No cleartext SMTP authentication in Server 3.0?
I am currently running OS X Server 2.2.2 on OS X 10.8. I have several Windows clients that use the eM Client E-mail/CalDAV/CardDAV client for mail, calendar and contacts (thsi is just about the only Windows client that works well for all these with OS XServer). Unfortunately this client can only use cleartext authentication for SMTP (it supports MD5 digest for IMAP). I am able to have this working fine via SSL/TLS to OS X Server 2.2.2 for users hosted in Open Directory.
I am now testing OS X Server 3.0.1 running on OS X 10.9.1 and I find to my horror that the SMTP authentication no longer works. IMAP authentication still works okay. It seems either there has been soem change to how SSL/TLS autnentication works on 3.0.1 or cleartest authentication is no longer allowed for SMTP...
Does anyone know if this is indeed a change on the server side? And is there any way to override it and force it to allow cleartext authentication, for Open Directory hosted users, for SMTP (over SSL of course)? If I can't solve this then I am caught between a rock and a hard place.
Thanks for any insights...
Hello MrHoffman,
Thanks for your reply. I have indeed already enabled all those options; my configuration has not changed from 10.8.2/2.2.2 where it all worked just fine (with the same client configuration) :-(
Here is the output from my 10.9.1/3.0.1 server:
bash-3.2# postconf -c /Library/Server/Mail/Config/postfix smtpd_client_restrictions
smtpd_client_restrictions = permit_mynetworks permit_sasl_authenticated reject_rbl_client zen.spamhaus.org permit
bash-3.2# postconf -c /Library/Server/Mail/Config/postfix smtpd_pw_server_security_options
smtpd_pw_server_security_options = cram-md5,digest-md5,gssapi,login,plain
and
bash-3.2# telnet xxx.yyyyyyyyyy.org.uk 25
Trying 10.0.200.6...
Connected to xxx.yyyyyyyyyyy.org.uk.
Escape character is '^]'.
220 xxx.yyyyyyyyyyyy.org.uk ESMTP Postfix
EHLO aaa.yyyyyyyyyyyyyy.org.uk
250-xxx.yyyyyyyyyyyy.org.uk
250-PIPELINING
250-SIZE 31457280
250-VRFY
250-ETRN
250-STARTTLS
250-AUTH LOGIN PLAIN CRAM-MD5 DIGEST-MD5 GSSAPI
250-ENHANCEDSTATUSCODES
250-8BITMIME
250-DSN
250-BINARYMIME
250 CHUNKING
The problem seems to definitely be related to authentication. If I (temporarily) allow unauthenticated submission on port 25 and set the client to not send any credentials then it connects and sumbits successfully.
In 'mail.log' I see these messages (many times):
Jan 2 18:56:13 xxx.yyyyyyyyyyyyy.org.uk postfix/postscreen[13851]: CONNECT from [10.0.200.68]:49293 to [10.0.200.6]:25
Jan 2 18:56:13 xxx.yyyyyyyyyyyyy.org.uk postfix/postscreen[13851]: WHITELISTED [10.0.200.68]:49293
Jan 2 18:56:13 xxx.yyyyyyyyyyyyy.org.uk postfix/smtpd[13852]: connect from aaa.yyyyyyyyyyyyy.org.uk[10.0.200.68]
Jan 2 18:56:13 xxx.yyyyyyyyyyyyy.org.uk postfix/smtpd[13852]: error: verify password: error: Credentials could not be verified, username or password is invalid.
Jan 2 18:56:13 www.thejenkinsfamily.org.uk postfix/smtpd[13852]: error: verify password: authentication failed: user=ddddd
I know this user/password is okay since (a) it can login as a network usr authenticated by Open Directory and (b) it can send mail from OS X Mail authenticating using CRAM-MD5 over SSL.
The eM Client SMTP log shows this...
