Re: Dovecot auth username mapping

2015-07-02 Thread Laz C. Peterson
Ahh Peter, good call on this one! So after playing around with the order of authentication in Dovecot, you are correct, the PAM timeout was causing the holdup. I guess since PAM has no way of looking up whether or not a user exists prior to authenticating, this is causing the hiccup, versus

Re: Dovecot auth username mapping

2015-07-02 Thread Laz C. Peterson
Peter, Yes that is a possibility. I will try disabling PAM (or switching the auth order) and see if that makes a difference. Thanks for the suggestion! ~ Laz Peterson Paravis, LLC Ph: 951.319.3240 x201 > On Jul 1, 2015, at 11:34 PM, Peter Chiochetti wrote: > > Am 2015-07-02 um 01:41 schrieb

Re: Dovecot auth username mapping

2015-07-01 Thread Philon
Hi Laz, I’m just wondering… why are you using LDAP and/or PAM to access the MySQL server? If also the password is stored in the db you could use MySQL directly? Because then you could use password_query and user_query to actually split the provided email address into name and domain parts. Then

Re: Dovecot auth username mapping

2015-07-01 Thread Peter Chiochetti
Am 2015-07-02 um 01:41 schrieb Laz C. Peterson: I did attempt to switch the PAM/Kerberos authentication to Dovecot LDAP authentication, but now performance is unbelievably slow. Any thoughts to this? In case you have multiple passdb backends, it could be, that LDAP only gets its chance, after

Re: Dovecot auth username mapping

2015-07-01 Thread Laz C. Peterson
It’s actually unbelievable how much slower LDAP auth is than PAM. Does anyone have any suggestions how I can improve Dovecot LDAP auth? I have tried caching authentications and that doesn’t help either. ~ Laz Peterson Paravis, LLC Ph: 951.319.3240 x201 > On Jul 1, 2015, at 4:41 PM, Laz C. Pet

Re: Dovecot auth username mapping

2015-07-01 Thread Laz C. Peterson
Thank you for the response Axel. I will look into that. I did attempt to switch the PAM/Kerberos authentication to Dovecot LDAP authentication, but now performance is unbelievably slow. For example, with PAM/Kerberos, a user can log into webmail and have all of their emails/folders showing al

Re: Dovecot auth username mapping

2015-07-01 Thread Axel Luttgens
> Le 1 juil. 2015 à 04:38, Laz C. Peterson > a écrit : > > I have an interesting case here … > > Virtual mailboxes, domain/username/aliases stored in MySQL, authentication > done using PAM. PAM authenticates through Kerberos, which are internal > realms and not the email domains — for exampl

Dovecot auth username mapping

2015-06-30 Thread Laz C. Peterson
I have an interesting case here … Virtual mailboxes, domain/username/aliases stored in MySQL, authentication done using PAM. PAM authenticates through Kerberos, which are internal realms and not the email domains — for example, my username would be laz@PARAVIS.LOCAL