Re: Cyrus 2.2.x vs 2.3
Ken Murchison wrote: Changes to the Cyrus IMAP Server since 2.2.x I'm more curious about what led sites to deploy 2.3.x over 2.2.x and how the stability has been along with maintenance issues, if any, of staying up to date on the development branch. I'm excited about the feature list too. For me, the reason to consider 2.3.x over 2.2.x is the added sieve support and potentially replicated mailbox code. -- Scott Russell <[EMAIL PROTECTED]> IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
sendmail + cyrus-imapd + cyrus-sasl +ldap
Hi, i have been trying to install the cyrus-imapd to authenticate through sasl and i need sasl read it data from a ldap server. I'm running redhat AS 4 I manage to make work the sasl-2.1.21 with openldap-2.2.27 I compiled the sasl with this options: ./configure --prefix=/usr \ --with-plugindir=/usr/lib/sasl2 \ --with-rc4 \ --with-dblib=berkeley \ --enable-anon \ --enable-cram \ --enable-digest \ --enable-plain \ --enable-login \ --enable-ntlm \ --enable-ldapdb \ --with-ldap=/usr/local I compiled the cyrus-imapd-2.2.12 with this options: ./configure --enable-netscapehack \ --enable-annotatemore \ --enable-listext \ --enable-fulldirhash \ --enable-murder \ --without-ucdsnmp \ --with-perl \ --with-libwrap=/usr \ --with-cyrus-prefix= \ --with-auth=unix The /etc/saslauthd.conf file is: ldap_servers: ldap://localhost/ ldaps://localhost/ ldap_bind_dn: cn=someone,dc=my domain,dc=com ldap_password: x ldap_search_base: ou=mail_users,dc=my domain,dc=com ldap_mech: DIGEST_MD5 the /etc/imapd.conf file is: configdirectory: /var/imap partition-default: /var/spool/imap admins: postman lmtp_downcase_rcpt: 1 #authentication ldap sasl_pwcheck_method: saslauthd sasl_ldap_servers: ldap://localhost/ ldaps://localhost/ sasl_ldap_bind_dn: cn=someone,dc=mydomain,dc=com sasl_ldap_password: xxx sasl_ldap_basedn: ou=mail_users,dc=mydomain,dc=com sasl_ldapdb_mech: DIGEST-MD5 sasl_auxprop_plugin: ldap sasl_auto_transition: yes sasl_saslauthd_path: /var/state/saslauthd/mux sasl_sasldb_path: /etc/sasldb2 ##end ldap authentication virtualdomains: yes defaultdomain: mydomain.com but when i start the cyrus-imapd i get the following errors in syslog and auth.log: Aug 12 17:38:55 mail imap[8685]: auxpropfunc error invalid parameter supplied Aug 12 17:38:55 mail imap[8681]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: ldapdb Aug 12 17:38:55 mail imap[8682]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: ldapdb Aug 12 17:38:55 mail imap[8685]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: ldapdb Aug 12 17:38:55 mail imap[8687]: auxpropfunc error invalid parameter supplied Aug 12 17:38:55 mail imap[8686]: auxpropfunc error invalid parameter supplied Aug 12 17:38:55 mail pop3[8684]: auxpropfunc error invalid parameter supplied Aug 12 17:38:55 mail imap[8687]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: ldapdb Aug 12 17:38:55 mail imap[8686]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: ldapdb Aug 12 17:38:55 mail pop3[8684]: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: ldapdb I'm doing this because i'm migrating a qmail-vpopmail box to sendmail-cyrus-imapd box Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus 22 on Freebsd permission denied
Casper wrote: Virtualusers or not the userdatabase is the same and can be sql, sasldb, ldap and many more. But sasl2 should be configured to use /usr/local/etc/sasldb2.db (standard looks in /etc/sasldb). I have no /etc/sasldb only /usr/local/ect/sasldb22.db And the imap.conf use sasl_pwcheck: auxprop and look for the sasl2 auxpropplugin. sasl_pwcheck_method: auxprop And configure sasl with This specifies the sasldb file (when i installed mine the logs told me that sasl looked for salsbd in a totaly different place than cyrus... Try do add the debud log in /etc/syslogd.conf local6.debug/var/log/imapd.lo I did add that line to /etc/syslog.conf but the /var/log/imapd.log is empty and study the auth.log to... this is where sasl log it's activity ) ./configure --enable-auth-sasldb --with-dbpath=/etc/sasldb ---more more What am i configuring? and in /usr/local/lib/sasl2 (make Sendmail.cong Cyrus.conf and smtp.conf) here is my smtp.conf # This sets smtpd to authenticate using the saslauthd daemon. pwcheck_method: saslauthd # This allows only plain and login as the authentication mechanisms. mech_list: plain login here is my Sendmail.conf pwcheck_method: saslauthd Guess i am using saslauthd for authentication according to the above conf files it has been along time since i looked at this stuff. I have no cyrus.conf but you say i should make it like below then cyrus will use the sasldb and i should change my smtp.conf too do i need to change