qmail-smtpd, as compiled and installed by qmail ebuild 1.03-r13, always boasts AUTH capability, even when a password checking program has not been defined (that is, QMAIL_SMTP_POST and/or QMAIL_SMTP_CHECKPASSWORD have not been set to anything in /var/qmail/control/conf-smtpd). This can lead to the following SMTP session: > 220 tollymac.zoo ESMTP < ehlo localhost > 250-tollymac.zoo > 250-AUTH LOGIN CRAM-MD5 PLAIN > 250-AUTH=LOGIN CRAM-MD5 PLAIN > 250-STARTTLS > 250-SIZE 0 > 250-PIPELINING > 250 8BITMIME < auth login > 503 auth not available (#5.3.3) I would suggest a patch that checks the number of command-line arguments passed to qmail-smtpd, and removes the AUTH lines from the EHLO response if the number is less than 4. Reproducible: Always Steps to Reproduce: 1. Install and run qmail 1.03-r13 using the default configuration 2. Launch an SMTP session. 3. Try to send along "AUTH LOGIN" or another AUTH command. Actual Results: qmail-smtpd responds that AUTH is not available, after stating AUTH was available in the EHLO response. Expected Results: qmail-smtpd should not boast AUTH capability unless the default configuration has been changed and a password checking program defined.
patched accepted as always. i responded to your other item re qmail uids as well.
It apears that this is breaking my auth, I emerged 1.03-r15 I cannot get it to auth at all, how do I undo this?
I am no longer running qmail on any of my systems, so I am unable to tell whether this issue still exists in the latest qmail ebuilds. This bug should either be closed or transferred to a new owner (if possible). Thanks.
I think that we can fix this with -r17.
hansmi: what's up on this one, should we just drop with WONTFIX?
Try mail-mta/netqmail. We won't add custom patches.
