Re: pop3d unstable

2002-10-29 Thread Eugene Chow 
Stephen Carr wrote:


Dear Eugene

Could I ask if a pop3d process is left "running"?


Sorry... I don't get what you mean by "left running".

If master is killed, the processes that it spawned will still remain and 
will not die immediately until after a predefined period of time passes 
without any activity. That's what I observed; at least in my experience. 
So if I have to restart master for some perculiar reason, I'll kill off 
all the other processes it spawned rather than wait for it to timeout 
and die a natural death.

Hope I answered your question.

I had a similar problem using cyrus-imap 2.0.16 on Solaris 2.5 and by 
changing the following at the bottom of service.h in the master  directory the 
problem vanished.
 

Never used 2.0.16 before. So I can't comment on it.


enum {
   MAX_USE = 1,
   REUSE_TIMEOUT = 10
};

What happens is a new pop3d process id launched for each pop3 
connection.

Regards
Stephen Carr

Re: pop3d unstable

2002-10-29 Thread Stephen Carr 
Dear Eugene

Could I ask if a pop3d process is left "running"?

I had a similar problem using cyrus-imap 2.0.16 on Solaris 2.5 and by 
changing the following at the bottom of service.h in the master  directory the 
problem vanished.

enum {
MAX_USE = 1,
REUSE_TIMEOUT = 10
};

What happens is a new pop3d process id launched for each pop3 
connection.

Regards
Stephen Carr
 

Date sent:  Wed, 30 Oct 2002 10:42:00 +0800
From:   Eugene Chow <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Copies to:  [EMAIL PROTECTED]
Subject:Re: pop3d unstable

> Do you have the line that starts pop3d in cyrus.conf? Check the 
> imapd/messages logs when you connect to the pop3 port to see if any 
> errors appear.
> 
> Also, try killing and restarting master. Don't forget to kill all the 
> processes that were started by master before restarting it.
> 
> -- 
>   << Eugene  Chow >>
> == xyrik at ==
>  -=ecentrenet dot kom=-
> 
> 
> Felix Cuello wrote:
> 
> >Hello,
> >
> >   i'm using cyrus-2.1.9 and sasl 2.1.9, and pop3d sometimes doesn't respond.
> >That means, when I do this:
> >
> >[root@sinclair tmp]# telnet localhost 110
> >Trying 127.0.0.1...
> >Connected to localhost.
> >Escape character is '^]'.
> >
> >pop3d does't respond...
> >
> >but
> >
> >[root@sinclair tmp]# telnet localhost 143
> >Trying 127.0.0.1...
> >Connected to localhost.
> >Escape character is '^]'.
> >* OK sinclair Cyrus IMAP4 v2.1.9 server ready
> >
> >quickly show me OK.
> >
> >---
> >
> >This problem only occurs into my production server, in fact in my desktop computer
> >all works fine... with exactly the same configuration and packages
> >
> >Do you know where can I start?
> >
> >Thanks a lot,
> >
> >Sorry for my poor english,
> >
> >Felix
> >___ http://www.palermo.edu _
> >
> 


-
Computing Officer
School of Civil and Environmental Engineering
The University of Adelaide
Adelaide, South Australia,
Australia 5005
Phone +618 8303-4313
Fax   +618 8303-4359
Email [EMAIL PROTECTED]

CRICOS Provider Code 00123M
---
This email message is intended only for the addressee(s)
and contains information which may be confidential and/or
copyright.  If you are not the intended recipient please
do not read, save, forward, disclose, or copy the contents
of this email. If this email has been sent to you in error,
please notify the sender by reply email and delete this
email and any copies or links to this email completely and
immediately from your system.  No representation is made
that this email is free of viruses.  Virus scanning is
recommended and is the responsibility of the recipient.

Re: pop3d unstable

2002-10-29 Thread Eugene Chow 
Do you have the line that starts pop3d in cyrus.conf? Check the 
imapd/messages logs when you connect to the pop3 port to see if any 
errors appear.

Also, try killing and restarting master. Don't forget to kill all the 
processes that were started by master before restarting it.

--
 << Eugene  Chow >>
   == xyrik at ==
-=ecentrenet dot kom=-


Felix Cuello wrote:

Hello,

  i'm using cyrus-2.1.9 and sasl 2.1.9, and pop3d sometimes doesn't respond.
That means, when I do this:

[root@sinclair tmp]# telnet localhost 110
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.

pop3d does't respond...

but

[root@sinclair tmp]# telnet localhost 143
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
* OK sinclair Cyrus IMAP4 v2.1.9 server ready

quickly show me OK.

---

This problem only occurs into my production server, in fact in my desktop computer
all works fine... with exactly the same configuration and packages

Do you know where can I start?

Thanks a lot,

Sorry for my poor english,

Felix
___ http://www.palermo.edu _

Re: sieve help

2002-10-29 Thread Mark Keasling 
Hi,

Here is what I did to get sieve to working on Solaris 8 with cyrus-imapd-2.1.9.
I don't think these actions are OS specific so I'm passing them along.

If you haven't already done so, check the documentation...
Man pages: imapd.conf(5), cyrus.conf(5), timsieved(8), master(8)
doc files: install-sieve.html, sieve-protocol.html, sieve.html

You need to have a sieve line in the /etc/cyrus.conf file's services section
something like:
-/etc/cyrus.conf-
<...>
SERVICES {
  <...>
  sieve cmd="timsieved" listen="sieve" prefork=0
  # this is only necessary if you are using notifications
  notifycmd="notifyd" listen="/var/imap/socket/notify" proto="udp" prefork=1
  <...>
}
<...>
-

In /etc/services add a line like the one below if one is not already there:
-/etc/services--
<...>
sieve   2000/tcp


There are some configuration parameters in the /etc/imapd.conf file that also
need to be set:
-/etc/imapd.conf-
<...>
##  I'm not using home directories to store scripts. So I comment out
# sieveusehomedir: yes
##  and set the location where scripts are stored.
sievedir: /var/imap/sieve
## the following is necessary to enable notifications (I think)
sievenotifier: null
sendmail: /usr/lib/sendmail
notifysocket: /var/imap/socket/notify
--

Restarting the master process should allow you to access the sieve server.

Test by attempting to telnet to the sieve server.  If you can connect, enter
"logout" to exit.  After this is successful, you can use sivtest or sieveshell
to fiddle around.  Sample session using cyrus-imapd-2.1.9 should look like:
$ telnet localhost sieve
T> Trying 192.168.0.1...
T> Connected to imap.example.com.
T> Escape character is '^]'.
S> "IMPLEMENTATION" "Cyrus timsieved v1.1.0"
S> "SASL" "PLAIN OTP LOGIN GSSAPI DIGEST-MD5 CRAM-MD5"
S> "SIEVE" "fileinto reject envelope vacation imapflags notify subaddress relational 
regex"
S> OK
C> logout
S> OK "Logout Complete"
T> Connection closed by foreign host.
$ sivtest -u user -a user -p 2000 imap.example.com
S: "IMPLEMENTATION" "Cyrus timsieved v1.1.0"
S: "SASL" "PLAIN OTP LOGIN GSSAPI DIGEST-MD5 CRAM-MD5"
S: "SIEVE" "fileinto reject envelope vacation imapflags notify subaddress relational 
regex"
S: OK
C: AUTHENTICATE "DIGEST-MD5"
S: {224}
S: <...b64data...>
Please enter your password: 
C: {340+}
<...b64data...>
S: OK (SASL "<..b64data...>")
S> Authenticated.
S> Security strength factor: 128
C> listscripts
S> "aaa"
S> "bbb"
S> "ccc" ACTIVE
S> OK
C> getscript "aaa"
S> {105}
S> require ["reject","fileinto"];
S> if address :is :all "From" "[EMAIL PROTECTED]"
S> {
S>   reject "testing";
S> }
S> 
S> OK
C> logout
S> OK "Logout Complete"
S> Connection closed.

Regards,
Mark Keasling <[EMAIL PROTECTED]>

Re: Reconstructing Mailboxes - HELP!

2002-10-29 Thread Joe Finkle 
Robert,
Just to confirm, I do not need to remove all of /var/imap, just /var/imap/db 
and /var/imap/mailboxes.db?

Thanks,
Lee


From: Robert Scussel <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: Joe Finkle <[EMAIL PROTECTED]>
CC: [EMAIL PROTECTED]
Subject: Re: Reconstructing Mailboxes - HELP!
Date: Tue, 29 Oct 2002 17:55:23 -0500

Just run :

	sudo -u cyrus /usr/cyrus/bin/ctl_mboxlist -d > filename

and then after you have moved the old one out of the way (import over the 
old doesn't/didn't work well) then just do:

	sudo -u cyrus /usr/cyrus/bin/ctl_mboxlist -u < filename

Before you start, let me clarify:

  remove the files in /var/spool/imapdb/db -- and always do an rsync of 
/var/spool/imapdb to somewhere before starting in case things go horribly 
wrong.

B


Joe Finkle wrote:
Wow, that really stinks. At this point I dont really have a choice though. 
Can you give me specifics on how you made a flat text file backup and how 
you reconstructed things using that?

Thanks,
Lee


From: Robert Scussel <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: Joe Finkle <[EMAIL PROTECTED]>
CC: [EMAIL PROTECTED]
Subject: Re: Reconstructing Mailboxes - HELP!
Date: Tue, 29 Oct 2002 17:41:16 -0500

Last time we had this problem we had to move mailboxes.db out of the way, 
remove everything in /var/spool/imapdb/ and then recreate our 
mailboxes.db file from a flat text backup and then run reconstruct, which 
takes awhile depending on you number of users.

Hopes this helps,
B

Joe Finkle wrote:

Cyrus: 2.1.9

We suffered some data corruption on our cyrus box and the mailboxes.db 
and the db/ folder were lost. When we start cyrus, ctl_cyrusdb just 
hangs with the following strace:

open("/export/cyrus/imap/mailboxes.db", O_RDWR|O_LARGEFILE) = 6
fcntl64(6, F_SETFD, FD_CLOEXEC) = 0
fstat64(6, {st_mode=S_IFREG|0600, st_size=294912, ...}) = 0
select(0, NULL, NULL, NULL, {0, 1000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 2000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 4000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 8000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 16000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 32000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 64000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 128000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 256000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 512000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)

The last line continues forever.