Sendmail i use postfix instead. Will making these changes break what I already have set up? pwcheck_method: auxprop sasldb_path: /etc/sasldb Try this and if you wonder more please come back. /Casper I need virtual users do i not need to use sasldb then? Simon Matter wrote: Simon Matter wrote: Simon Matter wrote: u mean this? /usr/local/etc/sasldb2.db No, you have configured to use saslauthd in imapd.conf. So, you have to configure and run saslauthd, did you? Yes have been using it for years with bincimap and postfix Hm, how could you use saslauthd with sasldb? Doesn't make sense to me. Sorry my bad i have both installed thought they worked together saslauthd checks sasldb2.db for passwords right? No, saslauthd is usually compiled without sasldb support. Checn man saslauthd Do you want to authenticate against system users, or where? sasldb Then you have to change your imapd.conf. Your config says that you want to use saslauthd, no sasldb. Casper wrote: Hello, look in /etc what is the sasldb called, sometimes saslds2 and sometimes sasldb only. This is a sasl configure option, but let me know this and then i can help you, i run FreeBSD and cyrus 2 and had the same problem.. /Casper On Tue, 16 Aug 2005 02:41:55 +0200, RYAN vAN GINNEKEN <[EMAIL PROTECTED]> wrote: Hello i use freebsd 4.11 stable, have been using BINC IMAP and cyrus-sasl-2.1.20_1 and cyrus-sasl-saslauthd-2.1.20_1 for imap and postfix Authentication. BINC IMAP is a great little program but does not have the support for virtual users that i need or the robustness of cyrus. Recently I been trying to get cyrus-imapd-2.2.12_1 with berkly db43-4.3.28 on my freebsd box have followed the instructions to the letter but when tried to run mkimap for the cyrus su it did not work so just ran it from the regular su account that seemed to work fine. I login as cyrus su then run the command cyradm localhost and then my password everything seems to work fine on the command line. However watching the auth.log i see this when i enter cyradm localhost Aug 15 18:24:14 tokyo imap[89348]: OTP unavailable because can't read/write key database /etc/opiekeys: Permission denied Then this when i enter a password Aug 15 18:25:03 tokyo imap[89348]: no user in db next i try to create a user like this createmailbox user.smith and get createmailbox:permission denied all the time please help what am i doing wrong? Have added the following to my /etc/syslog.conf but have an empty imapd.log the auth.log stuff seems to work ok. local6.debug/var/log/imapd.log here are a list or permissions for my directories inside /var drwxr-x--- 10 cyrus cyrus 512 Aug 15 18:09 imap inside /var/imap -rw--- 1 cyrus cyrus144 Aug 12 00:09 annotations.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:09 db drwx-- 2 cyrus cyrus512 Aug 15 18:09 db.backup1 drwx-- 2 cyrus cyrus512 Aug 15 17:39 db.backup2 -rw--- 1 cyrus cyrus 32768 Aug 12 04:00 deliver.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 log -rw--- 1 cyrus cyrus144 Aug 15 18:29 mailboxes.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 msg drwxr
Re: Cyrus 2.2.x vs 2.3
Etienne Goyer wrote: Ken Murchison wrote: * Added support for "unified" and "replicated" Murders. A Murder no longer has to have discrete frontend and backend servers; any one "unified" server can both proxy and serve local mailboxes (proxy functionality in proxyd and lmtpproxyd has been merged with imapd and lmtpd respectively), or all "replicated" servers can serve the same mailboxes from a shared filesystem. The new mupdate_config option in imapd.conf is used to determine whether a Murder is using a "traditional", "unified" or "replicated" configuration. * Ported/rewrote/integrated David Carter's mailspool replication code. Development sponsored by Columbia University. These two really got me excited. 2.3 will really be an important release for HA/scalability. Could somebody expand a little about 'all "replicated" servers can serve the same mailboxes from a shared filesystem' ? Assuming a number of servers serve mailboxes from a shared filesystem, there is no point in Murder anymore as any server in the pool have directly access to any mailbox in the shared filesystem, right ? I would consider the "replicated" Murder code experimental at best. I began writing it for a local university to use with a SAN filesystem , but I don't think it was ever deployed. With David Carter's replication code, use a "replicated" Murder is already obsolete. -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 2495 Main St. - Suite 401 716-604-0088 x26 Buffalo, NY 14214 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus 2.2.x vs 2.3
Ken Murchison wrote: * Added support for "unified" and "replicated" Murders. A Murder no longer has to have discrete frontend and backend servers; any one "unified" server can both proxy and serve local mailboxes (proxy functionality in proxyd and lmtpproxyd has been merged with imapd and lmtpd respectively), or all "replicated" servers can serve the same mailboxes from a shared filesystem. The new mupdate_config option in imapd.conf is used to determine whether a Murder is using a "traditional", "unified" or "replicated" configuration. * Ported/rewrote/integrated David Carter's mailspool replication code. Development sponsored by Columbia University. These two really got me excited. 2.3 will really be an important release for HA/scalability. Could somebody expand a little about 'all "replicated" servers can serve the same mailboxes from a shared filesystem' ? Assuming a number of servers serve mailboxes from a shared filesystem, there is no point in Murder anymore as any server in the pool have directly access to any mailbox in the shared filesystem, right ? Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus 2.2.x vs 2.3
Scott Russell wrote: Greets - I'm going to be rebuilding our cyrus imap 2.1.x server in the next month and trying to figure out which version of cyrus I should use next. I understand that 2.2.x is stable and that 2.3.x in CVS is the development however it appears that some sites have jumped to 2.3 anyway. (What really got me thinking about it was when I noticed fastmail.fm has deployed 2.3) In general, what are the advantages of 2.3 over 2.2.x for a basic site? We don't use murder but we do use SQL auth, sieve, postfix, and dspam on our IMAP server. I guess I'm just curious what the driving factor is that pushes people to use 2.3.x instead of the stable 2.2.x release. :) Changes to the Cyrus IMAP Server since 2.2.x * Added support for "unified" and "replicated" Murders. A Murder no longer has to have discrete frontend and backend servers; any one "unified" server can both proxy and serve local mailboxes (proxy functionality in proxyd and lmtpproxyd has been merged with imapd and lmtpd respectively), or all "replicated" servers can serve the same mailboxes from a shared filesystem. The new mupdate_config option in imapd.conf is used to determine whether a Murder is using a "traditional", "unified" or "replicated" configuration. * Ported/rewrote/integrated David Carter's mailspool replication code. Development sponsored by Columbia University. * Added support for "delayed" expunge, in which messages are removed from the mailbox index at the time of the EXPUNGE (hiding them from the client), but the message files and cache entries are left behind, to be purged at a later time by cyr_expire. This reduces the amount of I/O that takes place at the time of EXPUNGE and should result in greater responsiveness for the client, especially when expunging a large number of messages. The new expunge_mode option in imapd.conf controls whether expunges are "immediate" or "delayed". Development sponsored by FastMail. * Added support to place some/all mailbox metadata files (cyrus.* files) on a separate (probably high-speed) partition. See the new metapartition and metapartition_files options for details. Development sponsored by FastMail. * Added support for accessing subfolders of INBOX via POP3. See the new popsubfolders option for details. Development sponsored by FastMail. * Added support to lmtpd to do "fuzzy" mailbox matching on user+detail addresses. See the new lmtp_fuzzy_mailbox_match option for details. Development sponsored by FastMail. * Added new sieve_extensions option to allow individual Sieve extensions to be enabled/disabled. * The Sieve "include" extension is now supported. This also allows for global sieve scripts. See the new sieve_extensions options to enable it. * The Sieve "body" extension is now supported. See the new sieve_extensions option to enable it. Development sponsored by FastMail. * The $text$ variable for Sieve notify messages is now supported. Development sponsored by FastMail. * The MIME structure of a new message destined for multiple recipients is now only parsed once rather than once per delivery, resulting in better performance. Development sponsored by FastMail. * Support 64-bit quota usage (both per mailbox and for the entire quotaroot), based on a patch from Jeremy Rumpf. Development sponsored by FastMail. * Added new flushseenstate option which causes imapd to immediately flush changes in \Seen state to disk rather than caching them until the mailbox is closed. Enabling this option may fix \Seen state weirdness with MS Outlook, at the expense of performance/scalability. Based on a patch by John A. Tamplin ([EMAIL PROTECTED]). * The Sieve "copy" extension is now supported. * The IMAP "CATENATE" extension is now supported. -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 2495 Main St. - Suite 401 716-604-0088 x26 Buffalo, NY 14214 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Cyrus 2.2.x vs 2.3
