I have built cyrus-sasl-1.5.28 and sendmail-8.13.5 on AIX 5.3.0.2. The
..mc file is:


define(`confAUTH_OPTIONS', `A')dnl
define(`confAUTH_MECHANISMS', `PLAIN LOGIN')dnl
TRUST_AUTH_MECH(`PLAIN LOGIN')dnl

define(`QUEUE_DIR', `/work2/mqueue')dnl
define(`confMAX_MESSAGE_SIZE', `12288000')dnl
define(`confTO_INITIAL', `3m')dnl
define(`confTO_CONNECT', `5m')dnl
define(`confTO_ICONNECT', `30s')dnl
define(`confTO_HELO', `3m')dnl
define(`confTO_MAIL', `3m')dnl
define(`confTO_RCPT', `1h')dnl
define(`confTO_DATAINIT', `5m')dnl
define(`confTO_RSET', `5m')dnl
define(`confTO_QUIT', `2m')dnl
define(`confTO_MISC', `2m')dnl
define(`confTO_COMMAND', `5m')dnl
define(`confTO_IDENT', `0')dnl
define(`confTO_QUEUERETURN', `5d')dnl
define(`confTO_QUEUEWARN', `4h')dnl
define(`confTO_HOSTSTATUS', `4h')dnl
define(`confQUEUE_LA', `30')dnl
define(`confREFUSE_LA', `100')dnl
define(`confMAX_DAEMON_CHILDREN', `150')dnl
define(`confNO_RECIPIENT_ACTION', `add-to-undisclosed')dnl
define(`confTRUSTED_USER', `root')dnl
define(`confQUEUE_SORT_ORDER', `Host')dnl
MAILER(local)dnl
MAILER(smtp)dnl


My site.config.m4 file is:

define(`confCC',`xlc -brtl')dnl

dnl ############################################################ #########
dnl ### ###
dnl ### This is a sample "site.config.m4". It is not intended to be ###
dnl ### used directly. It is intended to illustrate, by example, ###
dnl ### how to make your own site configuration file. ###
dnl ### ###
dnl ############################################################ #########
dnl $Id: site.config.m4.sample,v 1.1 2003/01/11 17:09:25 ca Exp $

dnl ############################################################ #########
dnl ### ###
dnl ### This illustrates how to turn off an option that is defined by ###
dnl ### default. Check your compiler documentation to make sure that ###
dnl ### it supports "-U". ###
dnl ### ###
dnl ############################################################ #########

dnl ### Changes to disable the default NIS support
APPENDDEF(`confENVDEF', `-UNIS')

dnl ############################################################ #########
dnl ### ###
dnl ### The next group of statements illustrates how to add support ###
dnl ### for a particular map class. If you have not heard of this ###
dnl ### particular map type, then you probably don't need it. ###
dnl ### ###
dnl ### Note that the map define goes in confMAPDEF, and that any ###
dnl ### special library must be defined. Note, also that include ###
dnl ### directories and library directories must also be defined if ###
dnl ### they are places that your compiler does not automatically ###
dnl ### search. ###
dnl ### ###
dnl ############################################################ #########

dnl ### Changes for PH_MAP support.
APPENDDEF(`confMAPDEF',`-DPH_MAP')
APPENDDEF(`confLIBS', `-lphclient')
APPENDDEF(`confINCDIRS', `-I/usr/local/encap/nph-1.2.3/include')
APPENDDEF(`confLIBDIRS', `-L/usr/local/encap/nph-1.2.3/lib')

dnl ############################################################ #########
dnl ### ###
dnl ### The next group illustrates how to add support for a compile ###
dnl ### time option. In addition to the compile time define, any ###
dnl ### required libraries must be given. In addition, include and ###
dnl ### library directories must be given if they are not standardly ###
dnl ### searched by your compiler. ###
dnl ### ###
dnl ### Note the "-R" for the library directory. On some systems, ###
dnl ### that can be used to tell the run time loader where to find ###
dnl ### dynamic libraries (shared objects). Check your system ###
dnl ### documentation (man ld) to see if this is appropriate for your ###
dnl ### system. ###
dnl ### ###
dnl ############################################################ #########

APPENDDEF(`confLIBDIRS',`-brtl')dnl

dnl ### Changes for STARTTLS support
dnl APPENDDEF(`conf_sendmail_ENVDEF',`-DSTARTTLS')dnl
dnl APPENDDEF(`conf_sendmail_LIBS',`-lssl -lcrypto')dnl
dnl APPENDDEF(`confLIBDIRS', `-L/usr/local/ssl/lib')
dnl APPENDDEF(`confINCDIRS', `-I/usr/local/ssl/include')