Given the above, I assume the problem is a corrupted mailboxes.db file. 
Im trying to run reconstruct -rf on each of the mailboxes (since 
reconstruct -m is disabled), but doing so with the the old 
mailboxes.db/db folder does not fix the hanging ctlcyrus_db problem. If 
I delete everying in the db folder and i delete the mailboxes.db file, 
reconstruct complains that it cant open the mailboxes.db file. I tried 
using a fresh cyrus install's db/mailboxes and reconstruct again runs 
for 1 second then ends doing nothing. Strace just shows it opening the 
files.

Any help would be much appreciated.

Thanks,
Lee

_
Protect your PC - get McAfee.com VirusScan Online 
http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963




--
Robert Scussel
1024D/BAF70959/0036 B19E 86CE 181D 0912  5FCC 92D8 1EA1 BAF7 0959




_
Protect your PC - get McAfee.com VirusScan Online 
http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963




--
Robert Scussel
1024D/BAF70959/0036 B19E 86CE 181D 0912  5FCC 92D8 1EA1 BAF7 0959



_
Get faster connections -- switch to MSN Internet Access! 
http://resourcecenter.msn.com/access/plans/default.asp

Re: Reconstructing Mailboxes - HELP!

2002-10-29 Thread Robert Scussel 
Last time we had this problem we had to move mailboxes.db out of the 
way, remove everything in /var/spool/imapdb/ and then recreate our 
mailboxes.db file from a flat text backup and then run reconstruct, 
which takes awhile depending on you number of users.

Hopes this helps,
B

Joe Finkle wrote:
Cyrus: 2.1.9

We suffered some data corruption on our cyrus box and the mailboxes.db 
and the db/ folder were lost. When we start cyrus, ctl_cyrusdb just 
hangs with the following strace:

open("/export/cyrus/imap/mailboxes.db", O_RDWR|O_LARGEFILE) = 6
fcntl64(6, F_SETFD, FD_CLOEXEC) = 0
fstat64(6, {st_mode=S_IFREG|0600, st_size=294912, ...}) = 0
select(0, NULL, NULL, NULL, {0, 1000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 2000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 4000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 8000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 16000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 32000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 64000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 128000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 256000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 512000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)

The last line continues forever.

Given the above, I assume the problem is a corrupted mailboxes.db file. 
Im trying to run reconstruct -rf on each of the mailboxes (since 
reconstruct -m is disabled), but doing so with the the old 
mailboxes.db/db folder does not fix the hanging ctlcyrus_db problem. If 
I delete everying in the db folder and i delete the mailboxes.db file, 
reconstruct complains that it cant open the mailboxes.db file. I tried 
using a fresh cyrus install's db/mailboxes and reconstruct again runs 
for 1 second then ends doing nothing. Strace just shows it opening the 
files.

Any help would be much appreciated.

Thanks,
Lee

_
Protect your PC - get McAfee.com VirusScan Online 
http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963




--
Robert Scussel
1024D/BAF70959/0036 B19E 86CE 181D 0912  5FCC 92D8 1EA1 BAF7 0959

Re: Reconstructing Mailboxes - HELP!

2002-10-29 Thread Robert Scussel 
Just run :

	sudo -u cyrus /usr/cyrus/bin/ctl_mboxlist -d > filename

and then after you have moved the old one out of the way (import over 
the old doesn't/didn't work well) then just do:

	sudo -u cyrus /usr/cyrus/bin/ctl_mboxlist -u < filename

Before you start, let me clarify:

  remove the files in /var/spool/imapdb/db -- and always do an rsync of 
/var/spool/imapdb to somewhere before starting in case things go 
horribly wrong.

B


Joe Finkle wrote:
Wow, that really stinks. At this point I dont really have a choice 
though. Can you give me specifics on how you made a flat text file 
backup and how you reconstructed things using that?

Thanks,
Lee


From: Robert Scussel <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: Joe Finkle <[EMAIL PROTECTED]>
CC: [EMAIL PROTECTED]
Subject: Re: Reconstructing Mailboxes - HELP!
Date: Tue, 29 Oct 2002 17:41:16 -0500

Last time we had this problem we had to move mailboxes.db out of the 
way, remove everything in /var/spool/imapdb/ and then recreate our 
mailboxes.db file from a flat text backup and then run reconstruct, 
which takes awhile depending on you number of users.

Hopes this helps,
B

Joe Finkle wrote:

Cyrus: 2.1.9

We suffered some data corruption on our cyrus box and the 
mailboxes.db and the db/ folder were lost. When we start cyrus, 
ctl_cyrusdb just hangs with the following strace:

open("/export/cyrus/imap/mailboxes.db", O_RDWR|O_LARGEFILE) = 6
fcntl64(6, F_SETFD, FD_CLOEXEC) = 0
fstat64(6, {st_mode=S_IFREG|0600, st_size=294912, ...}) = 0
select(0, NULL, NULL, NULL, {0, 1000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 2000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 4000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 8000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 16000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 32000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 64000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 128000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 256000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 512000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)

The last line continues forever.

Given the above, I assume the problem is a corrupted mailboxes.db 
file. Im trying to run reconstruct -rf on each of the mailboxes 
(since reconstruct -m is disabled), but doing so with the the old 
mailboxes.db/db folder does not fix the hanging ctlcyrus_db problem. 
If I delete everying in the db folder and i delete the mailboxes.db 
file, reconstruct complains that it cant open the mailboxes.db file. 
I tried using a fresh cyrus install's db/mailboxes and reconstruct 
again runs for 1 second then ends doing nothing. Strace just shows it 
opening the files.

Any help would be much appreciated.

Thanks,
Lee

_
Protect your PC - get McAfee.com VirusScan Online 
http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963




--
Robert Scussel
1024D/BAF70959/0036 B19E 86CE 181D 0912  5FCC 92D8 1EA1 BAF7 0959




_
Protect your PC - get McAfee.com VirusScan Online 
http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963




--
Robert Scussel
1024D/BAF70959/0036 B19E 86CE 181D 0912  5FCC 92D8 1EA1 BAF7 0959

Re: Reconstructing Mailboxes - HELP!

2002-10-29 Thread Joe Finkle 
Wow, that really stinks. At this point I dont really have a choice though. 
Can you give me specifics on how you made a flat text file backup and how 
you reconstructed things using that?

Thanks,
Lee


From: Robert Scussel <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: Joe Finkle <[EMAIL PROTECTED]>
CC: [EMAIL PROTECTED]
Subject: Re: Reconstructing Mailboxes - HELP!
Date: Tue, 29 Oct 2002 17:41:16 -0500

Last time we had this problem we had to move mailboxes.db out of the way, 
remove everything in /var/spool/imapdb/ and then recreate our mailboxes.db 
file from a flat text backup and then run reconstruct, which takes awhile 
depending on you number of users.

Hopes this helps,
B

Joe Finkle wrote:
Cyrus: 2.1.9

We suffered some data corruption on our cyrus box and the mailboxes.db and 
the db/ folder were lost. When we start cyrus, ctl_cyrusdb just hangs with 
the following strace:

open("/export/cyrus/imap/mailboxes.db", O_RDWR|O_LARGEFILE) = 6
fcntl64(6, F_SETFD, FD_CLOEXEC) = 0
fstat64(6, {st_mode=S_IFREG|0600, st_size=294912, ...}) = 0
select(0, NULL, NULL, NULL, {0, 1000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 2000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 4000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 8000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 16000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 32000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 64000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 128000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 256000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 512000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)

The last line continues forever.

Given the above, I assume the problem is a corrupted mailboxes.db file. Im 
trying to run reconstruct -rf on each of the mailboxes (since reconstruct 
-m is disabled), but doing so with the the old mailboxes.db/db folder does 
not fix the hanging ctlcyrus_db problem. If I delete everying in the db 
folder and i delete the mailboxes.db file, reconstruct complains that it 
cant open the mailboxes.db file. I tried using a fresh cyrus install's 
db/mailboxes and reconstruct again runs for 1 second then ends doing 
nothing. Strace just shows it opening the files.

Any help would be much appreciated.

Thanks,
Lee

_
Protect your PC - get McAfee.com VirusScan Online 
http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963




--
Robert Scussel
1024D/BAF70959/0036 B19E 86CE 181D 0912  5FCC 92D8 1EA1 BAF7 0959



_
Protect your PC - get McAfee.com VirusScan Online 
http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Igor Brezac 

On Tue, 29 Oct 2002, Gregory Chagnon wrote:

> Thanks Igor, that helped a little...now it looks like it's being
> authenticated against the LDAP database and getting granted access.
> However, when I run imtest -m login -a cliff.clavin localhost, I get this:
>
> [root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> imtest -m login -a
> cliff.clavin localhost
> S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
> C: C01 CAPABILITY
> S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT
> THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT
> LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
> S: C01 OK Completed
> Please enter your password:
> C: L01 LOGIN cliff.clavin {6}
> S: + go ahead
> C: 
> S: L01 NO Login failed: authentication failure
> Authentication failed. generic failure
> Security strength factor: 0
>

Did testsaslauthd run successfully?
Check syslog messages for imapd.

-Igor

Reconstructing Mailboxes - HELP!

2002-10-29 Thread Joe Finkle 
Cyrus: 2.1.9

We suffered some data corruption on our cyrus box and the mailboxes.db and 
the db/ folder were lost. When we start cyrus, ctl_cyrusdb just hangs with 
the following strace:

open("/export/cyrus/imap/mailboxes.db", O_RDWR|O_LARGEFILE) = 6
fcntl64(6, F_SETFD, FD_CLOEXEC) = 0
fstat64(6, {st_mode=S_IFREG|0600, st_size=294912, ...}) = 0
select(0, NULL, NULL, NULL, {0, 1000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 2000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 4000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 8000})  = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 16000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 32000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 64000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 128000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 256000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {0, 512000}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)
select(0, NULL, NULL, NULL, {1, 0}) = 0 (Timeout)

The last line continues forever.