Greets - I'm going to be rebuilding our cyrus imap 2.1.x server in the next month and trying to figure out which version of cyrus I should use next. I understand that 2.2.x is stable and that 2.3.x in CVS is the development however it appears that some sites have jumped to 2.3 anyway. (What really got me thinking about it was when I noticed fastmail.fm has deployed 2.3) In general, what are the advantages of 2.3 over 2.2.x for a basic site? We don't use murder but we do use SQL auth, sieve, postfix, and dspam on our IMAP server. I guess I'm just curious what the driving factor is that pushes people to use 2.3.x instead of the stable 2.2.x release. :) -- Scott Russell <[EMAIL PROTECTED]> IBM Linux Technology Center System Admin Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
user authentication
Hi, I have some problems authenticating the users against LDAP. I am using suse and have set up the passwords to be useable for a short time after they expired, to allow peope which might be on holidays to login and change their user password. this information is stored in ldap, and is retrieved via nss_ldap and pam_ldap. is there a way to allow the imapd to honour these configured days after the expiration date of the password? kind regards Sebastian -- Sebastian ReitenbachTel.: ++49-(0)3381-8904-305 RapidEye AG Fax: ++49-(0)3381-8904-101 Friedrich-Franz-Str. 19 e-mail:[EMAIL PROTECTED] D-14770 Brandenburg web:http://www.rapideye.de Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus 22 on Freebsd permission denied
I need virtual users do i not need to use sasldb then? Simon Matter wrote: Simon Matter wrote: Simon Matter wrote: u mean this? /usr/local/etc/sasldb2.db No, you have configured to use saslauthd in imapd.conf. So, you have to configure and run saslauthd, did you? Yes have been using it for years with bincimap and postfix Hm, how could you use saslauthd with sasldb? Doesn't make sense to me. Sorry my bad i have both installed thought they worked together saslauthd checks sasldb2.db for passwords right? No, saslauthd is usually compiled without sasldb support. Checn man saslauthd Do you want to authenticate against system users, or where? sasldb Then you have to change your imapd.conf. Your config says that you want to use saslauthd, no sasldb. Casper wrote: Hello, look in /etc what is the sasldb called, sometimes saslds2 and sometimes sasldb only. This is a sasl configure option, but let me know this and then i can help you, i run FreeBSD and cyrus 2 and had the same problem.. /Casper On Tue, 16 Aug 2005 02:41:55 +0200, RYAN vAN GINNEKEN <[EMAIL PROTECTED]> wrote: Hello i use freebsd 4.11 stable, have been using BINC IMAP and cyrus-sasl-2.1.20_1 and cyrus-sasl-saslauthd-2.1.20_1 for imap and postfix Authentication. BINC IMAP is a great little program but does not have the support for virtual users that i need or the robustness of cyrus. Recently I been trying to get cyrus-imapd-2.2.12_1 with berkly db43-4.3.28 on my freebsd box have followed the instructions to the letter but when tried to run mkimap for the cyrus su it did not work so just ran it from the regular su account that seemed to work fine. I login as cyrus su then run the command cyradm localhost and then my password everything seems to work fine on the command line. However watching the auth.log i see this when i enter cyradm localhost Aug 15 18:24:14 tokyo imap[89348]: OTP unavailable because can't read/write key database /etc/opiekeys: Permission denied Then this when i enter a password Aug 15 18:25:03 tokyo imap[89348]: no user in db next i try to create a user like this createmailbox user.smith and get createmailbox:permission denied all the time please help what am i doing wrong? Have added the following to my /etc/syslog.conf but have an empty imapd.log the auth.log stuff seems to work ok. local6.debug/var/log/imapd.log here are a list or permissions for my directories inside /var drwxr-x--- 10 cyrus cyrus 512 Aug 15 18:09 imap inside /var/imap -rw--- 1 cyrus cyrus144 Aug 12 00:09 annotations.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:09 db drwx-- 2 cyrus cyrus512 Aug 15 18:09 db.backup1 drwx-- 2 cyrus cyrus512 Aug 15 17:39 db.backup2 -rw--- 1 cyrus cyrus 32768 Aug 12 04:00 deliver.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 log -rw--- 1 cyrus cyrus144 Aug 15 18:29 mailboxes.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 msg drwxr-xr-x 2 cyrus cyrus512 Aug 15 18:30 proc drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 ptclient drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:36 socket -rw--- 1 cyrus cyrus 32768 Aug 12 04:00 tls_sessions.db inside /var/spool drwxr-x--- 3 cyrus cyrus 512 Aug 12 00:02 imap inside /var/spool/imap drwxr-xr-x 2 cyrus cyrus 512 Aug 12 00:02 stage. here are the contents of my imap.conf configdirectory: /var/imap partition-default: /var/spool/imap admins: rmvg sasl_pwcheck_method: saslauthd Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: sieveshell to remote server [auf Viren überprüft]
