Sendmail trust_auth Not Authenticated error
Hi,
I am getting the following not authenticated error message from sendmail. I am using Ubuntu 18.04 Server Edition.
Sep 28 16:45:14 bmtplus sm-mta[19620]: x8SBFE09019620: <-- MAIL From:<jagriti@bmtplus.com> SIZE=384 BODY=7BIT AUTH=jagriti@bmtplus.com
Sep 28 16:45:14 bmtplus sm-mta[19620]: ruleset=trust_auth, arg1=jagriti@bmtplus.com, relay=localhost [127.0.0.1], reject=550 5.7.1 <jagriti@bmtplus.com>... not authenticated
I have added the following to /etc/mail/trusted-users, but does not seem to help. jagriti is a valid system user.
www-data
jagriti
root
The /etc/mail/local-host-names contain the following details/
localhost
bmtplus.com
localhost.localdomain
2 Replies
mjones
Linode Staff
It looks you're sending the email from one account on your Linode to another account on the same Linode, or back to the same account, is that correct? If so, then this blog post may have an answer. Try adding the following line to '/etc/mail/access':
SRV_Features:127.0.0.1 A
Then, rebuild 'access.db' with 'make' as usual. Alternatively, you could set up SMTP credentials for each user as needed.
Thank you @mjones.
I am not sending mails from one Linode account to another. It is possible that the mails would have got sent internally on failure.
Is the failure due to:
- "unable to get certificate CRL"
- "Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS=read, info: fds=8/7, err=2"
I have added one CRL file in the config. But that does not seem to work. Is there any way to resolve this.
Sendmail.mc letsencrypt settings with revoke.crl file
define(`CERT_DIR', `/etc/letsencrypt/live/bmtplus.com')dnl
define(`confCACERT_PATH', `/etc/ssl/certs')dnl
define(`confCACERT', `CERT_DIR/chain.pem')dnl
define(`confSERVER_CERT', `CERT_DIR/cert.pem')dnl
define(`confSERVER_KEY', `CERT_DIR/privkey.pem')dnl
define(`confCLIENT_CERT', `CERT_DIR/cert.pem')dnl
define(`confCLIENT_KEY', `CERT_DIR/privkey.pem')dnl
define(`confCRL', `/usr/share/ssl-cert/revoke.crl')dnl
define(`confDONT_BLAME_SENDMAIL',`GroupReadableKeyFile')dnl
Debug message when sending mail.
Sep 30 12:17:56 bmtplus sm-mta[10015]: x8U6lupU010015: from=<updates@bmtplus.com>, size=818, class=0, nrcpts=1, msgid=<201909300647.x8U6luBM010014@bmtplus.com>, proto=ESMTPS, daemon=MTA-v4, relay=localhost [127.0.0.1]
Sep 30 12:17:56 bmtplus sm-mta[10015]: x8U6lupU010015: milter=opendkim, action=header, continue
Sep 30 12:17:56 bmtplus sm-mta[10015]: message repeated 11 times: [ x8U6lupU010015: milter=opendkim, action=header, continue]
Sep 30 12:17:56 bmtplus sm-mta[10015]: x8U6lupU010015: milter=opendkim, action=eoh, continue
Sep 30 12:17:56 bmtplus sm-mta[10015]: x8U6lupU010015: milter=opendkim, action=body, continue
Sep 30 12:17:56 bmtplus sm-mta[10015]: x8U6lupU010015: Milter insert (1): header: DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=bmtplus.com;\n\ts=default; t=1569826076;\n\tbh=pqrorGFMwxjaRC99mstMSec5aH7ME+XLIUr5g1KHxdk=;\n\th=Date:To:Subject:From:From;\n\tb=Hmy5Un76u6P8vhqVAmxsQi+b34RLahviPcUZ5Ra9gFawBXq3U3IKrn8c+UjY7vts+\n\t UgDwb6GbE9Zrt2D+8CIlqPRhP9puB9A5b/Xgae7UB7AFirFlyvSPCV2UiOmAjkyIwC\n\t 7q9yNzizHXgRNSWVz4C0jZQzV7z/mw/gobRswPsU0X3xizR0nxQgmv38sLZn/084dy\n\t tLYlGk3iPDOpmWquvF1bNSgmJZEK53r6s1tpnHLdIn9GB47RrdzBBzZD+fkyADl4nZ\n\t N0fVgnr8UP2bQcvKgfVRfycjEdDsJOgrSODgxFEAQi2UmhWI9mF9VVkgQ7G1hv69sL\n\t 4rpfeNz8TOOAw==
Sep 30 12:17:56 bmtplus sm-mta[10015]: x8U6lupU010015: Milter accept: message