Given the above, I assume the problem is a corrupted mailboxes.db file. Im 
trying to run reconstruct -rf on each of the mailboxes (since reconstruct -m 
is disabled), but doing so with the the old mailboxes.db/db folder does not 
fix the hanging ctlcyrus_db problem. If I delete everying in the db folder 
and i delete the mailboxes.db file, reconstruct complains that it cant open 
the mailboxes.db file. I tried using a fresh cyrus install's db/mailboxes 
and reconstruct again runs for 1 second then ends doing nothing. Strace just 
shows it opening the files.

Any help would be much appreciated.

Thanks,
Lee

_
Protect your PC - get McAfee.com VirusScan Online 
http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963

Re: pop3d unstable

2002-10-29 Thread Neal Rigney 
I've normally seen this when you've got a stale pop3d running.  I've
also seen this with corrupt databases, but that would cause imapd to
fail also.

Try shutting down master and see what's still running.  I'd bet there
will still be a pop3d.

On Tue, 2002-10-29 at 09:23, Felix Cuello wrote:
> Hello,
> 
>i'm using cyrus-2.1.9 and sasl 2.1.9, and pop3d sometimes doesn't respond.
> That means, when I do this:
> 
> [root@sinclair tmp]# telnet localhost 110
> Trying 127.0.0.1...
> Connected to localhost.
> Escape character is '^]'.
> 
> pop3d does't respond...
> 
> but
> 
> [root@sinclair tmp]# telnet localhost 143
> Trying 127.0.0.1...
> Connected to localhost.
> Escape character is '^]'.
> * OK sinclair Cyrus IMAP4 v2.1.9 server ready
> 
> quickly show me OK.
> 
> ---
> 
> This problem only occurs into my production server, in fact in my desktop computer
> all works fine... with exactly the same configuration and packages
> 
> Do you know where can I start?
> 
> Thanks a lot,
> 
> Sorry for my poor english,
> 
> Felix
> ___ http://www.palermo.edu ___

pop3d unstable

2002-10-29 Thread Felix Cuello 
Hello,

   i'm using cyrus-2.1.9 and sasl 2.1.9, and pop3d sometimes doesn't respond.
That means, when I do this:

[root@sinclair tmp]# telnet localhost 110
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.

pop3d does't respond...

but

[root@sinclair tmp]# telnet localhost 143
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
* OK sinclair Cyrus IMAP4 v2.1.9 server ready

quickly show me OK.

---

This problem only occurs into my production server, in fact in my desktop computer
all works fine... with exactly the same configuration and packages

Do you know where can I start?

Thanks a lot,

Sorry for my poor english,

Felix
___ http://www.palermo.edu ___

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Gregory Chagnon 
Thanks Igor, that helped a little...now it looks like it's being 
authenticated against the LDAP database and getting granted access.  
However, when I run imtest -m login -a cliff.clavin localhost, I get this:

[root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> imtest -m login -a 
cliff.clavin localhost
S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS 
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT 
THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT 
LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN cliff.clavin {6}
S: + go ahead
C: 
S: L01 NO Login failed: authentication failure
Authentication failed. generic failure
Security strength factor: 0


Here is the last 100 lines from my ldap.log file:

[root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> tail -n 100 
/var/log/ldap.log
Oct 29 15:04:09 Lunar slapd[3188]: => key_read
Oct 29 15:04:09 Lunar slapd[3188]: <= index_read 1 candidates
Oct 29 15:04:09 Lunar slapd[3188]: <= equality_candidates 1
Oct 29 15:04:09 Lunar slapd[3188]: <= filter_candidates 1
Oct 29 15:04:09 Lunar slapd[3188]: <= list_candidates 1
Oct 29 15:04:09 Lunar slapd[3188]: <= filter_candidates 1
Oct 29 15:04:09 Lunar slapd[3188]: <= list_candidates 1
Oct 29 15:04:09 Lunar slapd[3188]: <= filter_candidates 1
Oct 29 15:04:09 Lunar slapd[3188]: > cache_return_entry_r( 3 ): returned 
(0)
Oct 29 15:04:09 Lunar slapd[3188]: => id2entry_r( 26 )
Oct 29 15:04:09 Lunar slapd[3188]: > cache_find_entry_id( 26 ) 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" (found) (1 tries)
Oct 29 15:04:09 Lunar slapd[3188]: <= id2entry_r( 26 ) 0x8189108 (cache)
Oct 29 15:04:09 Lunar slapd[3188]: => test_filter
Oct 29 15:04:09 Lunar slapd[3188]: EQUALITY
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: search access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "uid" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: <= test_filter 6
Oct 29 15:04:09 Lunar slapd[3188]: => send_search_entry: 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com"
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "entry" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "objectClass" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "objectClass" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "objectClass" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "cn" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "cn" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "sn" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "sn" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "uid" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "uid" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "uidNumber" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "uidNumber" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "gidNumber" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"uid=cliff.clavin,ou=Users,dc=gregbox,dc=com" "gidNumber" requested
Oct 29 15:04:09 Lunar slapd[3188]: <= root access granted
Oct 29 15:04:09 Lunar slapd[3188]: => access_allowed: read access to 
"

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Igor Brezac 

On Tue, 29 Oct 2002, Gregory Chagnon wrote:

> One more thing...now when I run testsaslauthd, I get this entry in
> /var/log/ldap.log:
>
> Oct 29 14:13:58 Lunar slapd[5790]: conn=102 op=1 SRCH base="" scope=2
> filter="(uid=greg.chagnon)"
> Oct 29 14:13:58 Lunar slapd[5790]: send_ldap_result: conn=102 op=1 p=3
> Oct 29 14:13:58 Lunar slapd[5790]: send_ldap_result: 10::
> Oct 29 14:13:58 Lunar slapd[5790]: send_ldap_response: msgid=2 tag=101
> err=32
> Oct 29 14:13:58 Lunar slapd[5790]: conn=102 op=1 RESULT tag=101 err=32 text=
>
> Shouldn't SRCH base be set to something?  In my case it would be
> ou=Users,dc=gregbox,dc=com.  Where is that set?

You need to specify search base in saslauthd.conf:

ldap_search_base: ou=Users,dc=gregbox,dc=com

-Igor

> -Greg
>
>
>
>
>
>
> >From: Igor Brezac <[EMAIL PROTECTED]>
> >Reply-To: [EMAIL PROTECTED]
> >To: Gregory Chagnon <[EMAIL PROTECTED]>
> >CC: [EMAIL PROTECTED]
> >Subject: Re: cyrus-sasl / ldap problem
> >Date: Tue, 29 Oct 2002 10:52:59 -0500 (EST)
> >
> >
> >It looks like saslauthd is not running or testsaslauthd is pointing to a
> >wrong socket.  I am not sure where you got your rpm sources from, but I
> >suggest that you get the sources from CMU and recompile:
> >http://asg.web.cmu.edu/cyrus/download/
> >
> >I recommend that you download cyrus-sasl from CVS:
> >http://asg.web.cmu.edu/cyrus/download/anoncvs.html
> >
> >-Igor
> >
> >On Tue, 29 Oct 2002, Gregory Chagnon wrote:
> >
> > > Igor:
> > > I get this error when I run testsaslauthd:
> > > [root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> ./testsaslauthd -u
> > > cliff.clavin -p *
> > > connect() : No such file or directory
> > >
> > >
> > >
> > >
> > >
> > >
> > >
> > > >From: Igor Brezac <[EMAIL PROTECTED]>
> > > >Reply-To: [EMAIL PROTECTED]
> > > >To: Gregory Chagnon <[EMAIL PROTECTED]>
> > > >CC: [EMAIL PROTECTED]
> > > >Subject: Re: cyrus-sasl / ldap problem
> > > >Date: Tue, 29 Oct 2002 09:22:22 -0500 (EST)
> > > >
> > > >
> > > >Test saslauthd first.  cd $cyrus-sasl-src/saslauthd; make testsaslauthd
> > > >./testsaslauthd -u username -p password
> > > >
> > > >If you do not get OK, check syslog for saslauthd errors.
> > > >
> > > >-Igor
> > > >
> > > >On Tue, 29 Oct 2002, Gregory Chagnon wrote:
> > > >
> > > > > Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP.
> >User
> > > > > cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run
> >imtest,
> > > >here
> > > > > is the error I get...thanks everyone so much in advance:
> > > > >
> > > > > [root@Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin
> >localhost
> > > > > S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
> > > > > C: C01 CAPABILITY
> > > > > S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> > > > > NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
> >SORT
> > > > > THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT
> > > > > LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
> > > > > S: C01 OK Completed
> > > > > Please enter your password:
> > > > > C: L01 LOGIN cliff.clavin {6}
> > > > > S: + go ahead
> > > > > C: 
> > > > > S: L01 NO Login failed: generic failure
> > > > > Authentication failed. generic failure
> > > > > Security strength factor: 0
> > > > > C: Q01 LOGOUT
> > > > > Connection closed.
> > > > >
> > > > >
> > > > > Here is the entry from /var/log/imap.log:
> > > > >
> > > > > Oct 29 08:47:14 Lunar master[6197]: about to exec
> > > >/usr/libexec/cyrus/imapd
> > > > > Oct 29 08:47:14 Lunar imap[6197]: executed
> > > > > Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
> > > > > Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1]
> >plaintext
> > > > > cliff.clavin SASL(-1): generic failure: checkpass failed
> > > > > Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0
> > > > >
> > > > >
> > > > > Here are my config files:
> > > > >
> > > > > <>
> > > > >
> > > > > configdirectory: /var/lib/imap
> > > > > partition-default: /var/spool/imap
> > > > > admins: cliff.clavin cyrus gchagnon
> > > > > allowanonymouslogin: no
> > > > > sieveuserhomedir: no
> > > > > sievedir: /var/lib/imap/sieve
> > > > > sendmail: /usr/sbin/sendmail
> > > > > hashimapspool: true
> > > > > sasl_pwcheck_method: saslauthd
> > > > > sasl_passwd_check: saslauthd
> > > > > sasl_ldap_server: localhost
> > > > > #sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
> > > > > sasl_ldap_basedn: dc=gregbox,dc=com
> > > > > sasl_mech_list: PLAIN
> > > > > tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > > > > tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > > > >
> > > > > <>
> > > > >
> > > > > ldap_servers: ldap://localhost/
> > > > > ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
> > > > > ldap_bind_pw: ***
> > > > >
> > > > > <>
> > > > > databaseldbm
> > > > > suffix  "dc=gregbox,dc=com"
> > > > > rootdn  "cn=Manager,dc=gregbox,dc=com"
> > > > > rootpw  ***
> > > > > directory   /var/lib/lda

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Igor Brezac 

On Tue, 29 Oct 2002, Gregory Chagnon wrote:

> I got testsaslauthd to work...I had to specify the socket:
> [root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> ./testsaslauthd -u
> cliff.clavin -p  -f /var/run/saslauthd/mux
> 0: NO "authentication failed"
>
> Do I have to specify anywhere in Cyrus imapd where to look for this socket
> as well?