Alan Thew schrieb am 12.08.2005 14:43: Have you tried sivtest and did it allow a login? Same here. Without "--authname" after the proxyauth with the ldapdb-saslid the local unix account is communicated as saslid, no change to the "--user=username" is done. [I thought, with "--authname" I can use sieveshell/sivtest unix account independently.] With "--authname=aname" after the proxyauth with the ldapdb-saslid proxyauth switches to this "aname", but then no switch to "--user=username" is done. If I want to switch to "username", I have to put it in "--authname". Hans Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus 22 on Freebsd permission denied
> Simon Matter wrote: > >>>Simon Matter wrote: >>> >>> >>> >u mean this? >/usr/local/etc/sasldb2.db > > > > No, you have configured to use saslauthd in imapd.conf. So, you have to configure and run saslauthd, did you? >>>Yes have been using it for years with bincimap and postfix >>> >>> >> >>Hm, how could you use saslauthd with sasldb? Doesn't make sense to me. >> >> >> > Sorry my bad i have both installed thought they worked together > saslauthd checks sasldb2.db for passwords right? No, saslauthd is usually compiled without sasldb support. Checn man saslauthd > Do you want to authenticate against system users, or where? >>>sasldb >>> >>> >> >>Then you have to change your imapd.conf. Your config says that you want >> to >>use saslauthd, no sasldb. >> >> >> >Casper wrote: > > > > > >>Hello, look in /etc what is the sasldb called, sometimes saslds2 and >>sometimes sasldb only. >> >>This is a sasl configure option, but let me know this and then i can >>help you, i run FreeBSD and cyrus 2 and had the same problem.. >> >>/Casper >> >>On Tue, 16 Aug 2005 02:41:55 +0200, RYAN vAN GINNEKEN >><[EMAIL PROTECTED]> wrote: >> >> >> >> >> >>>Hello i use freebsd 4.11 stable, have been using BINC IMAP and >>>cyrus-sasl-2.1.20_1 and cyrus-sasl-saslauthd-2.1.20_1 for imap and >>>postfix Authentication. BINC IMAP is a great little program but does >>>not have the support for virtual users that i need or the >>> robustness >>>of cyrus. Recently I been trying to get cyrus-imapd-2.2.12_1 with >>>berkly db43-4.3.28 on my freebsd box have followed the instructions >>>to the letter but when tried to run mkimap for the cyrus su it did >>>not work so just ran it from the regular su account that seemed to >>>work fine. >>> >>>I login as cyrus su then run the command cyradm localhost and then >>>my password everything seems to work fine on the command line. >>>However watching the auth.log i see this when i enter cyradm >>> localhost >>>Aug 15 18:24:14 tokyo imap[89348]: OTP unavailable because can't >>>read/write key database /etc/opiekeys: Permission denied >>> >>>Then this when i enter a password >>>Aug 15 18:25:03 tokyo imap[89348]: no user in db >>> >>>next i try to create a user like this createmailbox user.smith and >>>get createmailbox:permission denied all the time please help what >>> am >>>i doing wrong? >>> >>>Have added the following to my /etc/syslog.conf but have an empty >>>imapd.log the auth.log stuff seems to work ok. >>> >>>local6.debug/var/log/imapd.log >>> >>>here are a list or permissions for my directories >>> >>>inside /var >>>drwxr-x--- 10 cyrus cyrus 512 Aug 15 18:09 imap >>> >>>inside /var/imap >>>-rw--- 1 cyrus cyrus144 Aug 12 00:09 annotations.db >>>drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:09 db >>>drwx-- 2 cyrus cyrus512 Aug 15 18:09 db.backup1 >>>drwx-- 2 cyrus cyrus512 Aug 15 17:39 db.backup2 >>>-rw--- 1 cyrus cyrus 32768 Aug 12 04:00 deliver.db >>>drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 log >>>-rw--- 1 cyrus cyrus144 Aug 15 18:29 mailboxes.db >>>drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 msg >>>drwxr-xr-x 2 cyrus cyrus512 Aug 15 18:30 proc >>>drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 ptclient >>>drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:36 socket >>>-rw--- 1 cyrus cyrus 32768 Aug 12 04:00 tls_sessions.db >>> >>>inside /var/spool >>>drwxr-x--- 3 cyrus cyrus 512 Aug 12 00:02 imap >>> >>>inside /var/spool/imap >>>drwxr-xr-x 2 cyrus cyrus 512 Aug 12 00:02 stage. >>> >>>here are the contents of my imap.conf >>> >>>configdirectory: /var/imap >>>partition-default: /var/spool/imap >>>admins: rmvg >>>sasl_pwcheck_method: saslauthd >>> >>> >>>Cyrus Home Page: http://asg.web.cmu.edu/cyrus >>>Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu >>>List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html >>> >>> >>> >>> >>> >>> >> >> >> > >Cyrus Home Page: http://asg.web.cmu.edu/cyrus >Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu >List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > > > > > > >>> >>> >> >> >> > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus 22 on Freebsd permission denied
