summaryrefslogtreecommitdiff
path: root/conf.d
diff options
context:
space:
mode:
authorpacien2018-09-12 23:58:06 +0200
committerpacien2018-09-12 23:58:06 +0200
commit1b2ad5db7b4ed518bd732d2ae35cd552354ec1aa (patch)
tree720f36061bedfdd1a705e2053a81c187b4199a5b /conf.d
parent1ace64ebd0b6ad6fce1ef9cdb7ffbaf4e5a481e0 (diff)
downloadexim-1b2ad5db7b4ed518bd732d2ae35cd552354ec1aa.tar.gz
Fallback on PAM if no USERLIST
Diffstat (limited to 'conf.d')
-rw-r--r--conf.d/070_authenticators.conf8
1 files changed, 7 insertions, 1 deletions
diff --git a/conf.d/070_authenticators.conf b/conf.d/070_authenticators.conf
index adc08c2..93a6ce2 100644
--- a/conf.d/070_authenticators.conf
+++ b/conf.d/070_authenticators.conf
@@ -19,6 +19,12 @@
19 19
20begin authenticators 20begin authenticators
21 21
22.ifdef USERLIST
23AUTH_CHECK = ${if crypteq{$auth3}{${lookup{$auth2}lsearch{USERLIST}}} {yes}{no}}
24.else
25AUTH_CHECK = ${if pam{$auth2:${sg{$auth3}{:}{::}}} {yes}{no}}
26.endif
27
22# PLAIN authentication has no server prompts. The client sends its 28# PLAIN authentication has no server prompts. The client sends its
23# credentials in one lump, containing an authorization ID (which we do not 29# credentials in one lump, containing an authorization ID (which we do not
24# use), an authentication ID, and a password. The latter two appear as 30# use), an authentication ID, and a password. The latter two appear as
@@ -32,7 +38,7 @@ PLAIN:
32 public_name = PLAIN 38 public_name = PLAIN
33 server_prompts = : 39 server_prompts = :
34 server_set_id = $auth2 40 server_set_id = $auth2
35 server_condition = ${if crypteq{$auth3}{${lookup{$auth2}lsearch{USERLIST}}} {yes}{no}} 41 server_condition = AUTH_CHECK
36 server_advertise_condition = ${if ={587}{$interface_port} {yes}{no}} 42 server_advertise_condition = ${if ={587}{$interface_port} {yes}{no}}
37 43
38# LOGIN authentication has traditional prompts and responses. There is no 44# LOGIN authentication has traditional prompts and responses. There is no