Yes, in imapd.conf add:

sasl_saslauthd_path: /var/run/saslauthd/mux

-Igor

> -Greg
>
>
>
>
>
>
>
> >From: Igor Brezac <[EMAIL PROTECTED]>
> >Reply-To: [EMAIL PROTECTED]
> >To: Gregory Chagnon <[EMAIL PROTECTED]>
> >CC: [EMAIL PROTECTED]
> >Subject: Re: cyrus-sasl / ldap problem
> >Date: Tue, 29 Oct 2002 10:52:59 -0500 (EST)
> >
> >
> >It looks like saslauthd is not running or testsaslauthd is pointing to a
> >wrong socket.  I am not sure where you got your rpm sources from, but I
> >suggest that you get the sources from CMU and recompile:
> >http://asg.web.cmu.edu/cyrus/download/
> >
> >I recommend that you download cyrus-sasl from CVS:
> >http://asg.web.cmu.edu/cyrus/download/anoncvs.html
> >
> >-Igor
> >
> >On Tue, 29 Oct 2002, Gregory Chagnon wrote:
> >
> > > Igor:
> > > I get this error when I run testsaslauthd:
> > > [root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> ./testsaslauthd -u
> > > cliff.clavin -p *
> > > connect() : No such file or directory
> > >
> > >
> > >
> > >
> > >
> > >
> > >
> > > >From: Igor Brezac <[EMAIL PROTECTED]>
> > > >Reply-To: [EMAIL PROTECTED]
> > > >To: Gregory Chagnon <[EMAIL PROTECTED]>
> > > >CC: [EMAIL PROTECTED]
> > > >Subject: Re: cyrus-sasl / ldap problem
> > > >Date: Tue, 29 Oct 2002 09:22:22 -0500 (EST)
> > > >
> > > >
> > > >Test saslauthd first.  cd $cyrus-sasl-src/saslauthd; make testsaslauthd
> > > >./testsaslauthd -u username -p password
> > > >
> > > >If you do not get OK, check syslog for saslauthd errors.
> > > >
> > > >-Igor
> > > >
> > > >On Tue, 29 Oct 2002, Gregory Chagnon wrote:
> > > >
> > > > > Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP.
> >User
> > > > > cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run
> >imtest,
> > > >here
> > > > > is the error I get...thanks everyone so much in advance:
> > > > >
> > > > > [root@Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin
> >localhost
> > > > > S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
> > > > > C: C01 CAPABILITY
> > > > > S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> > > > > NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
> >SORT
> > > > > THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT
> > > > > LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
> > > > > S: C01 OK Completed
> > > > > Please enter your password:
> > > > > C: L01 LOGIN cliff.clavin {6}
> > > > > S: + go ahead
> > > > > C: 
> > > > > S: L01 NO Login failed: generic failure
> > > > > Authentication failed. generic failure
> > > > > Security strength factor: 0
> > > > > C: Q01 LOGOUT
> > > > > Connection closed.
> > > > >
> > > > >
> > > > > Here is the entry from /var/log/imap.log:
> > > > >
> > > > > Oct 29 08:47:14 Lunar master[6197]: about to exec
> > > >/usr/libexec/cyrus/imapd
> > > > > Oct 29 08:47:14 Lunar imap[6197]: executed
> > > > > Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
> > > > > Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1]
> >plaintext
> > > > > cliff.clavin SASL(-1): generic failure: checkpass failed
> > > > > Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0
> > > > >
> > > > >
> > > > > Here are my config files:
> > > > >
> > > > > <>
> > > > >
> > > > > configdirectory: /var/lib/imap
> > > > > partition-default: /var/spool/imap
> > > > > admins: cliff.clavin cyrus gchagnon
> > > > > allowanonymouslogin: no
> > > > > sieveuserhomedir: no
> > > > > sievedir: /var/lib/imap/sieve
> > > > > sendmail: /usr/sbin/sendmail
> > > > > hashimapspool: true
> > > > > sasl_pwcheck_method: saslauthd
> > > > > sasl_passwd_check: saslauthd
> > > > > sasl_ldap_server: localhost
> > > > > #sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
> > > > > sasl_ldap_basedn: dc=gregbox,dc=com
> > > > > sasl_mech_list: PLAIN
> > > > > tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > > > > tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > > > >
> > > > > <>
> > > > >
> > > > > ldap_servers: ldap://localhost/
> > > > > ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
> > > > > ldap_bind_pw: ***
> > > > >
> > > > > <>
> > > > > databaseldbm
> > > > > suffix  "dc=gregbox,dc=com"
> > > > > rootdn  "cn=Manager,dc=gregbox,dc=com"
> > > > > rootpw  ***
> > > > > directory   /var/lib/ldap
> > > > >
> > > > > index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
> > > > > index   cn,mail,surname,givenname
> >eq,subinitial
> > > > >
> > > > >
> > > > >
> > > > > _
> > > > > Protect your PC - get McAfee.com VirusScan Online
> > > > > http://c

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Gregory Chagnon 
One more thing...now when I run testsaslauthd, I get this entry in 
/var/log/ldap.log:

Oct 29 14:13:58 Lunar slapd[5790]: conn=102 op=1 SRCH base="" scope=2 
filter="(uid=greg.chagnon)"
Oct 29 14:13:58 Lunar slapd[5790]: send_ldap_result: conn=102 op=1 p=3
Oct 29 14:13:58 Lunar slapd[5790]: send_ldap_result: 10::
Oct 29 14:13:58 Lunar slapd[5790]: send_ldap_response: msgid=2 tag=101 
err=32
Oct 29 14:13:58 Lunar slapd[5790]: conn=102 op=1 RESULT tag=101 err=32 text=

Shouldn't SRCH base be set to something?  In my case it would be 
ou=Users,dc=gregbox,dc=com.  Where is that set?
-Greg






From: Igor Brezac <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: Gregory Chagnon <[EMAIL PROTECTED]>
CC: [EMAIL PROTECTED]
Subject: Re: cyrus-sasl / ldap problem
Date: Tue, 29 Oct 2002 10:52:59 -0500 (EST)


It looks like saslauthd is not running or testsaslauthd is pointing to a
wrong socket.  I am not sure where you got your rpm sources from, but I
suggest that you get the sources from CMU and recompile:
http://asg.web.cmu.edu/cyrus/download/

I recommend that you download cyrus-sasl from CVS:
http://asg.web.cmu.edu/cyrus/download/anoncvs.html

-Igor

On Tue, 29 Oct 2002, Gregory Chagnon wrote:

> Igor:
> I get this error when I run testsaslauthd:
> [root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> ./testsaslauthd -u
> cliff.clavin -p *
> connect() : No such file or directory
>
>
>
>
>
>
>
> >From: Igor Brezac <[EMAIL PROTECTED]>
> >Reply-To: [EMAIL PROTECTED]
> >To: Gregory Chagnon <[EMAIL PROTECTED]>
> >CC: [EMAIL PROTECTED]
> >Subject: Re: cyrus-sasl / ldap problem
> >Date: Tue, 29 Oct 2002 09:22:22 -0500 (EST)
> >
> >
> >Test saslauthd first.  cd $cyrus-sasl-src/saslauthd; make testsaslauthd
> >./testsaslauthd -u username -p password
> >
> >If you do not get OK, check syslog for saslauthd errors.
> >
> >-Igor
> >
> >On Tue, 29 Oct 2002, Gregory Chagnon wrote:
> >
> > > Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP.  
User
> > > cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run 
imtest,
> >here
> > > is the error I get...thanks everyone so much in advance:
> > >
> > > [root@Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin 
localhost
> > > S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
> > > C: C01 CAPABILITY
> > > S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> > > NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND 
SORT
> > > THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT
> > > LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
> > > S: C01 OK Completed
> > > Please enter your password:
> > > C: L01 LOGIN cliff.clavin {6}
> > > S: + go ahead
> > > C: 
> > > S: L01 NO Login failed: generic failure
> > > Authentication failed. generic failure
> > > Security strength factor: 0
> > > C: Q01 LOGOUT
> > > Connection closed.
> > >
> > >
> > > Here is the entry from /var/log/imap.log:
> > >
> > > Oct 29 08:47:14 Lunar master[6197]: about to exec
> >/usr/libexec/cyrus/imapd
> > > Oct 29 08:47:14 Lunar imap[6197]: executed
> > > Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
> > > Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1] 
plaintext
> > > cliff.clavin SASL(-1): generic failure: checkpass failed
> > > Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0
> > >
> > >
> > > Here are my config files:
> > >
> > > <>
> > >
> > > configdirectory: /var/lib/imap
> > > partition-default: /var/spool/imap
> > > admins: cliff.clavin cyrus gchagnon
> > > allowanonymouslogin: no
> > > sieveuserhomedir: no
> > > sievedir: /var/lib/imap/sieve
> > > sendmail: /usr/sbin/sendmail
> > > hashimapspool: true
> > > sasl_pwcheck_method: saslauthd
> > > sasl_passwd_check: saslauthd
> > > sasl_ldap_server: localhost
> > > #sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
> > > sasl_ldap_basedn: dc=gregbox,dc=com
> > > sasl_mech_list: PLAIN
> > > tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > > tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > >
> > > <>
> > >
> > > ldap_servers: ldap://localhost/
> > > ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
> > > ldap_bind_pw: ***
> > >
> > > <>
> > > databaseldbm
> > > suffix  "dc=gregbox,dc=com"
> > > rootdn  "cn=Manager,dc=gregbox,dc=com"
> > > rootpw  ***
> > > directory   /var/lib/ldap
> > >
> > > index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
> > > index   cn,mail,surname,givenname   
eq,subinitial
> > >
> > >
> > >
> > > _
> > > Protect your PC - get McAfee.com VirusScan Online
> > > http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
> > >
> > >
> >
> >--
> >Igor
>
>
> _
> Unlimited Internet access -- and 2 months free!  Try MSN.
> http://resourcecenter.msn.com/access/plans/2monthsfree.asp
>
>

--
Igor


__

imap/sasl upgrade breaks non-sasl gssapi connections

2002-10-29 Thread Ben Poliakoff 
Perhaps this is a known issue.  I haven't seen any mention of it though.

