• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 725
  • Last Modified:

Where to get a version of sendmail for AIX7 that was compiled with SASL, and does AUTH

I have been unsuccessful at locating a "ready to run" version of sendmail compiled with SASL support. I need this to be able to offer AUTH authentication. Does anyone know where to obtain such.

I have already installed the SASL libraries and tried unsuccessfully to compile a new sendmail. There seems to be no end to the errors that occur, when trying to compile and build a new sendmail.

If anyone has any other suggestions, I am open to most anything at this point.
0
carlmd
Asked:
carlmd
  • 10
  • 7
  • 4
  • +1
3 Solutions
 
Trenton KnewOwner / Computer WhispererCommented:
what I did at my company was configured a postfix mail relay server on an old spare computer, (you can also build it in a virtual machine).  It's basically an Ubuntu server with Postfix set up in a relay configuration.  Postfix should probably support the protocols you need, and you can set it up to only relay mail from your AIX box.  If configured correctly, AIX sends email to the postfix's server's SMTP server on port 25, and won't even need to authenticate.  Postfix can then connect to the mail server using the authentication protocols you need and forward the message.  

We also needed to do this because we were on Office365 and needed TLS encryption and some other protocols that sendmail and some of our copiers didn't support.  This configuration has been working for me for a year now with very little incident.
0
 
Jan SpringerCommented:
sendmail with sasl works great.

can you post your sendmail.mc file?
0
 
gheistCommented:
AIX sendmail has all features. Just check around m4 templates.
0
Cloud Class® Course: Microsoft Exchange Server

The MCTS: Microsoft Exchange Server 2010 certification validates your skills in supporting the maintenance and administration of the Exchange servers in an enterprise environment. Learn everything you need to know with this course.

 
carlmdAuthor Commented:
The version of sendmail that comes with AIX does not have SASL support.

Version AIX7.1/8.14.4
 Compiled with: DNSMAP LDAPMAP LDAP_REFERRALS LOG MAP_REGEX MATCHGECOS
                MILTER MIME7TO8 MIME8TO7 NAMED_BIND NDBM NETINET NETINET6
                NETUNIX NEWDB NIS NISPLUS PIPELINING SCANF USERDB USE_LDAP_INIT
                USE_TTYPATH XDEBUG

If it did, is would show SASL in this list.

From my research, IBM did not deliver a version with this enabled due to export restrictions. You are supposed to recompile and load a new version of Sendmail that includes SASL support to get it.

As I indicated above, I have installed the SASL libraries but cannot seem to successfully compile sendmail with this.

My understanding is that until you do that, the mc file and m4 won't make any difference because the support is not there.
0
 
gheistCommented:
Install a small linux box. AIX is not flexible when you swap /usr/lib/sendmail
0
 
carlmdAuthor Commented:
Don't have the choice to install a Linux box. I have several AIX systems, and need to find a solution on that platform.

Also, regarding Postfix, no version available that will run on AIX7. So cannot try that.
0
 
gheistCommented:
So you have no choice. Use plaintext password authentication or IP-based access lists, Whichever hurts less.
0
 
Jan SpringerCommented:
Are you interested in compiling from source?
0
 
gheistCommented:
0
 
carlmdAuthor Commented:
Jan...   I have been trying to compile from source on AIX but have not been successful. Error after error...
0
 
Jan SpringerCommented:
Ugh.  That's ugly.  IBM doesn't appear to support SASL and doesn't have either the libraries or headers to compile from source which leaves you with no encryption options.
0
 
Trenton KnewOwner / Computer WhispererCommented:
@carlmd... what's the reason you can't spin up a linux/postfix box?  you don't have the hardware available for it?  This is  not a bad solution.  All it does is relay mail on behalf of your AIX boxes.  It's fairly easy to set up too.

I wasn't suggesting compiling or installing postfix directly on AIX.
0
 
Jan SpringerCommented:
or even better:  linux+sendmail+sasl
0
 
gheistCommented:
postfix or exim will be faster... dont try qmail at home....
my exim no sasl, so disregard it.
http://www.bullfreeware.com/affichage.php?id=280

AIX is more or less brought ot instrumentation level of old RHEL for RPM.
One way to compile would be getting centos sendmail source RPM and heap of its dependencies and build sendmail with sasl.
Interested to try?
0
 
carlmdAuthor Commented:
gheist: I already have the source for sendmail-8.14.9 and that is what I have been using in trying build sendmail with sasl on AIX7.

If your idea is different then that, I would be willing to give it a try.
0
 
gheistCommented:
My idea is to get rpmbuild running and compile sources of redhat(centos) source RPMs (They support PPC, so odds are high in the end it will compile fine and make you a nice set of RPMs to install on system.
0
 
carlmdAuthor Commented:
Just to be clear...

To start, you want me to download and install the rpm-build package on my AIX7 system, correct?

then what...
0
 
gheistCommented:
Yessir....
and install CentOS 5 and add yum-utils to comfortably download missing RPMs...
First is easy...
EL5# yumdownloader --resolve --source sendmail sendmail-cf
0
 
carlmdAuthor Commented:
I can't install CentOS, all I have to work with are AIX7 systems.
0
 
gheistCommented:
OK, browse centos mirror with lynx or wget, probably w3m is easier, just that having configured CentOS (in a desktop VM) is somewhat faster to download package and requirements...

build should be done as unprivileged user

mkdir SOURCES SPECS
rpm2cpio whatever.src.rpm | pax -r
now move all sources/patches to SOURCES/ and spec file(s) to SPECS
run rpmbuild -ba SPECS/sendmail.spec

it says what is missing to build (sasl-devel etc)
Go build that.
rinse, repeat until success.
0
 
Trenton KnewOwner / Computer WhispererCommented:
from my understanding. AIX is UNIX/BSD based, not linux.  have you actually installed centos packages on it before?
0
 
gheistCommented:
No, but i build RPMs without any problem (though not ones competing with AIX default services)

AIX has nothing to do with BSD. It is offshoot of ATT UNIX, but network stack is based on Mentat Streams, not BSD stack.
0
 
carlmdAuthor Commented:
No real answer here, points awarded for effort.

Thanks..
0
 
gheistCommented:
The real answer is that IBM does not want you to change sendmail
Once you get working sendmail of centos/rhel sources you can wipe out sendmail BFF and install your homebrew RPM with all features needed.
It sounds and is complicated and time-consuming.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 10
  • 7
  • 4
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now