16:15:51.477|023| SMTP S: 220 xxx.yyyyyyyyyy.org.uk ESMTP Postfix
16:15:51.477|023| SMTP C: EHLO [10.0.2.15]
16:15:51.477|023| SMTP S: 250-xxx.yyyyyyyyyy.org.uk
16:15:51.477|023| SMTP S: 250-PIPELINING
16:15:51.477|023| SMTP S: 250-SIZE 31457280
16:15:51.477|023| SMTP S: 250-VRFY
16:15:51.477|023| SMTP S: 250-ETRN
16:15:51.477|023| SMTP S: 250-STARTTLS
16:15:51.477|023| SMTP S: 250-ENHANCEDSTATUSCODES
16:15:51.477|023| SMTP S: 250-8BITMIME
16:15:51.477|023| SMTP S: 250-DSN
16:15:51.477|023| SMTP S: 250-BINARYMIME
16:15:51.477|023| SMTP S: 250 CHUNKING
16:15:51.477|023| SMTP C: STARTTLS
16:15:51.477|023| SMTP S: 220 2.0.0 Ready to start TLS
16:15:51.477|023| SMTP C: EHLO [10.0.2.15]
16:15:51.477|023| SMTP S: 250-xxx.yyyyyyyyyy.org.uk
16:15:51.477|023| SMTP S: 250-PIPELINING
16:15:51.477|023| SMTP S: 250-SIZE 31457280
16:15:51.477|023| SMTP S: 250-VRFY
16:15:51.477|023| SMTP S: 250-ETRN
16:15:51.477|023| SMTP S: 250-AUTH LOGIN PLAIN CRAM-MD5 DIGEST-MD5 GSSAPI
16:15:51.477|023| SMTP S: 250-ENHANCEDSTATUSCODES
16:15:51.477|023| SMTP S: 250-8BITMIME
16:15:51.477|023| SMTP S: 250-DSN
16:15:51.477|023| SMTP S: 250-BINARYMIME
16:15:51.477|023| SMTP S: 250-CHUNKING
16:15:51.477|023| SMTP S: 250 BURL
16:15:51.493|023| SMTP C: AUTH LOGIN
16:15:51.493|023| SMTP S: 334 VXNlcm5hbWU6
16:15:51.493|023| SMTP C: Y2hyaXM=
16:15:51.493|023| SMTP S: 334 UGFzc3dvcmQ6
16:15:51.493|023| SMTP C: d2VhdmV3MQ==
16:15:51.555|023| SMTP S: 535 Error: authentication failed
16:15:53.895|023| SMTP C: AUTH LOGIN
16:15:53.895|023| SMTP S: 334 VXNlcm5hbWU6
16:15:53.895|023| SMTP C: Y2hyaXM=
16:15:53.895|023| SMTP S: 334 UGFzc3dvcmQ6
16:15:53.895|023| SMTP C: d2VhdmV3MQ==
16:15:53.942|023| SMTP S: 535 Error: authentication failed
16:15:54.488|023| SMTP C: AUTH LOGIN
16:15:54.488|023| SMTP S: 334 VXNlcm5hbWU6
16:15:54.488|023| SMTP C: Y2hyaXM=
16:15:54.504|023| SMTP S: 334 UGFzc3dvcmQ6
16:15:54.504|023| SMTP C: d2VhdmV3MQ==
16:15:54.550|023| SMTP S: 535 Error: authentication failed
Do you have any insights? I am somewhat stumped at this point... I am wonderign is some subtle change (in OS X Server) has resulted in an incompatibility between eM Client and OS X Server 3.0.
Regards,
Chris
Similar Messages
-
NAC Guest Server SMTP Authentication
Does anyone know if you are able to set your SMTP server in the NAC Guest Server to do SMTP Authentication? Our old Exchange server just let us specify the SMTP server and send the guest accounts their Username and Password to their outside accounts. Our new Exchange server requires SMTP authentication, but we do not see the option available in the NAC Guest Server interface. We are running NAC Guest Server 1.1.3. Any ideas would be appreciated. Thanks!
I have Cisco NAC Guester server 2.0.2 and have sort of similar issues.
I configured the Base DN to the OU of the sponsor groups in AD and then map that particular group in roles. Users from that group can log on fine and create guest accounts.
The problem is, it seems that other users from that OU seems to be able to log on as sponsors too. How do I restrcit this to just that sponsore group? I tried changing the Base DN to the OU of the sponsore group then enter CN=sponsorgroup to narrow it to just that group but still other users can log in as sponsors. -
How to disable OSX server 3 SMTP authentication
Hi,
I upgraded my 10.5 server to 10.9 OSX server. The mail server is only used internally. I use a HP Multifuntion printer which I often use to scan documents and the printer would mail me the scans in PDF. In 10.9 the user have to authenticate in order to send mail via the SMTP server. Unfortunately the HP printer expects an open SMTP server.