I just upgraded from cyrus-imap 2.0.16 to 2.1.9.  The 2.0.16
installation was all built from source, the new installation uses Simon
Matter's RPMS (rebuild on my machine).  The problem I'm seeing is that 
mail clients that aren't linked with the sasl libraries are no longer
able to successfully "authenticate GSSAPI".

Some of the clients I see this behavior with are:

mutt 1.2.5 
MacOS 10.2 Mail.app

Both were able to do GSSAPI authentication before the upgrade.  But now
both of the above can only authenticate via TLS+plain.

mutt-1.4 built with sasl can still do GSSAPI authentication without a
hitch.

Anyone have an idea about how I might figure out what's going on?

Ben

-- 
---
Ben Poliakoff   email: <[EMAIL PROTECTED]>
Reed College  tel:  (503)-788-6674
Unix System Administrator  PGP key: http://www.reed.edu/~benp/key.html
---
0x6AF52019 fingerprint = A131 F813 7A0F C5B7 E74D  C972 9118 A94D 6AF5 2019

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Gregory Chagnon 
I got testsaslauthd to work...I had to specify the socket:
[root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> ./testsaslauthd -u 
cliff.clavin -p  -f /var/run/saslauthd/mux
0: NO "authentication failed"

Do I have to specify anywhere in Cyrus imapd where to look for this socket 
as well?
-Greg







From: Igor Brezac <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: Gregory Chagnon <[EMAIL PROTECTED]>
CC: [EMAIL PROTECTED]
Subject: Re: cyrus-sasl / ldap problem
Date: Tue, 29 Oct 2002 10:52:59 -0500 (EST)


It looks like saslauthd is not running or testsaslauthd is pointing to a
wrong socket.  I am not sure where you got your rpm sources from, but I
suggest that you get the sources from CMU and recompile:
http://asg.web.cmu.edu/cyrus/download/

I recommend that you download cyrus-sasl from CVS:
http://asg.web.cmu.edu/cyrus/download/anoncvs.html

-Igor

On Tue, 29 Oct 2002, Gregory Chagnon wrote:

> Igor:
> I get this error when I run testsaslauthd:
> [root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> ./testsaslauthd -u
> cliff.clavin -p *
> connect() : No such file or directory
>
>
>
>
>
>
>
> >From: Igor Brezac <[EMAIL PROTECTED]>
> >Reply-To: [EMAIL PROTECTED]
> >To: Gregory Chagnon <[EMAIL PROTECTED]>
> >CC: [EMAIL PROTECTED]
> >Subject: Re: cyrus-sasl / ldap problem
> >Date: Tue, 29 Oct 2002 09:22:22 -0500 (EST)
> >
> >
> >Test saslauthd first.  cd $cyrus-sasl-src/saslauthd; make testsaslauthd
> >./testsaslauthd -u username -p password
> >
> >If you do not get OK, check syslog for saslauthd errors.
> >
> >-Igor
> >
> >On Tue, 29 Oct 2002, Gregory Chagnon wrote:
> >
> > > Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP.  
User
> > > cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run 
imtest,
> >here
> > > is the error I get...thanks everyone so much in advance:
> > >
> > > [root@Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin 
localhost
> > > S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
> > > C: C01 CAPABILITY
> > > S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> > > NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND 
SORT
> > > THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT
> > > LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
> > > S: C01 OK Completed
> > > Please enter your password:
> > > C: L01 LOGIN cliff.clavin {6}
> > > S: + go ahead
> > > C: 
> > > S: L01 NO Login failed: generic failure
> > > Authentication failed. generic failure
> > > Security strength factor: 0
> > > C: Q01 LOGOUT
> > > Connection closed.
> > >
> > >
> > > Here is the entry from /var/log/imap.log:
> > >
> > > Oct 29 08:47:14 Lunar master[6197]: about to exec
> >/usr/libexec/cyrus/imapd
> > > Oct 29 08:47:14 Lunar imap[6197]: executed
> > > Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
> > > Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1] 
plaintext
> > > cliff.clavin SASL(-1): generic failure: checkpass failed
> > > Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0
> > >
> > >
> > > Here are my config files:
> > >
> > > <>
> > >
> > > configdirectory: /var/lib/imap
> > > partition-default: /var/spool/imap
> > > admins: cliff.clavin cyrus gchagnon
> > > allowanonymouslogin: no
> > > sieveuserhomedir: no
> > > sievedir: /var/lib/imap/sieve
> > > sendmail: /usr/sbin/sendmail
> > > hashimapspool: true
> > > sasl_pwcheck_method: saslauthd
> > > sasl_passwd_check: saslauthd
> > > sasl_ldap_server: localhost
> > > #sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
> > > sasl_ldap_basedn: dc=gregbox,dc=com
> > > sasl_mech_list: PLAIN
> > > tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > > tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > >
> > > <>
> > >
> > > ldap_servers: ldap://localhost/
> > > ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
> > > ldap_bind_pw: ***
> > >
> > > <>
> > > databaseldbm
> > > suffix  "dc=gregbox,dc=com"
> > > rootdn  "cn=Manager,dc=gregbox,dc=com"
> > > rootpw  ***
> > > directory   /var/lib/ldap
> > >
> > > index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
> > > index   cn,mail,surname,givenname   
eq,subinitial
> > >
> > >
> > >
> > > _
> > > Protect your PC - get McAfee.com VirusScan Online
> > > http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
> > >
> > >
> >
> >--
> >Igor
>
>
> _
> Unlimited Internet access -- and 2 months free!  Try MSN.
> http://resourcecenter.msn.com/access/plans/2monthsfree.asp
>
>

--
Igor


_
Internet access plans that fit your lifestyle -- join MSN. 
http://resourcecenter.msn.com/access/plans/default.asp

sieve help

2002-10-29 Thread Damian Gerow 
First off, insert newbie alert here...

I've just installed cyrus-imapd from the FreeBSD ports tree (newest
revision, as of a couple of days ago), but can't get sieve to work.
I'm not sure exactly why, or how to go about debugging sieve.  I do
have a sieve script in place, and I'm pretty sure it's correct, but I
don't see any attempts at using sieve for delivery.

The rest of the service works just fine -- mail delivery and receipt.
It's just the filtering that doesn't work.

Any pointers?  I'm running FreeBSD 4.7-STABLE, with postfix-1.11...

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Gregory Chagnon 
[root@Lunar]:/var/log> /etc/init.d/saslauthd status
saslauthd (pid 7636 7635 7634 7631 7630) is running...

So it looks like saslauthd is running...I got the source RPMs from the RH 8 
CD.  I don't think it's a problem with saslauthd, I think it's a problem 
with Cyrus IMAP...
-Greg






From: Igor Brezac <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: Gregory Chagnon <[EMAIL PROTECTED]>
CC: [EMAIL PROTECTED]
Subject: Re: cyrus-sasl / ldap problem
Date: Tue, 29 Oct 2002 10:52:59 -0500 (EST)


It looks like saslauthd is not running or testsaslauthd is pointing to a
wrong socket.  I am not sure where you got your rpm sources from, but I
suggest that you get the sources from CMU and recompile:
http://asg.web.cmu.edu/cyrus/download/

I recommend that you download cyrus-sasl from CVS:
http://asg.web.cmu.edu/cyrus/download/anoncvs.html

-Igor

On Tue, 29 Oct 2002, Gregory Chagnon wrote:

> Igor:
> I get this error when I run testsaslauthd:
> [root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> ./testsaslauthd -u
> cliff.clavin -p *
> connect() : No such file or directory
>
>
>
>
>
>
>
> >From: Igor Brezac <[EMAIL PROTECTED]>
> >Reply-To: [EMAIL PROTECTED]
> >To: Gregory Chagnon <[EMAIL PROTECTED]>
> >CC: [EMAIL PROTECTED]
> >Subject: Re: cyrus-sasl / ldap problem
> >Date: Tue, 29 Oct 2002 09:22:22 -0500 (EST)
> >
> >
> >Test saslauthd first.  cd $cyrus-sasl-src/saslauthd; make testsaslauthd
> >./testsaslauthd -u username -p password
> >
> >If you do not get OK, check syslog for saslauthd errors.
> >
> >-Igor
> >
> >On Tue, 29 Oct 2002, Gregory Chagnon wrote:
> >
> > > Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP.  
User
> > > cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run 
imtest,
> >here
> > > is the error I get...thanks everyone so much in advance:
> > >
> > > [root@Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin 
localhost
> > > S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
> > > C: C01 CAPABILITY
> > > S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> > > NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND 
SORT
> > > THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT
> > > LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
> > > S: C01 OK Completed
> > > Please enter your password:
> > > C: L01 LOGIN cliff.clavin {6}
> > > S: + go ahead
> > > C: 
> > > S: L01 NO Login failed: generic failure
> > > Authentication failed. generic failure
> > > Security strength factor: 0
> > > C: Q01 LOGOUT
> > > Connection closed.
> > >
> > >
> > > Here is the entry from /var/log/imap.log:
> > >
> > > Oct 29 08:47:14 Lunar master[6197]: about to exec
> >/usr/libexec/cyrus/imapd
> > > Oct 29 08:47:14 Lunar imap[6197]: executed
> > > Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
> > > Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1] 
plaintext
> > > cliff.clavin SASL(-1): generic failure: checkpass failed
> > > Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0
> > >
> > >
> > > Here are my config files:
> > >
> > > <>
> > >
> > > configdirectory: /var/lib/imap
> > > partition-default: /var/spool/imap
> > > admins: cliff.clavin cyrus gchagnon
> > > allowanonymouslogin: no
> > > sieveuserhomedir: no
> > > sievedir: /var/lib/imap/sieve
> > > sendmail: /usr/sbin/sendmail
> > > hashimapspool: true
> > > sasl_pwcheck_method: saslauthd
> > > sasl_passwd_check: saslauthd
> > > sasl_ldap_server: localhost
> > > #sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
> > > sasl_ldap_basedn: dc=gregbox,dc=com
> > > sasl_mech_list: PLAIN
> > > tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > > tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > >
> > > <>
> > >
> > > ldap_servers: ldap://localhost/
> > > ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
> > > ldap_bind_pw: ***
> > >
> > > <>
> > > databaseldbm
> > > suffix  "dc=gregbox,dc=com"
> > > rootdn  "cn=Manager,dc=gregbox,dc=com"
> > > rootpw  ***
> > > directory   /var/lib/ldap
> > >
> > > index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
> > > index   cn,mail,surname,givenname   
eq,subinitial
> > >
> > >
> > >
> > > _
> > > Protect your PC - get McAfee.com VirusScan Online
> > > http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
> > >
> > >
> >
> >--
> >Igor
>
>
> _
> Unlimited Internet access -- and 2 months free!  Try MSN.
> http://resourcecenter.msn.com/access/plans/2monthsfree.asp
>
>

