False Username/Password problem

Discussion forum for Enterprise Edition.
Post Reply
privateland
Posts: 62
Joined: Tue May 13, 2014 8:40 pm

False Username/Password problem

Post by privateland »

Hi

Using Mailenable Enterprise 9.84.
I am experiencing difficulties with some users mailboxes (SMTP) when they attempt to connect using Outlook.
The usernames and passwords are correct but are reported on the logs as incorrect. Despite this, access to the mailbox is allowed and mails are sent OK.

The problem is that each "Invalid Username or Password" counts towards the number of attempts threshold and the accounts get blocked unless the IP addresses are whitelisted.

Is this known Outlook behaviour?
NB: The behaviour only manifests itself on some, not all accounts and mailboxes.

Log extract below if anyone has any ideas how to unravel this problem

Cheers
John


11/11/22 13:19:05 SMTP-IN 7CDD416C0E0143AF84306F7F6B0FC70E.MAI 1460 81.108.131.67 220 threethistles.co.uk ESMTP MailEnable Service, Version: 9.84--9.84 ready at 11/11/22 13:19:05 98 0
11/11/22 13:19:05 SMTP-IN 7CDD416C0E0143AF84306F7F6B0FC70E.MAI 1460 81.108.131.67 EHLO EHLO JohnStudio 250-meancity.co.uk [81.108.131.67], this server offers 6 extensions 283 17
11/11/22 13:19:05 SMTP-IN 7CDD416C0E0143AF84306F7F6B0FC70E.MAI 1460 81.108.131.67 AUTH AUTH NTLM 535 Invalid Username or Password 363 11 jcole@cole.scot
11/11/22 13:19:05 SMTP-IN 7CDD416C0E0143AF84306F7F6B0FC70E.MAI 1460 81.108.131.67 AUTH AUTH LOGIN 334 VXNlcm5hbWU6 18 12 jcole@cole.scot
11/11/22 13:19:05 SMTP-IN 7CDD416C0E0143AF84306F7F6B0FC70E.MAI 1460 81.108.131.67 AUTH {blank} 334 UGFzc3dvcmQ6 18 22 jcole@cole.scot
11/11/22 13:19:05 SMTP-IN 7CDD416C0E0143AF84306F7F6B0FC70E.MAI 1460 81.108.131.67 AUTH {blank} 235 Authenticated 19 18 jcole@cole.scot
11/11/22 13:19:05 SMTP-IN 7CDD416C0E0143AF84306F7F6B0FC70E.MAI 1460 81.108.131.67 MAIL MAIL FROM: <jcole@cole.scot> 250 Requested mail action okay, completed 43 30 jcole@cole.scot
11/11/22 13:19:05 SMTP-IN 7CDD416C0E0143AF84306F7F6B0FC70E.MAI 1460 81.108.131.67 RCPT RCPT TO: <jcole@cole.scot> 250 Requested mail action okay, completed 43 28 jcole@cole.scot
11/11/22 13:19:05 SMTP-IN 7CDD416C0E0143AF84306F7F6B0FC70E.MAI 1460 81.108.131.67 DATA DATA 354 Start mail input; end with <CRLF>.<CRLF> 46 6 jcole@cole.scot

privateland
Posts: 62
Joined: Tue May 13, 2014 8:40 pm

Re: False Username/Password problem

Post by privateland »

Problem appears only to be a problem if NTLM is enabled. I turned it off on the SMTP properties dialogue, but am now concerned that there may be security issues?

privateland
Posts: 62
Joined: Tue May 13, 2014 8:40 pm

Re: False Username/Password problem

Post by privateland »

Anyone?
Is the NTLM function no longer functioning?

Regads
John

privateland
Posts: 62
Joined: Tue May 13, 2014 8:40 pm

Re: False Username/Password problem

Post by privateland »

First of all a very Merry Christmas and Happy New Year to everyone here.

The critical element of this request is resolved via a workaround, so my need is an academic one at the minute.

If I enable NTLMv1 as a login option in SMTP, all users with automated mail fetch from Outlook clients, causes a failed NTLM login. Consequently, the client attempts Plain authorisation and connects successfully. However each failed NTLM attempt is a notch on the "lock out user" bedpost, and consequently the client machine/office/household is locked out of the server.

My workaround has been to disable NTLMv1at login, but it does seem a bit of a palaver. I believe Outlook uses a different version of NTLM, so I don't know if Mailenable or Outlook is at fault for allowing the login attempt to take place.

Any light to shed on this Mailenable guys?

Skandiacloud Hosting
Posts: 69
Joined: Fri Nov 15, 2019 9:03 pm

Re: False Username/Password problem

Post by Skandiacloud Hosting »

NTLM is a very old protocol.

On AD's its been surpassed by Kerberos.

Upgrade your version to at least 10.35 and disable NTLM.

Be done with CRAM-MD5.

privateland
Posts: 62
Joined: Tue May 13, 2014 8:40 pm

Re: False Username/Password problem

Post by privateland »

Appreciate that Skandiacloud Hosting.

Will take your advice

Cheers
John

Post Reply