Simon Matter wrote: Simon Matter wrote: u mean this? /usr/local/etc/sasldb2.db No, you have configured to use saslauthd in imapd.conf. So, you have to configure and run saslauthd, did you? Yes have been using it for years with bincimap and postfix Hm, how could you use saslauthd with sasldb? Doesn't make sense to me. Sorry my bad i have both installed thought they worked together saslauthd checks sasldb2.db for passwords right? Do you want to authenticate against system users, or where? sasldb Then you have to change your imapd.conf. Your config says that you want to use saslauthd, no sasldb. Casper wrote: Hello, look in /etc what is the sasldb called, sometimes saslds2 and sometimes sasldb only. This is a sasl configure option, but let me know this and then i can help you, i run FreeBSD and cyrus 2 and had the same problem.. /Casper On Tue, 16 Aug 2005 02:41:55 +0200, RYAN vAN GINNEKEN <[EMAIL PROTECTED]> wrote: Hello i use freebsd 4.11 stable, have been using BINC IMAP and cyrus-sasl-2.1.20_1 and cyrus-sasl-saslauthd-2.1.20_1 for imap and postfix Authentication. BINC IMAP is a great little program but does not have the support for virtual users that i need or the robustness of cyrus. Recently I been trying to get cyrus-imapd-2.2.12_1 with berkly db43-4.3.28 on my freebsd box have followed the instructions to the letter but when tried to run mkimap for the cyrus su it did not work so just ran it from the regular su account that seemed to work fine. I login as cyrus su then run the command cyradm localhost and then my password everything seems to work fine on the command line. However watching the auth.log i see this when i enter cyradm localhost Aug 15 18:24:14 tokyo imap[89348]: OTP unavailable because can't read/write key database /etc/opiekeys: Permission denied Then this when i enter a password Aug 15 18:25:03 tokyo imap[89348]: no user in db next i try to create a user like this createmailbox user.smith and get createmailbox:permission denied all the time please help what am i doing wrong? Have added the following to my /etc/syslog.conf but have an empty imapd.log the auth.log stuff seems to work ok. local6.debug/var/log/imapd.log here are a list or permissions for my directories inside /var drwxr-x--- 10 cyrus cyrus 512 Aug 15 18:09 imap inside /var/imap -rw--- 1 cyrus cyrus144 Aug 12 00:09 annotations.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:09 db drwx-- 2 cyrus cyrus512 Aug 15 18:09 db.backup1 drwx-- 2 cyrus cyrus512 Aug 15 17:39 db.backup2 -rw--- 1 cyrus cyrus 32768 Aug 12 04:00 deliver.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 log -rw--- 1 cyrus cyrus144 Aug 15 18:29 mailboxes.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 msg drwxr-xr-x 2 cyrus cyrus512 Aug 15 18:30 proc drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 ptclient drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:36 socket -rw--- 1 cyrus cyrus 32768 Aug 12 04:00 tls_sessions.db inside /var/spool drwxr-x--- 3 cyrus cyrus 512 Aug 12 00:02 imap inside /var/spool/imap drwxr-xr-x 2 cyrus cyrus 512 Aug 12 00:02 stage. here are the contents of my imap.conf configdirectory: /var/imap partition-default: /var/spool/imap admins: rmvg sasl_pwcheck_method: saslauthd Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus 22 on Freebsd permission denied
> Simon Matter wrote: > >>>u mean this? >>>/usr/local/etc/sasldb2.db >>> >>> >> >>No, you have configured to use saslauthd in imapd.conf. So, you have to >>configure and run saslauthd, did you? >> > Yes have been using it for years with bincimap and postfix Hm, how could you use saslauthd with sasldb? Doesn't make sense to me. > >> Do you want to authenticate against >>system users, or where? >> >> > sasldb Then you have to change your imapd.conf. Your config says that you want to use saslauthd, no sasldb. > >> >> >>>Casper wrote: >>> >>> >>> Hello, look in /etc what is the sasldb called, sometimes saslds2 and sometimes sasldb only. This is a sasl configure option, but let me know this and then i can help you, i run