I know that underneath OSX mail server Postfix is running. Is there a way to dissable SMTP authentication so I can us my multifunction printer to mail me the scanned documents again?MrHoffman,
Thank you very much for pointing me in the right direction. I added my network to the mynetwork parameter and still got an error on the mail server. This was what I found in the log:
NOQUEUE: reject: RCPT from hpprinter.warmoezier.home[192.168.XX.XX]: 504 5.5.2 <NPIB32ACB>: Helo command rejected: need fully-qualified hostname; from=<XXXXXXXXXX> to=<XXXXXXXXXX> proto=ESMTP helo=<NPIB32ACB>
(I removed my mail addresses from the printout. It seems that the HP printer doesnot provide the fqdn in the HELO command.
Then I replaced:
smtpd_helo_restrictions = reject_non_fqdn_helo_hostname reject_invalid_helo_hostname
with:
smtpd_helo_restrictions = reject_invalid_helo_hostname
This solved my problem.
I gues I have to replace the network with the exact printer address in the mynetworks parameter to be on the safe side concerning openrelays in my private network.
I edited the main.cf directly without using the postconf command or should I have used postconf?
Thanks again for sharing your knowledge.
Peter.
P.s.
btw is the command in your post correct?
postconf -c /Library/Server/Mail/Config/postfix mynetworks -e "mynetworks = 127.0.0.0/8, [::1]/128, 10.20.30.40"
shouldn't it be:
postconf -c /Library/Server/Mail/Config/postfix -e "mynetworks = 127.0.0.0/8, [::1]/128, 10.20.30.40" -
Mail service not requiring SMTP Authentication
hello everyone,
I have been trying to find an answer and could not. I want my mail server to require SMTP Authentication. I have "CRAM-MD5" and "Login" checked in Server Admin -> Computers & Services -> Mail -> Advanced -> Security. Still, I can set up a mail account with any name and domain and SMTP through my server. (It does require a password for POP, so at least no one can read others folks mail)
I have begun to notice that I get many returned mails that I never sent, from accounts that are not on my server. So, I am thinking that spammers are relaying or just using my server to spam. I would like that to stop.
I have changed the configurations with Server Admin, stopped service, started service, and even restarted the whole server. Still, mail will not require SMTP Authentication.
Can anyone help me do this with Terminal or manually?thanks, for any help in advance.
command_directory = /usr/sbin
config_directory = /etc/postfix
content_filter = smtp-amavis:[127.0.0.1]:10024
daemon_directory = /usr/libexec/postfix
debugpeerlevel = 2
enableserveroptions = yes
html_directory = no
inet_interfaces = all
localrecipientmaps = proxy:unix:passwd.byname $alias_maps
luser_relay =
mail_owner = postfix
mailboxsizelimit = 0
mailbox_transport = cyrus
mailq_path = /usr/bin/mailq
manpage_directory = /usr/share/man
mapsrbldomains =
messagesizelimit = 52428800
mydestination = $myhostname,localhost.$mydomain,localhost,highlevelit.eu
mydomain = highlevelit.eu
mydomain_fallback = localhost
myhostname = mailx.highlevelit.eu
mynetworks = 127.0.0.0/8
mynetworks_style = host
newaliases_path = /usr/bin/newaliases
queue_directory = /private/var/spool/postfix
readme_directory = /usr/share/doc/postfix
sample_directory = /usr/share/doc/postfix/examples
sendmail_path = /usr/sbin/sendmail
setgid_group = postdrop
smtpdclientrestrictions = permit_mynetworks permit
smtpdenforcetls = no
smtpdpw_server_securityoptions = login
smtpdrecipientrestrictions = permitsasl_authenticated,permit_mynetworks,reject_unauthdestination,permit
smtpdsasl_authenable = yes
smtpdtls_certfile = /etc/certificates/mailx.highlevelit.eu.crt
smtpdtls_keyfile = /etc/certificates/mailx.highlevelit.eu.key
smtpduse_pwserver = yes
smtpdusetls = yes
unknownlocal_recipient_rejectcode = 550
virtualmailboxdomains = hash:/etc/postfix/virtual_domains
virtual_transport = lmtp:unix:/var/imap/socket/lmtp -
I've read a number of posts on this topic but still need some clarification.
Please forgive my lengthy explanation as I'd like to lay out the scenario properly - my questions are at the bottom of this post.
My current setup is Groupwise 7.0.3 with a GWAVA5 appliance as the front end.