--
Igor


_
Surf the Web without missing calls! Get MSN Broadband.  
http://resourcecenter.msn.com/access/plans/freeactivation.asp

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Igor Brezac 

It looks like saslauthd is not running or testsaslauthd is pointing to a
wrong socket.  I am not sure where you got your rpm sources from, but I
suggest that you get the sources from CMU and recompile:
http://asg.web.cmu.edu/cyrus/download/

I recommend that you download cyrus-sasl from CVS:
http://asg.web.cmu.edu/cyrus/download/anoncvs.html

-Igor

On Tue, 29 Oct 2002, Gregory Chagnon wrote:

> Igor:
> I get this error when I run testsaslauthd:
> [root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> ./testsaslauthd -u
> cliff.clavin -p *
> connect() : No such file or directory
>
>
>
>
>
>
>
> >From: Igor Brezac <[EMAIL PROTECTED]>
> >Reply-To: [EMAIL PROTECTED]
> >To: Gregory Chagnon <[EMAIL PROTECTED]>
> >CC: [EMAIL PROTECTED]
> >Subject: Re: cyrus-sasl / ldap problem
> >Date: Tue, 29 Oct 2002 09:22:22 -0500 (EST)
> >
> >
> >Test saslauthd first.  cd $cyrus-sasl-src/saslauthd; make testsaslauthd
> >./testsaslauthd -u username -p password
> >
> >If you do not get OK, check syslog for saslauthd errors.
> >
> >-Igor
> >
> >On Tue, 29 Oct 2002, Gregory Chagnon wrote:
> >
> > > Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP.  User
> > > cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run imtest,
> >here
> > > is the error I get...thanks everyone so much in advance:
> > >
> > > [root@Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin localhost
> > > S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
> > > C: C01 CAPABILITY
> > > S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> > > NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT
> > > THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT
> > > LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
> > > S: C01 OK Completed
> > > Please enter your password:
> > > C: L01 LOGIN cliff.clavin {6}
> > > S: + go ahead
> > > C: 
> > > S: L01 NO Login failed: generic failure
> > > Authentication failed. generic failure
> > > Security strength factor: 0
> > > C: Q01 LOGOUT
> > > Connection closed.
> > >
> > >
> > > Here is the entry from /var/log/imap.log:
> > >
> > > Oct 29 08:47:14 Lunar master[6197]: about to exec
> >/usr/libexec/cyrus/imapd
> > > Oct 29 08:47:14 Lunar imap[6197]: executed
> > > Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
> > > Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1] plaintext
> > > cliff.clavin SASL(-1): generic failure: checkpass failed
> > > Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0
> > >
> > >
> > > Here are my config files:
> > >
> > > <>
> > >
> > > configdirectory: /var/lib/imap
> > > partition-default: /var/spool/imap
> > > admins: cliff.clavin cyrus gchagnon
> > > allowanonymouslogin: no
> > > sieveuserhomedir: no
> > > sievedir: /var/lib/imap/sieve
> > > sendmail: /usr/sbin/sendmail
> > > hashimapspool: true
> > > sasl_pwcheck_method: saslauthd
> > > sasl_passwd_check: saslauthd
> > > sasl_ldap_server: localhost
> > > #sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
> > > sasl_ldap_basedn: dc=gregbox,dc=com
> > > sasl_mech_list: PLAIN
> > > tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > > tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
> > >
> > > <>
> > >
> > > ldap_servers: ldap://localhost/
> > > ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
> > > ldap_bind_pw: ***
> > >
> > > <>
> > > databaseldbm
> > > suffix  "dc=gregbox,dc=com"
> > > rootdn  "cn=Manager,dc=gregbox,dc=com"
> > > rootpw  ***
> > > directory   /var/lib/ldap
> > >
> > > index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
> > > index   cn,mail,surname,givenname   eq,subinitial
> > >
> > >
> > >
> > > _
> > > Protect your PC - get McAfee.com VirusScan Online
> > > http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
> > >
> > >
> >
> >--
> >Igor
>
>
> _
> Unlimited Internet access -- and 2 months free!  Try MSN.
> http://resourcecenter.msn.com/access/plans/2monthsfree.asp
>
>

-- 
Igor

Bug with mkimap && virtual domains?

2002-10-29 Thread Marc G. Fournier 

looks like mkimap isn't converting [0-9] to q, yet the imap/create mailbox
stuff is?

1community# du domain
2   domain/1/1community.net/a
2   domain/1/1community.net/b
2   domain/1/1community.net/c
2   domain/1/1community.net/d
2   domain/1/1community.net/e
2   domain/1/1community.net/f
2   domain/1/1community.net/g
2   domain/1/1community.net/h
2   domain/1/1community.net/i
2   domain/1/1community.net/j
2   domain/1/1community.net/k
2   domain/1/1community.net/l
2   domain/1/1community.net/m
2   domain/1/1community.net/n
2   domain/1/1community.net/o
2   domain/1/1community.net/p
2   domain/1/1community.net/q
2   domain/1/1community.net/r
2   domain/1/1community.net/s
2   domain/1/1community.net/t
2   domain/1/1community.net/u
2   domain/1/1community.net/v
2   domain/1/1community.net/w
2   domain/1/1community.net/x
2   domain/1/1community.net/y
2   domain/1/1community.net/z
54  domain/1/1community.net
56  domain/1
8   domain/q/1community.net/a/user/admin
10  domain/q/1community.net/a/user
12  domain/q/1community.net/a
14  domain/q/1community.net
16  domain/q
74  domain

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Julien Marchal 

For me it work fine :

try saslauthd.conf :

ldap_servers: ldap://localhost:389
ldap_search_base: dc=gregbox,dc=com
ldap_scope: sub

Start sasl with specifie saslauthd.conf and mech:
/usr/local/sasl/sbin/saslauthd -a ldap -O
your_location/saslauthd.conf


in my imapd.conf i have only (for sasl)
sasl_pwcheck_method: saslauthd


A 09:32 29/10/2002 -0500, vous avez écrit :
One thing I left out, here is an
entry from /var/log/auth.log which is entered everytime I try
imtest:

Oct 29 09:31:37 Lunar imapd[5495]: cannot connect to saslauthd server: No
such file or directory







From: "Gregory Chagnon"
<[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: cyrus-sasl / ldap problem
Date: Tue, 29 Oct 2002 08:52:40 -0500

Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP. 
User cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run
imtest, here is the error I get...thanks everyone so much in
advance:

[root@Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin
localhost
S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT
THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT
LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN cliff.clavin {6}
S: + go ahead
C: 
S: L01 NO Login failed: generic failure
Authentication failed. generic failure
Security strength factor: 0
C: Q01 LOGOUT
Connection closed.


Here is the entry from /var/log/imap.log:

Oct 29 08:47:14 Lunar master[6197]: about to exec
/usr/libexec/cyrus/imapd
Oct 29 08:47:14 Lunar imap[6197]: executed
Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1] plaintext
cliff.clavin SASL(-1): generic failure: checkpass failed
Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0


Here are my config files:

<>

configdirectory: /var/lib/imap
partition-default: /var/spool/imap
admins: cliff.clavin cyrus gchagnon
allowanonymouslogin: no
sieveuserhomedir: no
sievedir: /var/lib/imap/sieve
sendmail: /usr/sbin/sendmail
hashimapspool: true
sasl_pwcheck_method: saslauthd
sasl_passwd_check: saslauthd
sasl_ldap_server: localhost
#sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
sasl_ldap_basedn: dc=gregbox,dc=com
sasl_mech_list: PLAIN
tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem

<>

ldap_servers: ldap://localhost/
ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
ldap_bind_pw: ***

<>
database    ldbm
suffix 
"dc=gregbox,dc=com"
rootdn 
"cn=Manager,dc=gregbox,dc=com"
rootpw  
***
directory   /var/lib/ldap

index  
objectClass,uid,uidNumber,gidNumber,memberUid   eq
index  
cn,mail,surname,givenname  
eq,subinitial



_
Protect your PC - get McAfee.com VirusScan Online
http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963

_
Choose an Internet access plan right for you -- try MSN!
http://resourcecenter.msn.com/access/plans/default.asp



-- Julien Marchal --

Email : [EMAIL PROTECTED]

Université NANCY 2 - C.R.I. 
13, Rue Michel Ney 
CO 75 - 54037 Nancy Cédex

Cyrus compilation: fails at Acap

2002-10-29 Thread Ian McDonald 
Hi,

Sorry to come back with yet another question ..
My Cyrus installation is failing because it cannot find the compile_et
executible. Compile_et.sh is part of the acap directory, but there's no
information there on how to install it by itself. (I could guess, but I
don't like to guess these things.)

