Hello misc,
I installed cyrus-sasl-2.1.22p1-mysql from packages and trying make it
working, but during testsaslauthd queries I not get any results :(.
I enabled log queries in mysql but there is no connection attempts
from saslauthd to needed table (no connection, no auth, nothing).
As described in documentation I created smtpd.conf and pit it to
needed dir.
# cat /usr/local/lib/sasl2/smtpd.conf
pwcheck_method: auxprop
auxprop_plugin: sql
sql_engine: mysql
mech_list: PLAIN LOGIN
sql_user: postfix
sql_passwd: postfix
sql_hostnames: localhost
sql_database: postfix
sql_statement: SELECT password FROM mailbox WHERE username = '%u'
sql_verbose: yes
# saslauthd -d -a getpwent
saslauthd[19646] :main: num_procs : 5
saslauthd[19646] :main: mech_option: NULL
saslauthd[19646] :main: run_path : /var/sasl2
saslauthd[19646] :main: auth_mech : getpwent
saslauthd[19646] :ipc_init: using accept lock file:
/var/sasl2/mux.accept
saslauthd[19646] :detach_tty : master pid is: 0
saslauthd[19646] :ipc_init: listening on socket: /var/sasl2/mux
saslauthd[19646] :main: using process model
saslauthd[19646] :have_baby : forked child: 8299
saslauthd[8299] :get_accept_lock : acquired accept lock
saslauthd[19646] :have_baby : forked child: 14091
saslauthd[19646] :have_baby : forked child: 21287
saslauthd[19646] :have_baby : forked child: 12263
# testsaslauthd -s smtpd -u eject -p mypassword
0: NO authentication failed
# testsaslauthd -u eject -p mypassword
0: NO authentication failed
===
In saslauthd debug output after query
1.
saslauthd[14091] :get_accept_lock : acquired accept lock
saslauthd[8299] :rel_accept_lock : released accept lock
saslauthd[8299] :do_auth : auth failure: [user=eject] [service=smtpd]
[realm=] [mech=getpwent] [reason=Unknown]
saslauthd[8299] :do_request : response: NO
saslauthd[8299] :do_auth : auth failure: [user=eject][service=imapd]
[realm=] [mech=getpwent] [reason=Unknown]
saslauthd[8299] :do_request : response: NO
# tail -f /var/mysql/query.log
nothing related to my queries
After this I run saslauthd with ktrace to see what files it read when
it runs. During running ktrace I run some queries.
# ktrace saslauthd -d -a getpwent
saslauthd[7962] :main: num_procs : 5
saslauthd[7962] :main: mech_option: NULL
saslauthd[7962] :main: run_path : /var/sasl2
saslauthd[7962] :main: auth_mech : getpwent
saslauthd[7962] :ipc_init: using accept lock file: /var/sasl2/mux.accept
saslauthd[7962] :detach_tty : master pid is: 0
saslauthd[7962] :ipc_init: listening on socket: /var/sasl2/mux
saslauthd[7962] :main: using process model
saslauthd[7962] :have_baby : forked child: 23867
saslauthd[23867] :get_accept_lock : acquired accept lock
saslauthd[7962] :have_baby : forked child: 16377
saslauthd[7962] :have_baby : forked child: 24519
saslauthd[7962] :have_baby : forked child: 28716
I discovered (see below) that saslauthd not looking for smtpd.conf during it :(
why?
# kdump | grep NAMI
7962 ktrace NAMI /sbin/saslauthd
7962 ktrace NAMI /usr/sbin/saslauthd
7962 ktrace NAMI /bin/saslauthd
7962 ktrace NAMI /usr/bin/saslauthd
7962 ktrace NAMI /usr/X11R6/bin/saslauthd
7962 ktrace NAMI /usr/local/sbin/saslauthd
7962 saslauthd NAMI /usr/libexec/ld.so
7962 saslauthd NAMI /var/run/ld.so.hints
7962 saslauthd NAMI /usr/lib/libcrypto.so.13.0
7962 saslauthd NAMI /usr/lib/libc.so.41.0
7962 saslauthd NAMI /usr/lib/libcom_err.so.16.0
7962 saslauthd NAMI /usr/lib/libkrb5.so.16.0
7962 saslauthd NAMI /usr/lib/libasn1.so.16.0
7962 saslauthd NAMI /usr/lib/libgssapi.so.5.0
7962 saslauthd NAMI /etc/malloc.conf
7962 saslauthd NAMI /dev/log
7962 saslauthd NAMI /etc/localtime
7962 saslauthd NAMI /etc/localtime
7962 saslauthd NAMI /var/sasl2
7962 saslauthd NAMI /var/sasl2/saslauthd.pid.lock
7962 saslauthd NAMI /var/sasl2/mux.accept
7962 saslauthd NAMI /var/sasl2/mux
7962 saslauthd NAMI /var/sasl2/mux
7962 saslauthd NAMI /var/sasl2/mux
7962 saslauthd NAMI /var/sasl2/saslauthd.pid.lock
7962 saslauthd NAMI /var/sasl2/mux.accept
7962 saslauthd NAMI /var/sasl2/mux
I will be sincerely thankful if anybody advice what's wrong in my
case.
--
Best regards,
Evgeniy mailto:[EMAIL PROTECTED]