All mail should go through GWAVA both inbound and outbound.
We have an MX record that points to our GWAVA5 appliance
We also have smtp pointing to our GWIA server for imap/pop connections by our mobile users, with authentication required.
I was advised by one of our users that he received mail containing an attachment "message.zip" which contained "message.htm" disguising an ".exe"
containing a virus.
The header showed the following, with the actual domain name changed by me for security reasons.
The IP of the sender is intact.
Return-path: <>
Received: from "ourdomain.com" ([115.248.180.37])
by "our_smtp_server.com" with ESMTP; Sat, 07 Apr 2012 07:07:41 -0400
From: "Automatic Email Delivery Software" <[email protected]>
To: [email protected]
Subject: Delivery failed
Date: Sat, 7 Apr 2012 16:35:33 +0530
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="----=_NextPart_000_0012_955492E2.6AD1CC6D"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.0000
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.0000
This is a multi-part message in MIME format.
------=_NextPart_000_0012_955492E2.6AD1CC6D
Content-Type: text/plain;
charset=us-ascii
Content-Transfer-Encoding: 7bit
The following is the entry from the GWIA log on the date in question:
07:07:40 359 DMN: MSG 462912 Accepted connection: [115.248.180.37] ()
07:07:41 359 DMN: MSG 462912 Receiving file: NCGWIA/DATA:\NCGWIA\WPGATE\GWIA\receive\db7ef7f4.224
07:07:43 359 DMN: MSG 462912 SMTP session ended: [115.248.180.37] ()
Questions:
It appears that the sender attached to our GWIA and sent the message from there.
The "mailer-daemon" indicates it was disguised to look like a system-generated bounce message.
What in my configuration would allow this?
Within the properties of my GWIA, I do not have "reject mail if sender's identity cannot be verified".
I've read the admin guides on this feature and it seems to point to PTR records checks.
Would that prevent this incident?
We have a number of internal servers that do send mail, through our GWIA, and I have relay exceptions for those (otherwise relay is not allowed)
If I set the "reject mail......" how will that affect those internal servers - will they need an actual account to authenticate with.
Hope I've explained it clearly
Thanks in advance
VinceThanks Uwe, but the sending machine is actually located "out there somewhere" [115.248.180.37] not on our network, so can't be checked.
As you stated, I'm sure this isn't a relaying issue as we have relay disallowed, with exceptions.
I suspect the mail went through because the sender used "[email protected]"
Vince
Originally Posted by buckesfeld
Vince,
find the machine with the sending IP address and check the machine.
To prevent such issues, you could modify the access control of the GWIA and allow SMTP only for those machines/users who need it.
Relaying doesn't come into play here, since the sender addresses an internal recipient, so no SMTP authentication needed.
Uwe
Novell Knowledge Partner (NKP)
Please don't send me support related e-mail unless I ask you to do so. -
SMTP authentication in OCSR2 9.0.4.1
I am setting the smtp authentication in OCSR2 to true, after that, when ever I sent mail thru the server, it need the smtp authentication. I thought I had been successfully configure the server. But later on, when I trying to send mail to the user in the OCSr2 server(from hotmail mail), the mail was reject due to the error"authentication failed".
It seem that the authentication setting not only affect the mail relaying but also incoming mail connection. Is this true??I searched some more on the Forum and eventually found a whitepaper on PJC's in Forms 6i. That gave me the tip not to implement the IView interface, but just extend the VBean class.
That's what I just tried and no more classCastException. That seems to fix my issue. No to develop the bean itself... -
Moved from DC to NC now smtp authentication with Cox won't work on roadrunn
I just moved from DC to NC. I have a cox.net email I prefer to use. Cox allows smtp authentication over other ISPs. I had RCN in DC and it worked perfectly. But now, with Time Warner (RoadRunner), it doesn't work. (Incoming still works fine, this is just about outgoing/smtp.) The smtp authentication is set up EXACTLY as it was in DC, but the connection just times out. Oddly, it works fine when I am connected directly to the cable modem. BUT, it does not work when I am connected to my wireless network using an airport extreme. I have deleted the smtp server a hundred times. I have selected SSL and unselected SSL a hundred times. I have tried no authentication. I have tried removing the "cox.net" after my name in the outgoing mail settings. I have reset the airport extreme to factory settings and set the network up again. NOTHING is working. Why would this work directly connected to the modem but not through the EXACT SAME WIRELESS NETWORK and settings I had with RCN??? Any tips/help is greatly appreciated. Oh, and all of my other non-RoadRunner smtp authentication accounts work fine. And my me.com email works fine.
Thanks again, Bob! Here is the error I'm getting for all three usual ports (25, 465 & 587):
CONNECTED Apr 07 08:26:51.776 [kCFStreamSocketSecurityLevelNegotiatedSSL] -- host:smtp.west.cox.net -- port:465 -- socket:0x116c00450 -- thread:0x116f54800
READ Apr 07 08:26:52.090 [kCFStreamSocketSecurityLevelNegotiatedSSL] -- host:smtp.west.cox.net -- port:465 -- socket:0x116c00450 -- thread:0x116f54800
554 fed1rmimpo03.cox.net bizsmtp connection refused from 71.77.138.209
It looks to my untrained eye that the cox servers are refusing me. Is that correct? So I should call cox, right? And how do I find the IP address that I'm being refused under?
Sorry to be so ignorant, but your help is greatly appreciated! -
Smtp authentication 10.8
Hi,
In 10.7 we could lock the SMTP service down to requiring a username and password.
In 10.8 it appears that anyone can send via the server, as long as they have the address. No very secure!!!
We did a simple upgrade from 10.7-10.8.
Obviously Server.app has been trimmed down severely, is there a way in terminal to require a user/password for SMTP authentication?
ThanksUse jMapMyLDAP plugins and this config works perfectly:
Name
Value
LDAP V3
Yes
Host
[DNS/IP Address to LDAP Server]
Port
389
Connect User
Leave blank unless anonymous binding is switched off
Connect Password
Leave blank unless anonymous binding is switched off
Use Search
Yes
Base DN
[Base of your directory such as dc=company,dc=com]
User DN / Filter
(uid=[username])
Map User ID
uid
Map Full Name
cn
Map Email
mail
The following table shows an example group mapping configuration:
Name
Value
Use Group Mapping
Yes
Allow Additions
Yes
Allow Removals
Yes & Default Managed
Mapping List
[The groups to map such as cn=teachers:4]
Lookup Type
Reverse
Lookup Attribute
memberUid
Lookup Member
uid
Use Recursion
No -
I am using exchange 2003 connected using MAPI with outlook2010.
when i send e-mail to one of my customer.
i got below error message
There was a SMTP communication problem with the recipient’s email server. Please contact your system administrator.
<xxxx.net #5.5.0 smtp;550-Please turn on SMTP Authentication in
your mail client. >
xxxx.net was my server
and my customer was using messagelabs "cluster6a.us.messagelabs.com" to receive mail
i was strange that MAPI connect does not need smtp authentication when send out e-mail.
is that anythings i have missing to do?
thank youHello,
Kindly go through with below link.
http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_28133927.html
http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_28078232.html
Deepak Kotian.
MCP, MCTS, MCITP Server / Exchange 2010 Ent. Administrator
Disclaimer:
Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
This helps the community, keeps the forums tidy, and recognizes useful contributions. Thanks!
All the opinions expressed here is mine. This posting is provided "AS IS" with no
warranties or guarantees and confers no rights. -
SMTP Authentication for PHP Mail
Can anyone help me in figuring out the correct way to incorporate the SMTP authentication into a form? I am having a lot of trouble in getting my forms to send with this format. My code for my php action page is below. I have my correct information where i included *******. Please let me know what i have wrong.
CODE STARTS HERE
<?php
//new function
$to = "*******";
$nameto = "LTL Freight Shop";
$from = "*******";
$namefrom = "LTL Freight Shop";
$subject = "Account Request";
authSendEmail($from, $namefrom, $to, $nameto, $subject, $message);
?>
<?php
$recipient = "*******";
//$subject = "Account Request";
$companyname = check_input($_POST['CompanyName'], "Enter your company name");
$firstname = check_input($_POST['FirstName'], "Enter your first name");
$lastname = check_input($_POST['LastName'], "Enter your last name");
$phone = check_input($_POST['PhoneNumber'], "Enter your phone number");
$fax = check_input($_POST['FaxNumber']);
$email = check_input($_POST['Email'], "Enter your email");
$address = check_input($_POST['StreetAddress'], "Enter your address");
$city = check_input($_POST['City'], "Enter your city");
$state = check_input($_POST['State'], "Enter your state");
$zipcode = check_input($_POST['ZipCode'], "Enter your zip code");
$country = check_input($_POST['Country'], "Enter your country");
$yearsinbusiness = check_input($_POST['YearsinBusiness'], "Enter your years in business");
$typeofindustry = check_input($_POST['TypeofIndustry'], "Enter your type of industry");
$multiplelocations = check_input($_POST['MultipleLocations']);
$numberoflocations = check_input($_POST['LocationsCount']);
$ltl = check_input($_POST['ServicesLTL']);
$ftl = check_input($_POST['ServicesFTL']);
$domesticparcel = check_input($_POST['ServicesDomesticParcel']);
$intlparcel = check_input($_POST['ServicesInternationalParcel']);
$airfreight = check_input($_POST['ServicesAirFreight']);
$oceanfreight = check_input($_POST['ServicesOceanFreight']);
$other = check_input($_POST['ServicesOther']);
$none = check_input($_POST['ServicesNone']);
$volume = check_input($_POST['TypicalVolume'], "Enter your typical volume");
$carrier = check_input($_POST['CurrentCarrier'], "Enter your current carrier");
$class = check_input($_POST['AverageClass'], "Enter your average class");
$weight = check_input($_POST['AverageWeight'], "Enter your average weight");
$process = check_input($_POST['Process']);
$hearabout = check_input($_POST['HearAbout']);
$comments = check_input($_POST['Comments']);
if (!preg_match("/([\w\-]+\@[\w\-]+\.[\w\-]+)/", $email))
show_error("E-mail address not valid");
$message = "You have received an account request from:
Company Name: $companyname
First Name: $firstname
Last Name: $lastname
Phone Number: $phone
Fax Number: $fax
E-mail: $email
Street Address: $address
City: $city
State: $state
Zip Code: $zipcode
Country: $country
Years in Business: $yearsinbusiness
Type of Industry: $typeofindustry
Multiple Locations: $multiplelocations
Number of Locations: $numberoflocations
Services they use: $ltl, $ftl, $domesticparcel, $intlparcel, $airfreight, $oceanfreight, $other, $none
Typical Volume: $volume
Current Carrier: $carrier
Average Class: $class
Average Weight: $weight
How they currently process: $process
How they heard about us: $hearabout
Comments: $comments
End of message
//ini_set("SMTP","smtp.emailsrvr.com");
//ini_set("SMTP_PORT", 25);
//ini_set("sendmail_from","*******");
//mail($recipient, $subject, $message);
function check_input($data, $problem='')
$data = trim($data);
$data = stripslashes($data);
$data = htmlspecialchars($data);
if ($problem && strlen($data) == 0)
show_error($problem);
return $data;
function authSendEmail($from, $namefrom, $to, $nameto, $subject, $message)
$smtpServer = "smtp.emailsrvr.com";
$port = "25";
$timeout = "30";
$username = "********";
$password = "********";
$localhost = "smtp.emailsrvr.com";
$newLine = "\r\n";
$smtpConnect = fsockopen($smtpServer, $port, $errno, $errstr, $timeout);
$smtpResponse = fgets($smtpConnect, 515);
if(empty($smtpConnect))
$output = "Failed to connect: $smtpResponse";
return $output;
else
$logArray['connection'] = "Connected: $smtpResponse";
fputs($smtpConnect,"AUTH LOGIN" . $newLine);
$smtpResponse = fgets($smtpConnect, 515);
$logArray['authrequest'] = "$smtpResponse";
fputs($smtpConnect, base64_encode($username) . $newLine);
$smtpResponse = fgets($smtpConnect, 515);
$logArray['authusername'] = "$smtpResponse";
fputs($smtpConnect, base64_encode($password) . $newLine);
$smtpResponse = fgets($smtpConnect, 515);
$logArray['authpassword'] = "$smtpResponse";
fputs($smtpConnect, "HELO $localhost" . $newLine);
$smtpResponse = fgets($smtpConnect, 515);
$logArray['heloresponse'] = "$smtpResponse";
fputs($smtpConnect, "MAIL FROM: $from" . $newLine);
$smtpResponse = fgets($smtpConnect, 515);
$logArray['mailfromresponse'] = "$smtpResponse";
fputs($smtpConnect, "RCPT TO: $to" . $newLine);
$smtpResponse = fgets($smtpConnect, 515);
$logArray['mailtoresponse'] = "$smtpResponse";
fputs($smtpConnect, "DATA" . $newLine);
$smtpResponse = fgets($smtpConnect, 515);
$logArray['data1response'] = "$smtpResponse";
$headers = "MIME-Version: 1.0" . $newLine;
$headers .= "Content-type: text/html; charset=iso-8859-1" . $newLine;
$headers .= "To: $nameto <$to>" . $newLine;
$headers .= "From: $namefrom <$from>" . $newLine;
fputs($smtpConnect, "To: $to\nFrom: $from\nSubject: $subject\n$headers\n\n$message\n.\n");
$smtpResponse = fgets($smtpConnect, 515);
$logArray['data2response'] = "$smtpResponse";
fputs($smtpConnect,"QUIT" . $newLine);
$smtpResponse = fgets($smtpConnect, 515);
$logArray['quitresponse'] = "$smtpResponse";
function show_error($myError)
?>
<html>
<body>
<b>Please correct the following error:</b><br />
<?php echo $myError; ?>
</body>
</html>
<?php
exit();
?>I have the same problem - user has Outlook 2010 on Exchange 2007. Mail goes directly into the deleted items folder. After browsing around the net I found 2 different site with the same potential fix. It seems that when migrating a user from Exch 2003 to
2007 (which we did) some of the configs get set incorrectly. The weird thing is we migrated over 2 years ago, and some others are experiencing the same after a long period after the migration. The fix that was suggested is:
Go to your Exch server, open up Exchange Management Shell and type the following:
get-mailboxcalendarsettings "domain/ou/user" | fl
set-mailboxcalendarsettings "doman/ou/user" -automateprocessing: Autoupdate
My user already had Autoupdate set, but this seems to have fixed it for me... -
I try to send mail with a Javamail client code (you can see the code below), it works fine if the mail server doesn't require SMTP authentication to be relay, but SendFailedException occurs if the mail server security setting is set to SMTP requires authentication (same settings as POP usr/pwd) on the mail server.
I believe it is an issue of SMTP authentication.
How do I code for SMTP authentication with Java Mail API?
Thanks!
Can Odabasioglu
Source Code:
import java.util.Properties;
import javax.mail.*;
import javax.mail.internet.*;
import java.io.UnsupportedEncodingException;
public class MailExample {
public static void main (String args[]) {
String host = "odabasioglu.net";
String from = "[email protected]";
String to = "[email protected]";
try {
Properties props = System.getProperties();
Authenticator auth = new POPAuth ();
props.put("mail.smtp.host", host);
Session session = Session.getInstance(props, auth);
MimeMessage message = new MimeMessage(session);
message.setFrom(new InternetAddress(from,"FromName"));
message.addRecipient(Message.RecipientType.TO,new InternetAddress(to,"ToName"));
message.setSubject("Test Subject");
message.setText("Can Odabasioglu");
Transport.send(message);
catch (MessagingException e) {e.toString();}
catch (UnsupportedEncodingException e) {e.toString();}
static class POPAuth extends Authenticator {
public PasswordAuthentication getPasswordAuthentication() {
return new PasswordAuthentication("UserName", "Password");
}“Cannot send message using the server
Mail.ISP.net:[email protected]”
…And provides the “Send message using:” pulldown to
select one of two accounts (one is followed by
“:[email protected]”, the other is not). Both are the
same options the other two machines have, but neither
option works on this machine.
This is one of those error messages that they send application programmers to school for so that they can include error messages that don't tell you what the problem is.
After much trial and error, I discovered that this message is returned if there is an error in the recipient's email address. Perhaps, if it was stored in the address book, it became corrupt. I've found that manually typing in the address (without automatically finishing it from cache) usually fixes the problem. I just spoke to a customer this morning with the same error message, and entering the recipient's email address manually corrected the problem. -
SMTP Authentication Possible?
The SMTP mail server in my environment uses authentication (user/pswd) when connecting and sending e-mail. How can I pass user/pswd to it through Reports? I realize that I can set up a pluginParam to specify the SMTP name. But I can't find anything on SMTP authentication.
Thanks,
ScottYou can always create a custom destination that takes control after the Reports Server formats the report. Your plugin destination does all that Reports mailing destination package does plus authenticate the user.
For more information on how to create and deploy custom destination, visit:
http://otn.oracle.com/products/reports/apis/index.html
Regards
Sripathy -
SMTP authentication disabled in Outlook
Hello,
Was a security or outlook update recently released that disabled SMTP authentication in Outlook 2003/2007? I've had several users report that this has been disabled; all are using various flavors of Outlook and Windows.Hi,
“SMTP requires authentication” option is set when using a POP3, IMAP or HTTP account in Outlook. If you are using Outlook 2007, we need to follow these steps to configure it:
1. On the Tools menu, click Account Settings.
2. Select the account you want to change.
3. Click More Settings, and then you can change the following:
4. On the Outgoing Server tab, you can specify whether your outgoing SMTP mail server requires authentication. This is almost always required if your ISP allows you to send e-mail messages through your ISP e-mail account when you are not
directly connected to the ISP network, for example, if you want to send an e-mail message with your home ISP e-mail account and you are away from home connected to your work network.
For more information about it, please refer to the following article:
http://office.microsoft.com/en-us/outlook-help/change-email-account-settings-HP010006899.aspx#BM2
Regards,
Winnie Liang
TechNet Community Support -
SMTP authentication description
Hi everyone :
I don't know what is Ironport SMTP authentication feature after reading the Adv-UserGuide.
Is it the smtp authentication use to authen the user connect to email server and How it work between email server and client if it is , As we know Ironport is email gateway , How Ironport can control the user connect to email server ?
Is it only work for Outgoing email authentication ?
thx thx !I would say that SMTP Authentication is most commonly used for a segment of your end users that are traveling on business or work outside of the internal company network and can't be connected directly to the company mailserver to send out their outgoing mail.
Since a user outside the network may not be able to directly connect to the corporate mailserver, what mail administrators try to set up is the IronPort appliance to do smtp authentication against an Active Directory server for example and then if the sender authenticates, they'll be able to relay using the IronPort appliance.
If you run into any problems or questions, feel free to post the issue here and we'll try to iron it out. -
Hi, i want to ask the function of smtp authentication in ironport. Is it used to authenticate with the exchange server or per client using LDAP? When i configure the smtp authentication, is it used for incoming or outgoing connection ? Thanks.
Regards
Alkuin MelvinDear Alkuin,
For SMTP authentication configuration, you can configure SMTP auth profile under 'Network'-'SMTP Authentication' (LDAP, forward and outgoing).
In my opinion, you can choose to enable SMTP AUTH in mail flow polic(ies) of existing listener (port 25) and/or a new listener using another port (say port 8025). The reason to use 'port number other than port 25' is that some residential ISP or hotel internet connection will block outgoing port 25 connection (due to antispam reason - blocking botnet/malware infected hosts to send spams and ISP IP address gets blacklisted).
For existing listener, you can configure SMTP AUTH "Preferred" setting in default mail flow policy, and then users can authenticate and then relay emails through IronPort from public IP address (configure email client's outgoing SMTP gateway with IronPort public IP address and port 25). One point to note is that if the user is sending from a poor reputation IP, their SMTP connection may be blocked or throttled.
For listener using port number other than 25 (e.g. 8025) , you can configure to have just one sender group with default mail flow policy configured with SMTP AUTH "Required". The email client needs to configure with outgoing SMTP gateway with IronPort listener's public IP address and specific port number (say port 8025). In this way, only authenticated user can relay emails through this listener and they can avoid port 25 blocking issue or sending host's reputation issue as mentioned above.
Cheers,
Tommy
Maybe you are looking for
-
I am having trouble with Flash Player 9 on Windows XP. I have uninstalled it and reinstalled it for one user, but when I try it on another user it says it installed successfully, but doesn't show any content. I have even downloaded SubInACL from Micr
-
How can I export (just copy all of email sent) all emails from outlook 2001
Hi, I have a macbook pro 10.8.4 and I would like to know how to copy all of emails that were sent from my outlook 2011. Please help ..
-
Datasource TO MS Access on Windows Vista
I have windows vista and MS Access 2007. I have successfuly created datasources to SQL server but get this error when submitting a datasource to an Access database. "Unable to update the NT registry. Variable DRIVERPATH is undefined." Any idea how to
-
Can u buy the iphone 5S unlocked in america
Can u buy the iphone 5S unlocked in america?
-
RTMFPTurnProxy for peer to peer communication in proxy connection
Which server ip i have to mention in mms.cfg against Rtmfpturnproxy either the fms server ip or the deployment server for peer to peer communication For peer to peer communication, it is said to add a variable RTMFPTURNProxy in mms.cfg and assign the