FreeBSD and cyrus 2 and had the same problem.. /Casper On Tue, 16 Aug 2005 02:41:55 +0200, RYAN vAN GINNEKEN <[EMAIL PROTECTED]> wrote: >Hello i use freebsd 4.11 stable, have been using BINC IMAP and >cyrus-sasl-2.1.20_1 and cyrus-sasl-saslauthd-2.1.20_1 for imap and >postfix Authentication. BINC IMAP is a great little program but does >not have the support for virtual users that i need or the robustness >of cyrus. Recently I been trying to get cyrus-imapd-2.2.12_1 with >berkly db43-4.3.28 on my freebsd box have followed the instructions >to the letter but when tried to run mkimap for the cyrus su it did >not work so just ran it from the regular su account that seemed to >work fine. > >I login as cyrus su then run the command cyradm localhost and then >my password everything seems to work fine on the command line. >However watching the auth.log i see this when i enter cyradm localhost >Aug 15 18:24:14 tokyo imap[89348]: OTP unavailable because can't >read/write key database /etc/opiekeys: Permission denied > >Then this when i enter a password >Aug 15 18:25:03 tokyo imap[89348]: no user in db > >next i try to create a user like this createmailbox user.smith and >get createmailbox:permission denied all the time please help what am >i doing wrong? > >Have added the following to my /etc/syslog.conf but have an empty >imapd.log the auth.log stuff seems to work ok. > >local6.debug/var/log/imapd.log > >here are a list or permissions for my directories > >inside /var >drwxr-x--- 10 cyrus cyrus 512 Aug 15 18:09 imap > >inside /var/imap >-rw--- 1 cyrus cyrus144 Aug 12 00:09 annotations.db >drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:09 db >drwx-- 2 cyrus cyrus512 Aug 15 18:09 db.backup1 >drwx-- 2 cyrus cyrus512 Aug 15 17:39 db.backup2 >-rw--- 1 cyrus cyrus 32768 Aug 12 04:00 deliver.db >drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 log >-rw--- 1 cyrus cyrus144 Aug 15 18:29 mailboxes.db >drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 msg >drwxr-xr-x 2 cyrus cyrus512 Aug 15 18:30 proc >drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 ptclient >drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:36 socket >-rw--- 1 cyrus cyrus 32768 Aug 12 04:00 tls_sessions.db > >inside /var/spool >drwxr-x--- 3 cyrus cyrus 512 Aug 12 00:02 imap > >inside /var/spool/imap >drwxr-xr-x 2 cyrus cyrus 512 Aug 12 00:02 stage. > >here are the contents of my imap.conf > >configdirectory: /var/imap >partition-default: /var/spool/imap >admins: rmvg >sasl_pwcheck_method: saslauthd > > >Cyrus Home Page: http://asg.web.cmu.edu/cyrus >Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu >List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > > > > >>> >>>Cyrus Home Page: http://asg.web.cmu.edu/cyrus >>>Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu >>>List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html >>> >>> >>> >>> >> >> >> > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus 22 on Freebsd permission denied
> u mean this? > /usr/local/etc/sasldb2.db No, you have configured to use saslauthd in imapd.conf. So, you have to configure and run saslauthd, did you? Do you want to authenticate against system users, or where? > > Casper wrote: > >> Hello, look in /etc what is the sasldb called, sometimes saslds2 and >> sometimes sasldb only. >> >> This is a sasl configure option, but let me know this and then i can >> help you, i run FreeBSD and cyrus 2 and had the same problem.. >> >> /Casper >> >> On Tue, 16 Aug 2005 02:41:55 +0200, RYAN vAN GINNEKEN >> <[EMAIL PROTECTED]> wrote: >> >>> Hello i use freebsd 4.11 stable, have been using BINC IMAP and >>> cyrus-sasl-2.1.20_1 and cyrus-sasl-saslauthd-2.1.20_1 for imap and >>> postfix Authentication. BINC IMAP is a great little program but does >>> not have the support for virtual users that i need or the robustness >>> of cyrus. Recently I been trying to get cyrus-imapd-2.2.12_1 with >>> berkly db43-4.3.28 on my freebsd box have followed the instructions >>> to the letter but when tried to run mkimap for the cyrus su it did >>> not work so just ran it from the regular su account that seemed to >>> work fine. >>> >>> I login as cyrus su then run the command cyradm localhost and then >>> my password everything seems to work fine on the command line. >>> However watching the auth.log i see this when i enter cyradm localhost >>> Aug 15 18:24:14 tokyo imap[89348]: OTP unavailable because can't >>> read/write key database /etc/opiekeys: Permission denied >>> >>> Then this when i enter a password >>> Aug 15 18:25:03 tokyo imap[89348]: no user in db >>> >>> next i try to create a user like this createmailbox user.smith and >>> get createmailbox:permission denied all the