Login disabled user=cyrus - Installing new mail server - No worth y mechs found
I am in the process of putting in a new mail server.
Apparently this distribution of SUSE 8.2 has some weird things wrong with Cyrus
and SASL, or it's just me. I would like to allow the following:
User accounts on the machine will have mailboxes and
authenticate with the login authentication
PAM must be the method of choice for authentication
Here are the config files and the log entries I received.
/etc/imapd.conf
configdirectory: /var/lib/imap
partition-default: /var/spool/imap
sievedir: /var/lib/sieve
admins: cyrus
allowanonymouslogin: no
autocreatequota: 1
reject8bit: no
quotawarn: 90
timeout: 30
poptimeout: 10
dracinterval: 0
drachost: localhost
sasl_pwcheck_method: plain
lmtp_overquota_perm_failure:
no
#
# if you want TLS, you have
to generate certificates and keys
#
#tls_cert_file: /usr/ssl/certs/cert.pem
#tls_key_file: /usr/ssl/certs/skey.pem
#tls_ca_file: /usr/ssl/CA/CAcert.pem
#tls_ca_path: /usr/ssl/CA
/etc/cyrus.conf
# standard standalone server
implementation
START {
# do not delete this
entry!
recover cmd=ctl_cyrusdb
-r
# this is only
necessary if using idled for IMAP IDLE
# idled cmd=idled
}
# UNIX sockets start with a
slash and are put into /var/lib/imap/socket
SERVICES {
# add or remove based
on preferences
imap cmd=imapd
listen=imap prefork=0
# imaps cmd=imapd
-s listen=imaps prefork=0
pop3 cmd=pop3d
listen=pop3 prefork=0
# pop3s cmd=pop3d
-s listen=pop3s prefork=0
sieve cmd=timsieved
listen=sieve prefork=0
# at least one LMTP
is required for delivery
# lmtp cmd=lmtpd
listen=lmtp prefork=0
lmtpunix cmd=lmtpd
listen=/var/lib/imap/socket/lmtp prefork=0
# this is only
necessary if using notifications
# notify cmd=notifyd
listen=/var/lib/imap/socket/notify proto=udp prefork=1
}
EVENTS {
# this is required
checkpoint cmd=ctl_cyrusdb
-c period=30
# this is only
necessary if using duplicate delivery suppression
delprune cmd=ctl_deliver
-E 3 period=1440
# this is only
necessary if caching TLS sessions
tlsprune cmd=tls_prune
period=1440
# Uncomment the next
entry, if you want to automatically remove
# old messages of
EVERY user.
# This example calls ipurge
every 60 minutes and ipurge will delete
# ALL messages older
then 30 days.
# enter 'man 8 ipurge'
for more details
# cleanup
cmd=ipurge -d 30 -f period=60
}
/var/log/messages
Dec 12 00:24:41 ms01 master[3932]: process
5143 exited, status 0
Dec 12 00:37:51 ms01 sshd[5167]: Accepted
password for root from :::192.168.0.173 port 1084
Dec 12 00:40:11 ms01 sshd[5285]: Accepted
password for cyrus from :::192.168.0.173 port 1085
Dec 12 00:40:23 ms01 perl: No worthy mechs
found
Dec 12 00:40:26 ms01 imapd[5308]: Login
disabled user=cyrus auth=cyrus host=localhost [127.0.0.1]
Dec 12 00:40:32 ms01 perl: No worthy mechs
found
Dec 12 00:40:35 ms01 imapd[5313]: Login
disabled user=cyrus auth=cyrus host=localhost [127.0.0.1]
Dec 12 00:41:00 ms01 imapd[5321]: Login
disabled user=cyrus auth=cyrus host=localhost [127.0.0.1]
Dec 12 00:42:30 ms01 perl: No worthy mechs
found
Dec 12 00:42:32 ms01 imapd[5337]: Login
disabled user=root auth=root host=localhost [127.0.0.1]
Regards.
Tim Branson.
Manager
of Information Technology.
331 Mallory Station Road
Franklin, TN
37067
Phone: 615-224-1007
Fax:
615-224-1414
Cell:
615-456-5489
Email: [EMAIL PROTECTED]
Web
Page: http://www.leecompany.com
Working
together for success
attachment: image001.jpg
Re: Login disabled user=cyrus - Installing new mail server - No worth y mechs found
Tim Branson wrote:
I am in the process of putting in a new mail server. Apparently this
distribution of SUSE 8.2 has some weird things wrong with Cyrus and
SASL, or it's just me. I would like to allow the following:
1. User accounts on the machine will have mailboxes and authenticate
with the login authentication
2. PAM must be the method of choice for authentication
Here are the config files and the log entries I received.
