Mark, Try substituting --with-pam for --with-passwd_method=PAM when configuring sasl.
Also try removing: pwcheck_method: PAM from your /etc/imapd.conf . You should only require: sasl_pwcheck_method: pam Mark Davis wrote: >Hi all... > >I want to authenticate the users via a mysql-db. So i compiled pam_mysql and >made the files pop3/imap in the /etc/pam.d/ directory. > >I read all the mailings about pam / mysql... But i still have problems to get >the thing to work... > >I always get the following message in /var/log/messages or /var/log/auth.log: > >Oct 10 15:33:24 mail imapd[10949]: unrecognized plaintext verifier PAM > >It seems, that sasl doesnt know what PAM is ?! > >I compiled sasl with: >$ ./configure \ > --prefix=/usr \ > --with-passwd_method=PAM > >and the result auf the configure-script looks as PAM should work (see below). > >sasldb works fine... Any ideas ? All my configuration files are listed below. > >Greets >Mark Davis > >$ ldd /usr/local/imapd/bin/imapd > libsasl.so.7 => /usr/local/lib/libsasl.so.7 (0x40017000) > libssl.so.0.9.6 => /usr/lib/libssl.so.0.9.6 (0x40026000) > libcrypto.so.0.9.6 => /usr/lib/libcrypto.so.0.9.6 (0x40054000) > libdb-3.3.so => /usr/lib/libdb-3.3.so (0x40115000) > libresolv.so.2 => /lib/libresolv.so.2 (0x40196000) > libnsl.so.1 => /lib/libnsl.so.1 (0x401a8000) > libc.so.6 => /lib/libc.so.6 (0x401be000) > libdl.so.2 => /lib/libdl.so.2 (0x402db000) > libcrypt.so.1 => /lib/libcrypt.so.1 (0x402df000) > /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000) > > >$ more /usr/local/sasl/cyrus.conf >pwcheck_method: PAM > > >$ more /etc/imapd.conf: >configdirectory: /var/imap >partition-default: /var/spool/imap >admins: root cyrus >sasl_pwcheck_method: PAM >srvtab: /var/imap/srvtab >allowanonymouslogin: no >pwcheck_method: PAM >allowplaintext: yes > > >$ ./configure --prefix=/usr --with-passwd_method=PAM >... >checking for syslog... yes >checking for crypt... no >checking for crypt in -lcrypt... yes >checking for connect... yes >checking for pam_start in -lpam... yes >checking for security/pam_appl.h... yes >checking PAM support... yes >checking CRAM-MD5... enabled >checking SCRAM-MD5... disabled >checking for des_pcbc_encrypt in -ldes... no >checking for RSAPublicEncrypt in -lrsaref... no >checking for des_pcbc_encrypt in -lcrypto... yes >checking for openssl/des.h... yes >checking DIGEST-MD5... enabled >checking for res_search in -lresolv... yes >checking for krb.h... no >configure: warning: No Kerberos V4 found >checking KERBEROS_V4... disabled >checking for gssapi.h... no >checking for gssapi/gssapi.h... no >configure: warning: Disabling GSSAPI >checking GSSAPI... disabled >checking ANONYMOUS... enabled >checking PLAIN... enabled >checking LOGIN... disabled >checking SRP... disabled >checking X509... disabled > > >$more /etc/pam.d/imap (or pop3) >#%PAM-1.0 >auth optional /lib/security/pam_mysql.so user=test passwd=word >host=localhost table=user db=mail crypt=2 >password required /lib/security/pam_mysql.so user=test passwd=word >host=localhost table=user db=mail crypt=2 >