time please help what am >>> i doing wrong? >>> >>> Have added the following to my /etc/syslog.conf but have an empty >>> imapd.log the auth.log stuff seems to work ok. >>> >>> local6.debug/var/log/imapd.log >>> >>> here are a list or permissions for my directories >>> >>> inside /var >>> drwxr-x--- 10 cyrus cyrus 512 Aug 15 18:09 imap >>> >>> inside /var/imap >>> -rw--- 1 cyrus cyrus144 Aug 12 00:09 annotations.db >>> drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:09 db >>> drwx-- 2 cyrus cyrus512 Aug 15 18:09 db.backup1 >>> drwx-- 2 cyrus cyrus512 Aug 15 17:39 db.backup2 >>> -rw--- 1 cyrus cyrus 32768 Aug 12 04:00 deliver.db >>> drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 log >>> -rw--- 1 cyrus cyrus144 Aug 15 18:29 mailboxes.db >>> drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 msg >>> drwxr-xr-x 2 cyrus cyrus512 Aug 15 18:30 proc >>> drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 ptclient >>> drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:36 socket >>> -rw--- 1 cyrus cyrus 32768 Aug 12 04:00 tls_sessions.db >>> >>> inside /var/spool >>> drwxr-x--- 3 cyrus cyrus 512 Aug 12 00:02 imap >>> >>> inside /var/spool/imap >>> drwxr-xr-x 2 cyrus cyrus 512 Aug 12 00:02 stage. >>> >>> here are the contents of my imap.conf >>> >>> configdirectory: /var/imap >>> partition-default: /var/spool/imap >>> admins: rmvg >>> sasl_pwcheck_method: saslauthd >>> >>> >>> Cyrus Home Page: http://asg.web.cmu.edu/cyrus >>> Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu >>> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html >>> >>> >> >> >> > > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > > Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus 22 on Freebsd permission denied
Simon Matter wrote: u mean this? /usr/local/etc/sasldb2.db No, you have configured to use saslauthd in imapd.conf. So, you have to configure and run saslauthd, did you? Yes have been using it for years with bincimap and postfix Do you want to authenticate against system users, or where? sasldb Casper wrote: Hello, look in /etc what is the sasldb called, sometimes saslds2 and sometimes sasldb only. This is a sasl configure option, but let me know this and then i can help you, i run FreeBSD and cyrus 2 and had the same problem.. /Casper On Tue, 16 Aug 2005 02:41:55 +0200, RYAN vAN GINNEKEN <[EMAIL PROTECTED]> wrote: Hello i use freebsd 4.11 stable, have been using BINC IMAP and cyrus-sasl-2.1.20_1 and cyrus-sasl-saslauthd-2.1.20_1 for imap and postfix Authentication. BINC IMAP is a great little program but does not have the support for virtual users that i need or the robustness of cyrus. Recently I been trying to get cyrus-imapd-2.2.12_1 with berkly db43-4.3.28 on my freebsd box have followed the instructions to the letter but when tried to run mkimap for the cyrus su it did not work so just ran it from the regular su account that seemed to work fine. I login as cyrus su then run the command cyradm localhost and then my password everything seems to work fine on the command line. However watching the auth.log i see this when i enter cyradm localhost Aug 15 18:24:14 tokyo imap[89348]: OTP unavailable because can't read/write key database /etc/opiekeys: Permission denied Then this when i enter a password Aug 15 18:25:03 tokyo imap[89348]: no user in db next i try to create a user like this createmailbox user.smith and get createmailbox:permission denied all the time please help what am i doing wrong? Have added the following to my /etc/syslog.conf but have an empty imapd.log the auth.log stuff seems to work ok. local6.debug/var/log/imapd.log here are a list or permissions for my directories inside /var drwxr-x--- 10 cyrus cyrus 512 Aug 15 18:09 imap inside /var/imap -rw--- 1 cyrus cyrus144 Aug 12 00:09 annotations.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:09 db drwx-- 2 cyrus cyrus512 Aug 15 18:09 db.backup1 drwx-- 2 cyrus cyrus512 Aug 15 17:39 db.backup2 -rw--- 1 cyrus cyrus 32768 Aug 12 04:00 deliver.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 log -rw--- 1 cyrus cyrus144 Aug 15 18:29 mailboxes.db drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 msg drwxr-xr-x 2 cyrus cyrus512 Aug 15 18:30 proc drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:02 ptclient drwxr-xr-x 2 cyrus cyrus512 Aug 12 00:36 socket -rw--- 1 cyrus cyrus 32768 Aug 12 04:00 tls_sessions.db inside /var/spool drwxr-x--- 3 cyrus cyrus 512 Aug 12 00:02 imap inside /var/spool/imap drwxr-xr-x 2 cyrus cyrus 512 Aug 12 00:02 stage. here are the contents of my imap.conf configdirectory: /var/imap partition-default: /var/spool/imap admins: rmvg sasl_pwcheck_method: saslauthd Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