APPENDDEF(`conf_sendmail_LIBS',`-lpam')dnl
APPENDDEF(`confENVDEF',`-DSASL=10528')dnl
APPENDDEF(`conf_sendmail_LIBS',`-lsasl')dnl
APPENDDEF(`confLIBDIRS', `-L/usr/local/lib/sasl')dnl
APPENDDEF(`confINCDIRS', `-I/usr/local/include')dnl

Running sendmail -O Loglevel=14 -bs -Am

gives:


root [at] servertop:/usr/lib/sasl> sendmail -O LogLevel=14 -bs -Am
220 servertop.loyno.edu ESMTP Sendmail 8.13.5/8.13.5; Thu, 2 Feb 2006
15:20:45 -0600
ehlo localhost
250-servertop.loyno.edu Hello root [at] localhost, pleased to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-EXPN
250-VERB
250-8BITMIME
250-SIZE 12288000
250-DSN
250-ETRN
250-DELIVERBY
250 HELP
quit
221 2.0.0 servertop.loyno.edu closing connection


The mail.log file includes:

Feb 2 15:20:45 servertop mail:info sendmail[360772]: NOQUEUE: connect
from root [at] localhost
Feb 2 15:20:45 servertop mail:warn|warning sendmail[360772]: AUTH
warning: no mechanisms
Feb 2 15:20:45 servertop mail:info sendmail[360772]: k12LKjcj360772:
Milter (Policy): init success to negotiate
Feb 2 15:20:45 servertop mail:info sendmail[360772]: k12LKjcj360772:
Milter: connect to filters
Feb 2 15:20:45 servertop mail:info sendmail[360772]: k12LKjcj360772:
milter=Policy, action=connect, continue
Feb 2 15:20:51 servertop mail:info sendmail[360772]: k12LKjcj360772:
milter=Policy, action=helo, continue
Feb 2 15:20:53 servertop mail:info sendmail[360772]: k12LKjcj360772:
root [at] localhost did not issue MAIL/EXPN/VRFY/ETRN during connection to
stdin

/usr/lib/sasl is a symlink to /usr/local/lib/sasl which includes:


root [at] servertop:/home/root/sendmail-8.13.5> ls -al /usr/local/lib/sasl
total 1056
drwxr-xr-x 2 root system 512 Feb 02 13:51 .
drwxr-xr-x 5 root system 8192 Feb 02 13:46 ..
-rw-r--r-- 1 root system 25 Feb 02 14:29 Sendmail.conf
-rw-r--r-- 1 root system 50206 Feb 02 13:46 libanonymous.a
-rwxr-xr-x 1 root system 634 Feb 02 13:46 libanonymous.la
-rw-r--r-- 1 root system 70464 Feb 02 13:46 libcrammd5.a
-rwxr-xr-x 1 root system 628 Feb 02 13:46 libcrammd5.la
-rw-r--r-- 1 root system 128616 Feb 02 13:46 libdigestmd5.a
-rwxr-xr-x 1 root system 634 Feb 02 13:46 libdigestmd5.la
-rw-r--r-- 1 root system 58230 Feb 02 13:46 liblogin.a
-rwxr-xr-x 1 root system 627 Feb 02 13:46 liblogin.la
-rw-r--r-- 1 root system 58648 Feb 02 13:51 liblogin.so
-rw-r--r-- 1 root system 57910 Feb 02 13:46 libplain.a
-rwxr-xr-x 1 root system 628 Feb 02 13:46 libplain.la
-rw-r--r-- 1 root system 58328 Feb 02 13:50 libplain.so

Note: the .so files were manually created by:

ar -rv libplain.so libplain.a
ar -rv liblogin.so liblogin.a

My question is how do I tell sendmail where to find the sasl mechanisms?
From the log file, no mechanisms were found, so I get no 550 AUTH entry
when I do an ehlo localhost.

I also cannot seem to tell sendmail to include the mechanisms
statically. Is that possible?

Thanks

Is your saslauthd daemon active ?

ps -ef |grep sasl

Did you first check that sasl is working ?

testsaslauthd -u username -p userpassword

Patrick

In article <drvlf3$6kv$1 [at] news.grenet.fr>,
Patrick Begou <Patrick.Begou [at] hmg.inpg.fr> wrote:

> Is your saslauthd daemon active ?
>
> ps -ef |grep sasl
>
> Did you first check that sasl is working ?
>
> testsaslauthd -u username -p userpassword
>
> Patrick

Apparently saslauthd has never built on my system! It seems to break in
saslauthd with an error about the shadow libs, even though I said
--without-shadow. I'll try to chase that down.

Thanks.