Article <uvq3uv$gvm$1@tncsrv09.home.tnetconsulting.net>

Warning: mysqli::__construct(): (HY000/1203): User howardkn already has more than 'max_user_connections' active connections in D:\Inetpub\vhosts\howardknight.net\al.howardknight.net\includes\artfuncs.php on line 21
Failed to connect to MySQL: (1203) User howardkn already has more than 'max_user_connections' active connections
Warning: mysqli::query(): Couldn't fetch mysqli in D:\Inetpub\vhosts\howardknight.net\al.howardknight.net\index.php on line 66
Article <uvq3uv$gvm$1@tncsrv09.home.tnetconsulting.net>

Deutsch English Français Italiano

<uvq3uv$gvm$1@tncsrv09.home.tnetconsulting.net>

View for Bookmarking (what is this?)
Look up another Usenet article

Path: ...!news.misty.com!weretis.net!feeder6.news.weretis.net!tncsrv06.tnetconsulting.net!tncsrv09.home.tnetconsulting.net!.POSTED.omega.home.tnetconsulting.net!not-for-mail
From: Grant Taylor <gtaylor@tnetconsulting.net>
Newsgroups: comp.mail.sendmail
Subject: Re: Sendmail on FreeBSD 14, gmail problem
Date: Wed, 17 Apr 2024 22:27:27 -0500
Organization: TNet Consulting
Message-ID: <uvq3uv$gvm$1@tncsrv09.home.tnetconsulting.net>
References: <uvjlje$csmt$1@dont-email.me> <uvl7an$qcb5$2@dont-email.me>
 <uvncb2$1cfpj$1@dont-email.me> <uvndqu$2t37$2@gal.iecc.com>
 <uvptjv$1t6l3$1@dont-email.me>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Thu, 18 Apr 2024 03:27:27 -0000 (UTC)
Injection-Info: tncsrv09.home.tnetconsulting.net; posting-host="omega.home.tnetconsulting.net:198.18.1.140";
	logging-data="17398"; mail-complaints-to="newsmaster@tnetconsulting.net"
User-Agent: Mozilla Thunderbird
Content-Language: en-US
In-Reply-To: <uvptjv$1t6l3$1@dont-email.me>
Bytes: 3076
Lines: 50

On 4/17/24 20:39, bp@www.zefox.net wrote:
> Pulling the conversation back to sendmail, if I get apache24 to accept 
> and work with https connections have I laid a reasonable foundation 
> to let sendmail authenticate with gmail?

While both Apache and Sendmail use the same underlying TLS libraries; 
oft OpenSSL, sometimes an alternative, what they do with it and how they 
make use of them are separate.

About the only thing that Apache will bring to the email party is 
infrastructure to host the policy file for MTA-STS.

You can use the same certificate file and key for both Apache and Sendmail.

"authenticate with gmail" means a couple of different things to me in 2924:

1)  Requirements for senders to be /authenticated/; e.g. SPF and / or DKIM.
2)  OAuth 2.0 authentication to send relay email to the world via Gmail. 
  Read: use Gmail as a smart host in Sendmail parlance.

Which of these are you asking about?

1.SPF is easy to do with TXT records in DNS.

1.DKIM is a bit more complicated and requires a milter to sign outgoing 
messages as well as various DNS records to support DKIM.

2 is another critter entirely.  I am not aware of a recipe to make this 
work.  I feel certain that there is on and I'm just unaware of it.  I 
can see some plumbing to create a new mailer that does the OAuth w/ 
Gmail and sends messages.  I know how to add mailers to Sendmail, but I 
have no idea what such a mailer would look like.

I've heard about people using -- what I think -- are called application 
passwords with Gmail to make non-OAuth aware software work with Gmail. 
Maybe this will work allow Sendmail to use Gmail as a smart host using 
authentication using the App Password.

I've read that app passwords are still a thing but require multi-factor 
to be enabled to get access to them.

I could also be a decade behind the times when it comes to OAuth.

> Thanks for writing!

:-)

-- 
Grant. . . .