Description of problem:
The spec file correctly handles separately building postfix with SASL 1 or
However, when building with SASL 2, it doesn't take into account that cyrus-
sasl packages in RHL provide both SASL version 1 and version 2 libraries and
SASL 1 headers are installed in /usr/include.
SASL 2 headers are in /usr/include/sasl.
Therefore, when building with SASL 2, the spec must take care to add '-
I/usr/include/sasl' to the CCARGS environment variable prior to compiling
Otherwise postfix will start failing as soon as SASL is called by any
component of the system, with the error message:
fatal: SASL per-connection security setup
To trigger this, add for example 'smtpd_sasl_auth_enable = yes'
to /etc/postfix/main.cf and issue `service postfix reload'. Every new
connection to the smtp service will fail and produce this error msg.
I'm attaching a diff between the spec in the rawhide package and my own. It
has further customizations/improvements, including a fix for this problem.
Version-Release number of selected component (if applicable):
Created attachment 90935 [details]
differences between postfix-2.0.6-2 spec and my 2.0.7-4 spec
Thank you for your fixes. Your modified spec file references new files and/or
patches, could you please attach those as well? In particular the sasl2 config
file, the other new files would be helpful as well. Thank you.
Oh yes I'm sorry, I didn't think about that.
Please note, all of these patches are taken from Simon J. Mudd's current
postfix srpm package.
The only other file is my own postfix-smtpd-sasl2.conf, which is just like
postfix-smtpd.conf, but adjusted to defaults suitable for use with SASL 2. A
simple hack :)
Created attachment 90972 [details]
Adds the log_recipient option for directives in main.cf
Created attachment 90973 [details]
Simon J. Mudd's classic patch, allows the smtpd greeting banner to span over multiple lines
Created attachment 90974 [details]
Adds support for writing full select statements in mysql maps
Created attachment 90975 [details]
Generic smtpd.conf for use with SASL 2 only
I've fixed the sasl include directory (in postfix-2.0.11).