Sep 30 12:17:56 bmtplus sm-mta[10015]: x8U6lupU010015: --- 250 2.0.0 x8U6lupU010015 Message accepted for delivery
Sep 30 12:17:56 bmtplus sm-mta[10015]: STARTTLS=read, info: fds=8/4, err=2
Sep 30 12:17:56 bmtplus sendmail[10014]: x8U6luBM010014: to=sankalp.admin@gmail.com, delay=00:00:00, xdelay=00:00:00, mailer=relay, pri=30543, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (x8U6lupU010015 Message accepted for delivery)
Sep 30 12:17:56 bmtplus sm-mta[10015]: x8U6lupV010015: <-- QUIT
Sep 30 12:17:56 bmtplus sm-mta[10015]: x8U6lupV010015: --- 221 2.0.0 bmtplus.com closing connection
Sep 30 12:17:56 bmtplus sm-mta[10027]: x8U6lupU010015: SMTP outgoing connect on bmtplus.com
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS=client, init=1
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS=client, start=ok
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS=client, info: fds=8/7, err=2
Sep 30 12:17:57 bmtplus sm-mta[10027]: STARTTLS=client, init=1
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS: x509 cert verify: depth=0 /C=US/ST=California/L=Mountain View/O=Google LLC/CN=mx.google.com, state=0, reason=unable to get certificate CRL
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS: x509 cert verify: depth=1 /C=US/O=Google Trust Services/CN=GTS CA 1O1, state=0, reason=unable to get certificate CRL
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS: x509 cert verify: depth=2 /OU=GlobalSign Root CA - R2/O=GlobalSign/CN=GlobalSign, state=0, reason=unable to get certificate CRL
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS=client, get_verify: 0 get_peer: 0x55b0e43168a0
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS=client, relay=aspmx.l.google.com., version=TLSv1.3, verify=OK, cipher=TLS_AES_256_GCM_SHA384, bits=256/256
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS=client, cert-subject=/C=US/ST=California/L=Mountain+20View/O=Google+20LLC/CN=mx.google.com, cert-issuer=/C=US/O=Google+20Trust+20Services/CN=GTS+20CA+201O1, verifymsg=ok
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS=read, info: fds=8/7, err=2
Sep 30 12:17:57 bmtplus sm-mta[10027]: STARTTLS=client, start=ok
Sep 30 12:17:57 bmtplus sm-mta[10027]: STARTTLS=client, info: fds=8/7, err=2
Sep 30 12:17:57 bmtplus sm-mta[10027]: STARTTLS: x509 cert verify: depth=0 /C=US/ST=California/L=Mountain View/O=Google LLC/CN=mx.google.com, state=0, reason=unable to get certificate CRL
Sep 30 12:17:57 bmtplus sm-mta[10027]: STARTTLS: x509 cert verify: depth=1 /C=US/O=Google Trust Services/CN=GTS CA 1O1, state=0, reason=unable to get certificate CRL
Sep 30 12:17:57 bmtplus sm-mta[10027]: STARTTLS: x509 cert verify: depth=2 /OU=GlobalSign Root CA - R2/O=GlobalSign/CN=GlobalSign, state=0, reason=unable to get certificate CRL
Sep 30 12:17:57 bmtplus sm-mta[10027]: STARTTLS=client, get_verify: 0 get_peer: 0x55b0e4316170
Sep 30 12:17:57 bmtplus sm-mta[10027]: STARTTLS=client, relay=gmail-smtp-in.l.google.com., version=TLSv1.3, verify=OK, cipher=TLS_AES_256_GCM_SHA384, bits=256/256
Sep 30 12:17:57 bmtplus sm-mta[10027]: STARTTLS=client, cert-subject=/C=US/ST=California/L=Mountain+20View/O=Google+20LLC/CN=mx.google.com, cert-issuer=/C=US/O=Google+20Trust+20Services/CN=GTS+20CA+201O1, verifymsg=ok
Sep 30 12:17:57 bmtplus sm-mta[10027]: STARTTLS=read, info: fds=8/7, err=2
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS=read, info: fds=8/7, err=2
Sep 30 12:17:57 bmtplus sm-mta[10012]: STARTTLS=read, info: fds=8/7, err=2