./configure --with-auth=unix --without-com_err  has not made any difference.

This is a log of a subsequent make, showing where it fails:

[ian@breakme cyrus-imapd-2.1.9]$ uname -a
Linux breakme 2.4.18-14 #1 Wed Sep 4 13:35:50 EDT 2002 i686 i686 i386
GNU/Linux


### Making all in /home/ian/downloads/cyrus-imapd-2.1.9/man
make[1]: Entering directory `/home/ian/downloads/cyrus-imapd-2.1.9/man'
make[1]: Nothing to be done for `all'.
make[1]: Leaving directory `/home/ian/downloads/cyrus-imapd-2.1.9/man'
### Making all in /home/ian/downloads/cyrus-imapd-2.1.9/sieve
make[1]: Entering directory `/home/ian/downloads/cyrus-imapd-2.1.9/sieve'
make[1]: Nothing to be done for `all'.
make[1]: Leaving directory `/home/ian/downloads/cyrus-imapd-2.1.9/sieve'
### Making all in /home/ian/downloads/cyrus-imapd-2.1.9/acap
make[1]: Entering directory `/home/ian/downloads/cyrus-imapd-2.1.9/acap'
no/bin/compile_et ./acap_err.et
make[1]: no/bin/compile_et: Command not found
make[1]: *** [acap_err.h] Error 127
make[1]: Leaving directory `/home/ian/downloads/cyrus-imapd-2.1.9/acap'
make: *** [all] Error 1

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Gregory Chagnon 
Igor:
I get this error when I run testsaslauthd:
[root@Lunar]:/usr/src/cyrus-sasl-2.1.9/saslauthd> ./testsaslauthd -u 
cliff.clavin -p *
connect() : No such file or directory







From: Igor Brezac <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: Gregory Chagnon <[EMAIL PROTECTED]>
CC: [EMAIL PROTECTED]
Subject: Re: cyrus-sasl / ldap problem
Date: Tue, 29 Oct 2002 09:22:22 -0500 (EST)


Test saslauthd first.  cd $cyrus-sasl-src/saslauthd; make testsaslauthd
./testsaslauthd -u username -p password

If you do not get OK, check syslog for saslauthd errors.

-Igor

On Tue, 29 Oct 2002, Gregory Chagnon wrote:

> Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP.  User
> cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run imtest, 
here
> is the error I get...thanks everyone so much in advance:
>
> [root@Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin localhost
> S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
> C: C01 CAPABILITY
> S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT
> THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT
> LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
> S: C01 OK Completed
> Please enter your password:
> C: L01 LOGIN cliff.clavin {6}
> S: + go ahead
> C: 
> S: L01 NO Login failed: generic failure
> Authentication failed. generic failure
> Security strength factor: 0
> C: Q01 LOGOUT
> Connection closed.
>
>
> Here is the entry from /var/log/imap.log:
>
> Oct 29 08:47:14 Lunar master[6197]: about to exec 
/usr/libexec/cyrus/imapd
> Oct 29 08:47:14 Lunar imap[6197]: executed
> Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
> Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1] plaintext
> cliff.clavin SASL(-1): generic failure: checkpass failed
> Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0
>
>
> Here are my config files:
>
> <>
>
> configdirectory: /var/lib/imap
> partition-default: /var/spool/imap
> admins: cliff.clavin cyrus gchagnon
> allowanonymouslogin: no
> sieveuserhomedir: no
> sievedir: /var/lib/imap/sieve
> sendmail: /usr/sbin/sendmail
> hashimapspool: true
> sasl_pwcheck_method: saslauthd
> sasl_passwd_check: saslauthd
> sasl_ldap_server: localhost
> #sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
> sasl_ldap_basedn: dc=gregbox,dc=com
> sasl_mech_list: PLAIN
> tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
> tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
>
> <>
>
> ldap_servers: ldap://localhost/
> ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
> ldap_bind_pw: ***
>
> <>
> databaseldbm
> suffix  "dc=gregbox,dc=com"
> rootdn  "cn=Manager,dc=gregbox,dc=com"
> rootpw  ***
> directory   /var/lib/ldap
>
> index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
> index   cn,mail,surname,givenname   eq,subinitial
>
>
>
> _
> Protect your PC - get McAfee.com VirusScan Online
> http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
>
>

--
Igor


_
Unlimited Internet access -- and 2 months free!  Try MSN. 
http://resourcecenter.msn.com/access/plans/2monthsfree.asp

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Gregory Chagnon 
One thing I left out, here is an entry from /var/log/auth.log which is 
entered everytime I try imtest:

Oct 29 09:31:37 Lunar imapd[5495]: cannot connect to saslauthd server: No 
such file or directory







From: "Gregory Chagnon" <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED]
Subject: cyrus-sasl / ldap problem
Date: Tue, 29 Oct 2002 08:52:40 -0500

Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP.  User 
cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run imtest, here 
is the error I get...thanks everyone so much in advance:

[root@Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin localhost
S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS 
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT 
THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT 
LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN cliff.clavin {6}
S: + go ahead
C: 
S: L01 NO Login failed: generic failure
Authentication failed. generic failure
Security strength factor: 0
C: Q01 LOGOUT
Connection closed.


Here is the entry from /var/log/imap.log:

Oct 29 08:47:14 Lunar master[6197]: about to exec /usr/libexec/cyrus/imapd
Oct 29 08:47:14 Lunar imap[6197]: executed
Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1] plaintext 
cliff.clavin SASL(-1): generic failure: checkpass failed
Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0


Here are my config files:

<>

configdirectory: /var/lib/imap
partition-default: /var/spool/imap
admins: cliff.clavin cyrus gchagnon
allowanonymouslogin: no
sieveuserhomedir: no
sievedir: /var/lib/imap/sieve
sendmail: /usr/sbin/sendmail
hashimapspool: true
sasl_pwcheck_method: saslauthd
sasl_passwd_check: saslauthd
sasl_ldap_server: localhost
#sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
sasl_ldap_basedn: dc=gregbox,dc=com
sasl_mech_list: PLAIN
tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem

<>

ldap_servers: ldap://localhost/
ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
ldap_bind_pw: ***

<>
databaseldbm
suffix  "dc=gregbox,dc=com"
rootdn  "cn=Manager,dc=gregbox,dc=com"
rootpw  ***
directory   /var/lib/ldap

index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
index   cn,mail,surname,givenname   eq,subinitial



_
Protect your PC - get McAfee.com VirusScan Online 
http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963


_
Choose an Internet access plan right for you -- try MSN! 
http://resourcecenter.msn.com/access/plans/default.asp

Re: cyrus-sasl / ldap problem

2002-10-29 Thread Igor Brezac 

Test saslauthd first.  cd $cyrus-sasl-src/saslauthd; make testsaslauthd
./testsaslauthd -u username -p password

If you do not get OK, check syslog for saslauthd errors.

-Igor

On Tue, 29 Oct 2002, Gregory Chagnon wrote:

> Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP.  User
> cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run imtest, here
> is the error I get...thanks everyone so much in advance:
>
> [root@Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin localhost
> S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
> C: C01 CAPABILITY
> S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT
> THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT
> LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
> S: C01 OK Completed
> Please enter your password:
> C: L01 LOGIN cliff.clavin {6}
> S: + go ahead
> C: 
> S: L01 NO Login failed: generic failure
> Authentication failed. generic failure
> Security strength factor: 0
> C: Q01 LOGOUT
> Connection closed.
>
>
> Here is the entry from /var/log/imap.log:
>
> Oct 29 08:47:14 Lunar master[6197]: about to exec /usr/libexec/cyrus/imapd
> Oct 29 08:47:14 Lunar imap[6197]: executed
> Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
> Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1] plaintext
> cliff.clavin SASL(-1): generic failure: checkpass failed
> Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0
>
>
> Here are my config files:
>
> <>
>
> configdirectory: /var/lib/imap
> partition-default: /var/spool/imap
> admins: cliff.clavin cyrus gchagnon
> allowanonymouslogin: no
> sieveuserhomedir: no
> sievedir: /var/lib/imap/sieve
> sendmail: /usr/sbin/sendmail
> hashimapspool: true
> sasl_pwcheck_method: saslauthd
> sasl_passwd_check: saslauthd
> sasl_ldap_server: localhost
> #sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
> sasl_ldap_basedn: dc=gregbox,dc=com
> sasl_mech_list: PLAIN
> tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
> tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem
>
> <>
>
> ldap_servers: ldap://localhost/
> ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
> ldap_bind_pw: ***
>
> <>
> databaseldbm
> suffix  "dc=gregbox,dc=com"
> rootdn  "cn=Manager,dc=gregbox,dc=com"
> rootpw  ***
> directory   /var/lib/ldap
>
> index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
> index   cn,mail,surname,givenname   eq,subinitial
>
>
>
> _
> Protect your PC - get McAfee.com VirusScan Online
> http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963
>
>

-- 
Igor

Re: configure --without-krb fails, looking for Kerberos

2002-10-29 Thread Kendrick Vargas 
On Tue, 29 Oct 2002, Ian McDonald wrote:

> 
> - Original Message -
> From: "Lists" <[EMAIL PROTECTED]>
> To: "Cyrus-Info" <[EMAIL PROTECTED]>
> Sent: Monday, October 28, 2002 6:34 PM
> Subject: Re: configure --without-krb fails, looking for Kerberos
> 
> 
> > Ian,
> >
> > Try using "--with-auth=unix" instead of --without-des
> 
> Does this bit of the manual mean that if I do not want to store
> authorization information in /etc/passwd, because the mailbox users have
> nothing to do with the unix users, I need to use Kerberos?

