search

alexander-naumov / pam-accesscontrol

PAM management system to control access to host
GNU General Public License v3.0
3 stars 2 forks source link

SMTP #12

Closed FollowMeDown closed 5 years ago

FollowMeDown commented 5 years ago

# TEST NEW SMTP FUNC

PRECONFIG:

* debian 9.7 (minimal server install) : just 120 pkg - without X11
$ wget -nv https://download.opensuse.org/repositories/home:Alexander_Naumov: 
pam-accesscontrol/Debian_9.0/Release.key -O Release.key
$ apt-key add - < Release.key
$ apt-get update
$ echo 'deb http://download.opensuse.org/repositories/home:/Alexander_Naumov:
/pam-accesscontrol/Debian_9.0/ /' > 
/etc/apt/sources.list.d/home:Alexander_Naumov:pam-accesscontrol.list
$ apt install pam-accesscontrol
$ cd /tmp
$ git@github.com:alexander-naumov/pam-accesscontrol.git

update with upstream

$ apt install mailutils
$ apt install postfix

type: local only name: debian.fritz.box

$ systemctl restart postfix
$ CHECK: echo "TEST MAIL" | mail -s "Subject" root@localhost
$ vim pam-accessconfig.conf

SERVER:127.0.0.1 SSHD deface@posteo.de,deface@localhost,root@localhost,root@debian.fritz.box


RESULT:
FollowMeDown commented 5 years ago

FYI

alexander-naumov commented 5 years ago

Well, the idea was to send notification mail only if someone logged in via specified PAM service.

In other words: If you have CLOSE option and can't login, you have to receive no mail. If you have OPEN option and type wrong password you also will have no mail.

That means that only "mail exter" looks like a bug for me. But the question is here how is configured DNS in your environment. Can you send "exter" mail in console by using mailx(1) like you showed in your test case?

FollowMeDown commented 5 years ago

ok. In process ..

FollowMeDown commented 5 years ago

Hi,

According info below its working correctly! Many thx for your strong support.

P.S. Its will take me a lot of time to check new feature pam-accesscontrol.