Hi,

my ISP informed me that they will be using smtp auth soon, so I made the
necessary changes in my sendmail.mc:

TRUST_AUTH_MECH(`EXTERNAL DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
define(`confAUTH_MECHANISMS', `EXTERNAL GSSAPI DIGEST-MD5 CRAM-MD5 LOGIN
PLAIN')dnl
FEATURE(`authinfo',`hash /etc/mail/auth/client-info')dnl

The ISP suggests not to use TLS/SSL (no idea why), but seems to accept
STARTTLS, so the LOGIN and PLAIN methods are at least encrypted:

Aug 17 10:51:52 webbie sendmail[13782]: STARTTLS=client, relay=...,
version=TLSv1/SSLv3, verify=FAIL, cipher=DES-CBC3-SHA, bits=168/168


Now I have the problem, that local authentication does not work. I get
this error with the new sendmail.cf:

Aug 17 11:05:45 webbie sendmail[13858]: k7H95hHn013857: AUTH=client,
available mechanisms do not fulfill requirements
Aug 17 11:05:45 webbie sendmail[13858]: AUTH=client, relay=localhost,
temporary failure, connection abort
Aug 17 11:05:45 webbie sendmail[13858]: k7H95hHn013857: to=posting3,
delay=00:00:02, xdelay=00:00:00, mailer=cyrusv2, pri=162089,
relay=localhost, dsn=4.7.1, stat=Deferred: Temporary AUTH failure


Since on my mail-gw sendmail passes any incoming mail on to cyrus-imap,
I don't need this type of authentication and would like to use it only
for sending mail to my ISP's relay.

MAILER(smtp)dnl
MAILER(procmail)dnl
MAILER(local)dnl
MAILER(cyrusv2)dnl
define(`CYRUSV2_MAILER_FLAGS',`A5@W')dnl
define(`CYRUSV2_LMTP_SOCKET',`/var/lib/imap/socket/lmtp')dnl
define(`confLOCAL_MAILER',`cyrusv2')dnl
dnl LOCAL_RULE_0
dnl R$=N $: $#local $: $1
dnl R$=N < @ $=w . > $: $#local $: $1
dnl Rbb + $+ < @ $=w . > $#cyrusbb $: $1


Is there any way to configure that? Can I disable AUTH for local mail
delivery? Do I need to enable some AUTH-METHODS (PLAIN and LOGIN) for
local delivery (and sasl)?

Uwe