Not at all. In fact in a typical install you usually have to work to get 
users authenticated against /etc/passwd. By default users come out of the 
/etc/sasldb database. You can compile modules to allow you to auth against 
mysql, krb, etc... 
-peace

> 
> From install-compile.html:
> --with-auth=METHOD
> Specifies the authorization (group membership) module to use. Currently
> implemented authorization modules are:
>   unix
>   Unix /etc/passwd and /etc/group file
>   krb
>   Kerberos principals (requires Kerberos libraries). Optionally, specify
> where to find Kerberos v4 with "--with-krb=DIR" IMPORTANT: The Kerberos v4
> support requires the DES library. Some vendor distributions of Kerberos,
> including the one with Solaris, do not have this support and cannot be used.
>   krb_pts
>   Kerberos principals with AFS PTserver groups (requires Kerberos and AFS
> libraries). Optionally, specify where the AFS libraries are found with
> "--with-afs=PATH". Also requires krb support as above.
> Any method of authenticating with SASL can be used with any authorization
> module.
> 
> 

-- 
Let he who is without clue kiss my ass

Re: configure --without-krb fails, looking for Kerberos

2002-10-29 Thread Hank Beatty 
Actually no. I read it as "--with-auth=AnythingButKerberos" :-)

There are many ways to configure unix auth. I'm using the saslauthd which
points to PAM which then points to a MS Active Directory server.

- Original Message -
From: "Ian McDonald" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, October 29, 2002 7:40 AM
Subject: Re: configure --without-krb fails, looking for Kerberos


>
> - Original Message -
> From: "Lists" <[EMAIL PROTECTED]>
> To: "Cyrus-Info" <[EMAIL PROTECTED]>
> Sent: Monday, October 28, 2002 6:34 PM
> Subject: Re: configure --without-krb fails, looking for Kerberos
>
>
> > Ian,
> >
> > Try using "--with-auth=unix" instead of --without-des
>
> Does this bit of the manual mean that if I do not want to store
> authorization information in /etc/passwd, because the mailbox users have
> nothing to do with the unix users, I need to use Kerberos?
>
> From install-compile.html:
> --with-auth=METHOD
> Specifies the authorization (group membership) module to use. Currently
> implemented authorization modules are:
>   unix
>   Unix /etc/passwd and /etc/group file
>   krb
>   Kerberos principals (requires Kerberos libraries). Optionally, specify
> where to find Kerberos v4 with "--with-krb=DIR" IMPORTANT: The Kerberos v4
> support requires the DES library. Some vendor distributions of Kerberos,
> including the one with Solaris, do not have this support and cannot be
used.
>   krb_pts
>   Kerberos principals with AFS PTserver groups (requires Kerberos and AFS
> libraries). Optionally, specify where the AFS libraries are found with
> "--with-afs=PATH". Also requires krb support as above.
> Any method of authenticating with SASL can be used with any authorization
> module.
>

Re: configure --without-krb fails, looking for Kerberos

2002-10-29 Thread Mika Iisakkila 
Ian McDonald wrote:

Try using "--with-auth=unix" instead of --without-des

Does this bit of the manual mean that if I do not want to store
authorization information in /etc/passwd, because the mailbox users have
nothing to do with the unix users, I need to use Kerberos?


--with-auth=unix only implies that group lookups are done through
/etc files. User authentication doesn't go to /etc/passwd, unless you
actually want to use such a method.

If you're interested, I have a small patch to disable /etc/passwd
and /etc/group lookups from imap 2.1.9 completely (you lose
group functionality with that). I needed it to prevent
sasl1/sasl2 conflicts and subsequent crashes through libnss_ldap.
Anyway, in a normal setup you can just forget about all this and
specify --with-auth=unix. Other methods, like auxprop+sasldb,
will still work without having to add the users in /etc.

--mika

cyrus-sasl / ldap problem

2002-10-29 Thread Gregory Chagnon 
Hi:I'm having a problem getting Cyrus IMAP to work with OpenLDAP.  User 
cliff.clavin is under ou=Users,dc=gregbox,dc=com.  When I run imtest, here 
is the error I get...thanks everyone so much in advance:

[root@Lunar]:/home/gchagnon> imtest -m login -a cliff.clavin localhost
S: * OK Lunar Cyrus IMAP4 v2.1.9-Invoca-RPM-2.1.9-6 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS 
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT 
THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT 
LIST-SUBSCRIBED ANNOTATEMORE X-NETSCAPE
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN cliff.clavin {6}
S: + go ahead
C: 
S: L01 NO Login failed: generic failure
Authentication failed. generic failure
Security strength factor: 0
C: Q01 LOGOUT
Connection closed.


Here is the entry from /var/log/imap.log:

Oct 29 08:47:14 Lunar master[6197]: about to exec /usr/libexec/cyrus/imapd
Oct 29 08:47:14 Lunar imap[6197]: executed
Oct 29 08:47:14 Lunar imapd[5489]: accepted connection
Oct 29 08:47:16 Lunar imapd[5489]: badlogin: Lunar[127.0.0.1] plaintext 
cliff.clavin SASL(-1): generic failure: checkpass failed
Oct 29 08:48:24 Lunar master[5446]: process 5489 exited, status 0


Here are my config files:

<>

configdirectory: /var/lib/imap
partition-default: /var/spool/imap
admins: cliff.clavin cyrus gchagnon
allowanonymouslogin: no
sieveuserhomedir: no
sievedir: /var/lib/imap/sieve
sendmail: /usr/sbin/sendmail
hashimapspool: true
sasl_pwcheck_method: saslauthd
sasl_passwd_check: saslauthd
sasl_ldap_server: localhost
#sasl_ldap_basedn: ou=Users,dc=gregbox,dc=com
sasl_ldap_basedn: dc=gregbox,dc=com
sasl_mech_list: PLAIN
tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem
tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem

<>

ldap_servers: ldap://localhost/
ldap_bind_dn: cn=Manager,dc=gregbox,dc=com
ldap_bind_pw: ***

<>
databaseldbm
suffix  "dc=gregbox,dc=com"
rootdn  "cn=Manager,dc=gregbox,dc=com"
rootpw  ***
directory   /var/lib/ldap

index   objectClass,uid,uidNumber,gidNumber,memberUid   eq
index   cn,mail,surname,givenname   eq,subinitial



_
Protect your PC - get McAfee.com VirusScan Online 
http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963

Re: configure --without-krb fails, looking for Kerberos

2002-10-29 Thread Ian McDonald 

- Original Message -
From: "Lists" <[EMAIL PROTECTED]>
To: "Cyrus-Info" <[EMAIL PROTECTED]>
Sent: Monday, October 28, 2002 6:34 PM
Subject: Re: configure --without-krb fails, looking for Kerberos


> Ian,
>
> Try using "--with-auth=unix" instead of --without-des

Does this bit of the manual mean that if I do not want to store
authorization information in /etc/passwd, because the mailbox users have
nothing to do with the unix users, I need to use Kerberos?

>From install-compile.html:
--with-auth=METHOD
Specifies the authorization (group membership) module to use. Currently
implemented authorization modules are:
  unix
  Unix /etc/passwd and /etc/group file
  krb
  Kerberos principals (requires Kerberos libraries). Optionally, specify
where to find Kerberos v4 with "--with-krb=DIR" IMPORTANT: The Kerberos v4
support requires the DES library. Some vendor distributions of Kerberos,
including the one with Solaris, do not have this support and cannot be used.
  krb_pts
  Kerberos principals with AFS PTserver groups (requires Kerberos and AFS
libraries). Optionally, specify where the AFS libraries are found with
"--with-afs=PATH". Also requires krb support as above.
Any method of authenticating with SASL can be used with any authorization
module.

Re: notifyd(8) documentation error?

2002-10-29 Thread Ken Murchison 
Quoting Mark Keasling <[EMAIL PROTECTED]>:

> Hi,
> 
> The notifyd documentation is apparently in error...
> 
> The notifyd(8) page says:
> 
>  mailto
>Email the notification. This method can ONLY be used in
> a
>Sieve 'notify' action as it requires a mailto: URL to be
>specified as an :option.


The code to parse the URL hasn't been written.  Right now, the :option can only 
be the recipient address.

-- 
Kenneth Murchison Oceana Matrix Ltd.
Software Engineer 21 Princeton Place
716-662-8973 x26  Orchard Park, NY 14127
--PGP Public Key--http://www.oceana.com/~ken/ksm.pgp

notifyd(8) documentation error?

2002-10-29 Thread Mark Keasling 
Hi,

The notifyd documentation is apparently in error...

The notifyd(8) page says:

 mailto
   Email the notification. This method can ONLY be used in a
   Sieve 'notify' action as it requires a mailto: URL to be
   specified as an :option.

Here are the results when I tried to use it as originally defined.

Syntax error:
notify :method "mailto"
   :option "mailto:me@;example.com?subject=sieve+mail+notification"
   :message "You got mail" ;

Syntax is okay but doesn't work:
notify :method "mailto"
   :options "mailto:me@;example.com?subject=sieve+mail+notification"
   :message "You got mail" ;
notify :method "mailto"
   :options "[EMAIL PROTECTED]?subject=sieve+mail+notification"
   :message "You got mail" ;

The notification is sent and then pingpongs between the mailserver and the firewall;
because neither host will accept 
to=<[EMAIL PROTECTED]?subject=sieve+mail+notification.example.com>

Sort of works:
notify :method "mailto"
   :options "mailto:me@;example.com"
   :message "You got mail" ;

The notification is sent and is received; however, the To header is:
  To: 

Seems to work:
notify :method "mailto"
   :options "[EMAIL PROTECTED]"
   :message "You got mail" ;

By examining the behavior of notifyd, the original definition seems to be incorrect
because the notify daemon is not parsing the :options value as a mailto: URL as is
stated; but simply passing the value straight to sendmail.

If that is the case, the man page should say:
 mailto
   Email the notification.  This method can ONLY be used with
   the Sieve 'notify' action because it requires specification of
   a destination address.  The destination address is given as an
   option.  For example this sieve script will send a notification
   to [EMAIL PROTECTED] whenever mail is received:
   require "notify" ;
   notify :method "mailto" :options "[EMAIL PROTECTED]" ;

I haven't tried a string list in the ":options" so I don't know if one will work
as expected.   Something like:
notify :method "mailto" :options ["[EMAIL PROTECTED]","[EMAIL PROTECTED]"]  ;

Regards,
Mark Keasling <[EMAIL PROTECTED]>