Sep 30 12:17:57 bmtplus sm-mta[10027]: STARTTLS=read, info: fds=8/7, err=2
Sep 30 12:17:58 bmtplus sm-mta[10027]: STARTTLS=read, info: fds=8/7, err=2
Sep 30 12:17:58 bmtplus sm-mta[10012]: STARTTLS=read, info: fds=8/7, err=2
Sep 30 12:17:58 bmtplus sm-mta[10012]: STARTTLS=read, info: fds=8/7, err=2
Sep 30 12:17:58 bmtplus sm-mta[10027]: STARTTLS=read, info: fds=8/7, err=2
Sep 30 12:17:58 bmtplus sm-mta[10027]: STARTTLS=read, info: fds=8/7, err=2
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6luAH010010: to=<amitsedai@jagriti.co.in>, delay=00:00:02, xdelay=00:00:02, mailer=esmtp, pri=120822, relay=aspmx.l.google.com. [IPv6:2404:6800:4003:c03:0:0:0:1b], dsn=5.0.0, stat=Service unavailable
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6luAH010010: to=<updates@bmtplus.com>, delay=00:00:02, mailer=local, pri=120822, dsn=5.1.1, stat=User unknown
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6luAH010010: to=postmaster, delay=00:00:02, mailer=local, pri=120822, dsn=5.1.1, stat=User unknown
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6luAH010010: x8U6lwAG010012: postmaster notify: User unknown
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6lwAG010012: to=MAILER-DAEMON, delay=00:00:00, mailer=local, pri=0, dsn=5.1.1, stat=User unknown
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6lwAG010012: to=postmaster, delay=00:00:00, mailer=local, pri=0, dsn=5.1.1, stat=User unknown
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6lwAG010012: x8U6lwAH010012: return to sender: User unknown
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6lwAH010012: to=MAILER-DAEMON, delay=00:00:00, mailer=local, pri=0, dsn=5.1.1, stat=User unknown
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6lwAH010012: done; delay=00:00:00, ntries=1
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6lwAG010012: Saved message in /var/lib/sendmail/dead.letter
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6lwAG010012: done; delay=00:00:00, ntries=1
Sep 30 12:17:58 bmtplus sm-mta[10012]: x8U6luAH010010: done; delay=00:00:02, ntries=1
Sep 30 12:17:58 bmtplus sm-mta[10027]: x8U6lupU010015: to=<sankalp.admin@gmail.com>, delay=00:00:02, xdelay=00:00:02, mailer=esmtp, pri=120818, relay=gmail-smtp-in.l.google.com. [IPv6:2404:6800:4003:c03:0:0:0:1b], dsn=5.0.0, stat=Service unavailable
Sep 30 12:17:58 bmtplus sm-mta[10027]: x8U6lupU010015: to=<updates@bmtplus.com>, delay=00:00:02, mailer=local, pri=120818, dsn=5.1.1, stat=User unknown
Sep 30 12:17:58 bmtplus sm-mta[10027]: x8U6lupU010015: to=postmaster, delay=00:00:02, mailer=local, pri=120818, dsn=5.1.1, stat=User unknown
Sep 30 12:17:58 bmtplus sm-mta[10027]: x8U6lupU010015: x8U6lwpT010027: postmaster notify: User unknown
Sep 30 12:17:58 bmtplus sm-mta[10027]: x8U6lwpT010027: to=MAILER-DAEMON, delay=00:00:00, mailer=local, pri=0, dsn=5.1.1, stat=User unknown
Sep 30 12:17:58 bmtplus sm-mta[10027]: x8U6lwpT010027: to=postmaster, delay=00:00:00, mailer=local, pri=0, dsn=5.1.1, stat=User unknown
Sep 30 12:17:58 bmtplus sm-mta[10027]: x8U6lwpT010027: x8U6lwpU010027: return to sender: User unknown
Sep 30 12:17:58 bmtplus sm-mta[10027]: x8U6lwpU010027: to=MAILER-DAEMON, delay=00:00:00, mailer=local, pri=0, dsn=5.1.1, stat=User unknown
Sep 30 12:17:58 bmtplus sm-mta[10027]: x8U6lwpU010027: done; delay=00:00:00, ntries=1
Sep 30 12:17:58 bmtplus sm-mta[10027]: x8U6lwpT010027: Saved message in /var/lib/sendmail/dead.letter