Re: [Courier-imap] Log shows "couriertls: accept: error:140D9115..."

2008-04-09 Thread Ian Dawson 
> -- Forwarded message --
> From: Sam Varshavchik <[EMAIL PROTECTED]>
> To: courier-imap@lists.sourceforge.net
> Date: Mon, 07 Apr 2008 19:41:32 -0400
> Subject: Re: [Courier-imap] Log shows "couriertls: accept: error:140D9115..."
> Ian Dawson writes:
>
>
> > The Courier imap log is showing the following error :
> >
> > couriertls: accept: error:140D9115:SSL
> > routines:SSL_GET_PREV_SESSION:session id context uninitialized
> >
> > when a particular account (which is not different from any other
> > accounts on the server) tries to connect.  Other accounts using the
> > same TLS setting have no issues.  TLS Cachefile is set and available.
> >
> > Any ideas anyone?
> >
>
>  Can you try applying the following patch:
>
>  diff -U3 -r1.24 libcouriertls.c
>  --- tcpd/libcouriertls.c13 Mar 2008 01:28:33 -  1.24
>  +++ tcpd/libcouriertls.c7 Apr 2008 23:40:32 -
>  @@ -686,6 +686,8 @@
> fprintf(stderr, "INFO: TLSCACHE: session %s\n",
> wi.ret ? "found":"not found");
>  #endif
>  +   if (wi.ret)
>  +   SSL_set_session_id_context(ssl, id, id_len);
> return wi.ret;
>  }
>
Thanks Sam,

That seems to have solved the problem - can now see the borken account
and no more log messages.

Regards

Ian

-
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

Re: [Courier-imap] autmysqlrc - service feedback

2008-04-09 Thread Brian Candler 
On Sat, Apr 05, 2008 at 12:19:03AM +0200, Marco Kammerer wrote:
> # AAA not working
> #MYSQL_AUXOPTIONS_FIELD
> CONCAT("disableimap=",IF($(service)='imaps',disableimaps,disableimap),",disablepop3=",disablepop3,",disablewebmail=",disablewebmail)
...
> the thing is that mysql gets in the line AAA the -> $(service) not as
> variable (imap or imaps), because i see it in the mysql.log

According to the documentation in authmysqlrc, $(service) only expands
within MYSQL_SELECT_CLAUSE, not MYSQL_AUXOPTIONS_FIELD

Since MYSQL_SELECT_CLAUSE is a superset of all the other functionality, you
should be able to rewrite your requirements as one big MYSQL_SELECT_CLAUSE
instead of using the other individual settings.

-
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

[Courier-imap] Courier-Imap + Active Direcotry How To

2008-04-09 Thread Ryan Wycuff 
Courier Imap Working with Active Driectory .

 

LDAP_URI ldap://:3268

LDAP_PROTOCOL_VERSION   3

LDAP_BASEDNcn=Users,dc=domain,dc=tld

LDAP_BINDDN

LDAP_BINDPWSecret

LDAP_TIMEOUT 100

LDAP_AUTHBIND  1

LDAP_MAIL sAMAccountName

LDAP_GLOB_UID   vmail

LDAP_GLOB_GID   vmail

LDAP_HOMEDIRsAMAccountName

LDAP_MAILROOT /home/vmail

LDAP_MAILDIR mailbox

LDAP_DEFAULTDELIVERYdefaultDelivery

LDAP_FULLNAMEcn

LDAP_CRYPTPW   userPassword

LDAP_TLS   0

 

Make Sure to Generate Cert. Authority on AD System and set port to 3268 like
in the example above.

 

LDAP_BIND Must be set to the email of the user you want to authenticate
with.

 

LDAP_MAIL and LDAP_HOMEDIR must be set to sAMAccountName

 

AD uses userPassword for Password Field so use that for Crypt Password

 

In imapd-ssl 

 

These must be turned on

 

 

IMAPDSSLSTART=YES

IMAPDSTARTTLS=YES

 

 

Authdaemonrc,

 

authmodulelist="authldap"

authmodulelistorig="authldap"

 

these 2 lines must be set like this

 

Also may want to export the CA in windows and transfer to courier machine
and set its path in the imapd.config

 

 

 

 

 

-
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap

Re: [Courier-imap] autmysqlrc - service feedback

2008-04-09 Thread Marco Kammerer 

> "Brian Candler" <[EMAIL PROTECTED]> wrote on Wednesday, April 09, 2008
3:27 PM
>
> On Sat, Apr 05, 2008 at 12:19:03AM +0200, Marco Kammerer wrote:
> > # AAA not working
> > #MYSQL_AUXOPTIONS_FIELD
> >
CONCAT("disableimap=",IF($(service)='imaps',disableimaps,disableimap),",disa
blepop3=",disablepop3,",disablewebmail=",disablewebmail)
> ...
> > the thing is that mysql gets in the line AAA the -> $(service) not as
> > variable (imap or imaps), because i see it in the mysql.log
>
> According to the documentation in authmysqlrc, $(service) only expands
> within MYSQL_SELECT_CLAUSE, not MYSQL_AUXOPTIONS_FIELD
>
> Since MYSQL_SELECT_CLAUSE is a superset of all the other functionality,
you
> should be able to rewrite your requirements as one big MYSQL_SELECT_CLAUSE
> instead of using the other individual settings.
>
Thank you very much, Brian

Is there also a way to determine which IP Adress the Client has. I have now
answer found regarding this question in any howto or manual.

I want to get it working, that I can restrict imap access on a accounts
basis (via mysql) to ip addresses.

Marco


-
This SF.net email is sponsored by the 2008 JavaOne(SM) Conference 
Don't miss this year's exciting event. There's still time to save $100. 
Use priority code J8TL2D2. 
http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
___
Courier-imap mailing list
Courier-imap@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap