¤¤ÆÊó¹ð¤»¤è.
¤â¤Á¤í¤ó³Æ¼«¤Î
+ ½ê°(³ØÉô¡¤³Ø²Ê)
+ ³ØÀÒÈÖ¹æ
+ ³Øǯ
+ »á̾
+ Æü»þ
+ ´Î¿´¤Î¥ì¥Ý¡¼¥ÈÆâÍÆ(ÆÀ¤¿Ãθ«¡¤ºî¶È¤Ë¤Ä¤¤¤Æµ¤¤Å¤¤¤¿¤³¤ÈÅù)
¤ò½ñ¤¯¤Î¤ò˺¤ì¤Ê¤¤¤è¤¦¤Ë.
*** about Icons [#te833230]
Some icons in this page are downloadable at [[ICONFINDER:...
The "note" icon designed by [[Marco Martin:http://www.not...
and the "warning" icon designed by [[Alexandre Moore:http...
¥Ú¡¼¥¸Ì¾: