Re: SASL and NIS errors

9 msg	Maximum length of a header line?
3 msg	Delay splitted in logfile
4 msg	Customize the 221 Bye message
1 msg	Postfix snapshot 20070724
8 msg	relay access denied
5 msg	spamcop link to my website in signature leads t...
13 msg	Message size limit per user
4 msg	chaining aliases failing?
5 msg	misdelivery of mail to user@virtual to user@domain
2 msg	Vacation Message - request for comment on imple...
10 msg	Possible DoS when the adress and the virtual my...
1 msg	Postfix + Dovecot + Procmail
7 msg	2 instances of smtpd in master.cf
2 msg	diskless client with link to servers mailqueue
4 msg	Authentication: how does it work?
1 msg	uupth or pathto in Postfix

SASL and NIS errors
\ Patrick - South Valley Internet (24 Jul 2007)
. \ Victor Duchovni (24 Jul 2007)
. \ Tony Earnshaw (24 Jul 2007)

1 msg	postfix sqlite ??
2 msg	Problem authenticating postfix users with cyrus...
19 msg	sender address verification vs. script-generate...

Subject:	Re: SASL and NIS errors
Group:	Postfix-users
From:	Tony Earnshaw
Date:	24 Jul 2007

Patrick - South Valley Internet skrev, on 24-07-2007 02:52:

[...]

> I'm using LDAP to authenticate - isn't NIS different from LDAP?

NIS does the same kind of thing for authentication as LDAP (could be
called a subset) but is very old and completely different in design,
complicated, insecure and not generally chosen by sites that may choose
between both.

> If
> so/not - how do I fix the NIS warning message?

Probably you have it as mail alias source in main.cf: Remove it.

> Also, is SASL needed for LDAP authentication?

SASL is not needed for LDAP authentication but it is needed for all
Postfix authentication. There are a number of different SASL mechanisms,
all defined by rfcs. Depending on the SASL software you choose, you can
vary which mechanisms are available. The more you want, the more
complicated it all gets, but the more secure you can make your server.
This goes as well for LDAP as Postfix authentication.

--Tonni

--
Tony Earnshaw
Email: tonni at hetnet dot nl