On Sat, Feb 12, 2000 at 05:16:56PM -0000, Derrick Hopkins wrote:
> Hi, I'm having a problem with password authentication using qmail-pop3d and
> checkpassword.
>
> and here is a snippet from my inet.conf
> ---------
> tcpserver -v -c 400 -u 102 -g 504 0 smtp /var/qmail/bin/qmail-smtpd
> &1|/var/qmail/bin/splogger smtpd 3 &
> pop3 stream tcp nowait root /var/qmail/bin/qmail-popup
> qmail-popup test.com /bin/checkpassword
> /var/qmail/bin/qmail-pop3d Mailbox
> ---------
> Can anyone help?
If you use your standard system password for pop access, and if you
have shadow passwords on your system (check for /etc/shadow or the
like), checkpassword is unable to read the encrypted password if
it is not run as root (and in your setup, it isn't because it will
be executed as uid 102/gid 504). You can either delete the entries
in your inetd.conf (-u 102 -g 504) or make checkpassword setuid root.
The first alternative means that qmail-smtpd will also run as root,
in the second, only checkpassword will run as root. Decide which one
to use depending on the grade of your security paranoia ;-)
I had the same problem when I first set up a qmail server.
Hoping to have helped,
--
Juergen Kleer <[EMAIL PROTECTED]>