/etc/imapd.conf
configdirectory: /var/lib/imap
partition-default: /var/spool/imap
sievedir: /var/lib/sieve
admins: cyrus
allowanonymouslogin: no
autocreatequota: 1
reject8bit: no
quotawarn: 90
timeout: 30
poptimeout: 10
dracinterval: 0
drachost: localhost
sasl_pwcheck_method: plain
^^
This isn't valid. If you want to use PAM, then this should be
'saslauthd'. And you should run 'saslauthd -a pam'
If you only want to use plaintext authentication, then you probably also
want to add:
sasl_mech_list: PLAIN LOGIN
lmtp_overquota_perm_failure: no
#
# if you want TLS, you have to generate certificates and keys
#
#tls_cert_file: /usr/ssl/certs/cert.pem
#tls_key_file: /usr/ssl/certs/skey.pem
#tls_ca_file: /usr/ssl/CA/CAcert.pem
#tls_ca_path: /usr/ssl/CA
/etc/cyrus.conf
# standard standalone server implementation
START {
# do not delete this entry!
recover cmd=ctl_cyrusdb -r
# this is only necessary if using idled for IMAP IDLE
# idled cmd=idled
}
# UNIX sockets start with a slash and are put into /var/lib/imap/socket
SERVICES {
# add or remove based on preferences
imapcmd=imapd listen=imap prefork=0
# imaps cmd=imapd -s listen=imaps prefork=0
pop3cmd=pop3d listen=pop3 prefork=0
# pop3s cmd=pop3d -s listen=pop3s prefork=0
sieve cmd=timsieved listen=sieve prefork=0
# at least one LMTP is required for delivery
# lmtp cmd=lmtpd listen=lmtp prefork=0
lmtpunix cmd=lmtpd listen=/var/lib/imap/socket/lmtp prefork=0
# this is only necessary if using notifications
# notify cmd=notifyd listen=/var/lib/imap/socket/notify
proto=udp prefork=1
}
EVENTS {
# this is required
checkpoint cmd=ctl_cyrusdb -c period=30
# this is only necessary if using duplicate delivery suppression
delprune cmd=ctl_deliver -E 3 period=1440
# this is only necessary if caching TLS sessions
tlsprune cmd=tls_prune period=1440
# Uncomment the next entry, if you want to automatically remove
# old messages of EVERY user.
# This example calls ipurge every 60 minutes and ipurge will delete
# ALL messages older then 30 days.
# enter 'man 8 ipurge' for more details
# cleanup cmd=ipurge -d 30 -f period=60
}
/var/log/messages
Dec 12 00:24:41 ms01 master[3932]: process 5143 exited, status 0
Dec 12 00:37:51 ms01 sshd[5167]: Accepted password for root from
:::192.168.0.173 port 1084
Dec 12 00:40:11 ms01 sshd[5285]: Accepted password for cyrus from
:::192.168.0.173 port 1085
Dec 12 00:40:23 ms01 perl: No worthy mechs found
Dec 12 00:40:26 ms01 imapd[5308]: Login disabled user=cyrus auth=cyrus
host=localhost [127.0.0.1]
Dec 12 00:40:32 ms01 perl: No worthy mechs found
Dec 12 00:40:35 ms01 imapd[5313]: Login disabled user=cyrus auth=cyrus
host=localhost [127.0.0.1]
Dec 12 00:41:00 ms01 imapd[5321]: Login disabled user=cyrus auth=cyrus
host=localhost [127.0.0.1]
Dec 12 00:42:30 ms01 perl: No worthy mechs found
Dec 12 00:42:32 ms01 imapd[5337]: Login disabled user=root auth=root
host=localhost [127.0.0.1]
Regards.
Tim Branson.
Manager of Information Technology.
331 Mallory Station Road
Franklin, TN 37067
Phone: 615-224-1007
Fax: 615-224-1414
Cell:615-456-5489
Email: [EMAIL PROTECTED]
Web Page: http://www.leecompany.com http://www.leecompany.com/
*/Working together for success/*
--
Kenneth Murchison Oceana Matrix Ltd.
Software Engineer 21 Princeton Place
716-662-8973 x26 Orchard Park, NY 14127
--PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
