Tim Branson wrote:
I am in the process of putting in a new mail server. Apparently this
distribution of SUSE 8.2 has some weird things wrong with Cyrus and
SASL, or it's just me. I would like to allow the following:
1. User accounts on the machine will have mailboxes and authenticate
with the login authentication
2. PAM must be the method of choice for authentication
Here are the config files and the log entries I received.
/etc/imapd.conf
configdirectory: /var/lib/imap
partition-default: /var/spool/imap
sievedir: /var/lib/sieve
admins: cyrus
allowanonymouslogin: no
autocreatequota: 1
reject8bit: no
quotawarn: 90
timeout: 30
poptimeout: 10
dracinterval: 0
drachost: localhost
sasl_pwcheck_method: plain
^^
This isn't valid. If you want to use PAM, then this should be
'saslauthd'. And you should run 'saslauthd -a pam'
If you only want to use plaintext authentication, then you probably also
want to add:
sasl_mech_list: PLAIN LOGIN
lmtp_overquota_perm_failure: no
#
# if you want TLS, you have to generate certificates and keys
#
#tls_cert_file: /usr/ssl/certs/cert.pem
#tls_key_file: /usr/ssl/certs/skey.pem
#tls_ca_file: /usr/ssl/CA/CAcert.pem
#tls_ca_path: /usr/ssl/CA
/etc/cyrus.conf
# standard standalone server implementation
START {
# do not delete this entry!
recover cmd=ctl_cyrusdb -r
# this is only necessary if using idled for IMAP IDLE
# idled cmd=idled
}
# UNIX sockets start with a slash and are put into /var/lib/imap/socket
SERVICES {
# add or remove based on preferences
imapcmd=imapd listen=imap prefork=0
# imaps cmd=imapd -s listen=imaps prefork=0
pop3cmd=pop3d listen=pop3 prefork=0
# pop3s cmd=pop3d -s listen=pop3s prefork=0
sieve cmd=timsieved listen=sieve prefork=0
# at least one LMTP is required for delivery
# lmtp cmd=lmtpd listen=lmtp prefork=0
lmtpunix cmd=lmtpd listen=/var/lib/imap/socket/lmtp prefork=0
# this is only necessary if using notifications
# notify cmd=notifyd listen=/var/lib/imap/socket/notify
proto=udp prefork=1
}
EVENTS {
# this is required
checkpoint cmd=ctl_cyrusdb -c period=30
# this is only necessary if using duplicate delivery suppression
delprune cmd=ctl_deliver -E 3 period=1440
# this is only necessary if caching TLS sessions
tlsprune cmd=tls_prune period=1440
# Uncomment the next entry, if you want to automatically remove
# old messages of EVERY user.
# This example calls ipurge every 60 minutes and ipurge will delete
# ALL messages older then 30 days.
# enter 'man 8 ipurge' for more details
# cleanup cmd=ipurge -d 30 -f period=60
}
/var/log/messages
Dec 12 00:24:41 ms01 master[3932]: process 5143 exited, status 0
Dec 12 00:37:51 ms01 sshd[5167]: Accepted password for root from
:::192.168.0.173 port 1084
Dec 12 00:40:11 ms01 sshd[5285]: Accepted password for cyrus from
:::192.168.0.173 port 1085
Dec 12 00:40:23 ms01 perl: No worthy mechs found
Dec 12 00:40:26 ms01 imapd[5308]: Login disabled user=cyrus auth=cyrus
host=localhost [127.0.0.1]
Dec 12 00:40:32 ms01 perl: No worthy mechs found
Dec 12 00:40:35 ms01 imapd[5313]: Login disabled user=cyrus auth=cyrus
host=localhost [127.0.0.1]
Dec 12 00:41:00 ms01 imapd[5321]: Login disabled user=cyrus auth=cyrus
host=localhost [127.0.0.1]
Dec 12 00:42:30 ms01 perl: No worthy mechs found
Dec 12 00:42:32 ms01 imapd[5337]: Login disabled user=root auth=root
host=localhost [127.0.0.1]
Regards.
Tim Branson.
Manager of Information Technology.
331 Mallory Station Road
Franklin, TN 37067
Phone: 615-224-1007
Fax: 615-224-1414
Cell:615-456-5489
Email: [EMAIL PROTECTED]
Web Page: http://www.leecompany.com http://www.leecompany.com/
*/Working together for success/*
--
Kenneth Murchison Oceana Matrix Ltd.
Software Engineer 21 Princeton Place
716-662-8973 x26 Orchard Park, NY 14127
--PGP Public Key--http://www.oceana.com/~ken/ksm.pgp