Solved (was: Re: HORRIBLE SASL Auth Probs!!)
Jeff Bert wrote: > bummer, i know I'm repeating myself somewhat but here we go: > I GOT IT! Thanks to Charles Lepple on the other list (cyrus-sasl) for point out that the output I posted had now "AUTH=" lines in it. Of all things... a *reboot* did the trick. Go figure. Phil -- "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -Benjamin Franklin, 1759
RE: HORRIBLE SASL Auth Probs!!
bummer, i know I'm repeating myself somewhat but here we go: 0) add debug logs to syslog: local6.debug-/var/log/imapd.log auth.debugy -/var/log/saslauthd.log # /etc/init.d/syslog restart 1) start saslauthd # saslauthd -a pam & 2) edit /etc/imapd.conf sasl_pwcheck_method: sasldb allowplaintext: yes 3) start cyrus-imapd 4) create a user # saslpasswd -c test 5) check their domain # sasldblistusers 6) chown the sasldb file # chown cyrus.mail /etc/sasldb (or your path to it) 7) try cyradm # cyradm --user test --server 8) IF THAT FAILS... crap. # tail /var/log/imapd.log # tail /var/log/saslauthd.log post the output... also, what version of berkeley db are you using? Jeff > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]]On Behalf Of Phil Dibowitz > Sent: Tuesday, May 21, 2002 6:06 PM > To: [EMAIL PROTECTED] > Subject: Re: HORRIBLE SASL Auth Probs!! > > > Jeff Bert wrote: > > > Did you compile cyrus-imapd-2.0.16 with the '--with-auth=unix' > option... if > > not that will explain it all. > > > > I just recompiled and reinstalled with the '--with-auth=unix' > option - same > exact deal. > > Any ideas? > > Phil > -- > "They that can give up essential liberty to obtain a little > temporary safety > deserve neither liberty nor safety." > -Benjamin Franklin, 1759 > >
RE: HORRIBLE SASL Auth Probs!!
Sure but one question to make your life worse... why didn't your try the RPM's for redhat for versions 7.2cyrus-imapd-2.1.4 cyrus-sasl-2.1-2 that Simon Matter did? http://asg.web.cmu.edu/archive/message.php?mailbox=archive.info-cyrus&search term=rpm&msg=14163 Jeff > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]]On Behalf Of Phil Dibowitz > Sent: Tuesday, May 21, 2002 5:51 PM > To: [EMAIL PROTECTED] > Subject: Re: HORRIBLE SASL Auth Probs!! > > > Jeff Bert wrote: > > > > > Did you compile cyrus-imapd-2.0.16 with the '--with-auth=unix' > option... if > > not that will explain it all. > > > AHA! That must be it. > > I'll let you know. Thanks Jeff. > > > Phil > > -- > "They that can give up essential liberty to obtain a little > temporary safety > deserve neither liberty nor safety." > -Benjamin Franklin, 1759 > >
Re: HORRIBLE SASL Auth Probs!!
Jeff Bert wrote: > Did you compile cyrus-imapd-2.0.16 with the '--with-auth=unix' option... if > not that will explain it all. > I just recompiled and reinstalled with the '--with-auth=unix' option - same exact deal. Any ideas? Phil -- "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -Benjamin Franklin, 1759
Re: HORRIBLE SASL Auth Probs!!
Jeff Bert wrote: > > Did you compile cyrus-imapd-2.0.16 with the '--with-auth=unix' option... if > not that will explain it all. AHA! That must be it. I'll let you know. Thanks Jeff. Phil -- "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -Benjamin Franklin, 1759
RE: HORRIBLE SASL Auth Probs!!
> -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]]On Behalf Of Phil Dibowitz > Sent: Tuesday, May 21, 2002 5:10 PM > To: [EMAIL PROTECTED] > Subject: HORRIBLE SASL Auth Probs!! > > > Gah! > > I'm pulling my hair out trying to get this sasl stuff to work!! > I've removed > /etc/sasldb and recreated it using saslpasswd... > > I've tried explicitly giving all information (i.e. > saslpasswd -u 'localhost' -c test > saslpasswd -u 'bonanza' -c test) > > (I'd remove the localhost one before trying bonanza). > > I've tried providing as littls as possible: > saslpasswd test > > Coresponding with the attempts above I've tried: > imtest -a test -u test -r localhost localhost > imtest -a test -u test -r bonanza bonanza > imtest -a test -u test -r bonanza localhost > imtest -a test -u test -r localhost bonanza > > above with '-m > login' then each one of those above with '-m login -p imap'> > > then > # su test > $ imtest localhost > imtest -m login locahost > imtest -p login localhost > imtest -m login -p imap localhost > > The saslauthd that Jeff suggested seems to be a part of the 2.1.2 > branch of > sasl... which I'm not using. Not fully, the way I used to startup saslauthd in cyrus-sasl-1.5.24 was: # saslauthd -a pam also, I never forced the hostname (realm) i just used: # saslpasswd -c cyrususer then checked what the hostname (realm) was by: # sasldblistusers and i only ever used my FQDN so I don't know if the aliases for the host work or not. Did you compile cyrus-imapd-2.0.16 with the '--with-auth=unix' option... if not that will explain it all. Jeff > > Any help would be MUCH appreciated. Here is some last bit of info for you: > > Cyrus 2.0.16 compiled from Source > # rpm -qa | grep -i sasl > cyrus-sasl-1.5.24-17 > cyrus-sasl-devel-1.5.24-17 > # rpm -qa | grep -i cyrus > cyrus-sasl-1.5.24-17 > cyrus-sasl-devel-1.5.24-17 > perl-Cyrus-2.0.16-3rm > > > My only thought now is that that "perl-Cyrus" rpm may be messing > with things > (it's from before when I had installed Cyrus imap from RPM) - but > I'm worried > to uninstall it for fear if needing it... > > Phil > -- > "They that can give up essential liberty to obtain a little > temporary safety > deserve neither liberty nor safety." > -Benjamin Franklin, 1759 > >