Hello all,
I've installed
Web-Cyradm on SLES 9.
pam_mysql is also
installed.
/etc/pam.d/imap:
#%PAM-1.0
auth sufficient pam_mysql.so user=mailadm passwd=<secret> host=localhost db=mail table=accountuser usercolumn=usern
ame passwdcolumn=password crypt=1 logtable=log logmsgcolumn=msg logusercolumn=user loghostcolumn=host logpidcolum
n=pid logtimecolumn=time
#%PAM-1.0
auth sufficient pam_mysql.so user=mailadm passwd=<secret> host=localhost db=mail table=accountuser usercolumn=usern
ame passwdcolumn=password crypt=1 logtable=log logmsgcolumn=msg logusercolumn=user loghostcolumn=host logpidcolum
n=pid logtimecolumn=time
auth sufficient
pam_unix_auth.so
account required
pam_mysql.so user=mailadm passwd=<secret> host=localhost db=mail
table=accountuser usercolumn=user
name passwdcolumn=password crypt=1 logtable=log logmsgcolumn=msg logusercolumn=user loghostcolumn=host logpidcolu
mn=pid logtimecolumn=time
name passwdcolumn=password crypt=1 logtable=log logmsgcolumn=msg logusercolumn=user loghostcolumn=host logpidcolu
mn=pid logtimecolumn=time
account
sufficient
pam_unix_acct.so
********************************************************
********************************************************
SERVICES section in
cyrus.conf:
# UNIX sockets start
with a slash and are put into /var/lib/imap/socket
SERVICES {
# add or remove based on preferences
# imap cmd="imapd" listen="imap" prefork=0
# imaps cmd="imapd -s" listen="imaps" prefork=0
# pop3 cmd="pop3d" listen="pop3" prefork=0
# pop3s cmd="pop3d -s" listen="pop3s" prefork=0
# sieve cmd="timsieved" listen="sieve" prefork=0
imap cmd="imapd" listen="212.70.0.0/16:imap" prefork=0
imaplocal cmd="imapd -C /etc/imapd-local.conf" listen="127.0.0.1:imap" prefork=0
imapsext cmd="imapd -C /etc/imapd-external.conf -s" listen="212.70.41.18:imapsiext" prefork=0
imapslocal cmd="imapd -C /etc/imapd-local.conf" listen="127.0.0.1:imaps" prefork=0
pop3 cmd="pop3d" listen="pop3" prefork=0
pop3s cmd="pop3d -s" listen="pop3s" prefork=0
sieve cmd="timsieved" listen="212.70.41.18:sieve" prefork=0
SERVICES {
# add or remove based on preferences
# imap cmd="imapd" listen="imap" prefork=0
# imaps cmd="imapd -s" listen="imaps" prefork=0
# pop3 cmd="pop3d" listen="pop3" prefork=0
# pop3s cmd="pop3d -s" listen="pop3s" prefork=0
# sieve cmd="timsieved" listen="sieve" prefork=0
imap cmd="imapd" listen="212.70.0.0/16:imap" prefork=0
imaplocal cmd="imapd -C /etc/imapd-local.conf" listen="127.0.0.1:imap" prefork=0
imapsext cmd="imapd -C /etc/imapd-external.conf -s" listen="212.70.41.18:imapsiext" prefork=0
imapslocal cmd="imapd -C /etc/imapd-local.conf" listen="127.0.0.1:imaps" prefork=0
pop3 cmd="pop3d" listen="pop3" prefork=0
pop3s cmd="pop3d -s" listen="pop3s" prefork=0
sieve cmd="timsieved" listen="212.70.41.18:sieve" prefork=0
# at least
one LMTP is required for delivery
# lmtp cmd="lmtpd" listen="lmtp" prefork=0
lmtpunix cmd="lmtpd" listen="/var/lib/imap/socket/lmtp" prefork=0
# lmtp cmd="lmtpd" listen="lmtp" prefork=0
lmtpunix cmd="lmtpd" listen="/var/lib/imap/socket/lmtp" prefork=0
# this is
only necessary if using notifications
# notify cmd="notifyd" listen="/var/lib/imap/socket/notify" proto="udp" prefork=1
}
******************************************************************
# notify cmd="notifyd" listen="/var/lib/imap/socket/notify" proto="udp" prefork=1
}
******************************************************************
Finally
imapd.conf:
vi
imapd.conf
configdirectory: /var/lib/imap
partition-default: /var/spool/imap
sievedir: /var/lib/sieve
admins: cyrus
allowanonymouslogin: no
autocreatequota: 20000
reject8bit: no
quotawarn: 90
timeout: 30
poptimeout: 10
dracinterval: 0
drachost: localhost
sasl_pwcheck_method: saslauthd
lmtp_overquota_perm_failure: no
servername: myservername
unixhierarchysep: yes
altnamespace: yes
createonpost: 1
configdirectory: /var/lib/imap
partition-default: /var/spool/imap
sievedir: /var/lib/sieve
admins: cyrus
allowanonymouslogin: no
autocreatequota: 20000
reject8bit: no
quotawarn: 90
timeout: 30
poptimeout: 10
dracinterval: 0
drachost: localhost
sasl_pwcheck_method: saslauthd
lmtp_overquota_perm_failure: no
servername: myservername
unixhierarchysep: yes
altnamespace: yes
createonpost: 1
allowplaintext:
yes
sasl_mech_list: PLAIN
#
# if you want TLS, you have to generate certificates and keys
#
# tls_cert_file: /usr/ssl/certs/cert.pem
# tls_key_file: /usr/ssl/certs/skey.pem
# tls_ca_file: /usr/ssl/CA/CAcert.pem
# tls_ca_path: /usr/ssl/CA
sasl_mech_list: PLAIN
#
# if you want TLS, you have to generate certificates and keys
#
# tls_cert_file: /usr/ssl/certs/cert.pem
# tls_key_file: /usr/ssl/certs/skey.pem
# tls_ca_file: /usr/ssl/CA/CAcert.pem
# tls_ca_path: /usr/ssl/CA
But I get these
messages in /var/log/messages:
Jul 10
12:45:51 ns imaplocal[4363]: accepted connection
Jul 10 12:46:14 ns imaplocal[4363]: accepted connection
Jul 10 12:46:14 ns saslauthd[2705]: pam_mysql - SELECT returned no result.
Jul 10 12:46:14 ns imap(pam_unix)[2705]: check pass; user unknown
Jul 10 12:46:14 ns imap(pam_unix)[2705]: authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=
Jul 10 12:46:16 ns saslauthd[2705]: DEBUG: auth_pam: pam_authenticate failed: Permission denied
Jul 10 12:46:16 ns saslauthd[2705]: do_auth : auth failure: [user=leon] [service=imap] [realm=] [mech=pam] [reason=PAM auth error]
Jul 10 12:46:16 ns imaplocal[4363]: badlogin: localhost [127.0.0.1] plaintext leon SASL(-13): authentication failure: checkpass failed
Jul 10 12:46:14 ns imaplocal[4363]: accepted connection
Jul 10 12:46:14 ns saslauthd[2705]: pam_mysql - SELECT returned no result.
Jul 10 12:46:14 ns imap(pam_unix)[2705]: check pass; user unknown
Jul 10 12:46:14 ns imap(pam_unix)[2705]: authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=
Jul 10 12:46:16 ns saslauthd[2705]: DEBUG: auth_pam: pam_authenticate failed: Permission denied
Jul 10 12:46:16 ns saslauthd[2705]: do_auth : auth failure: [user=leon] [service=imap] [realm=] [mech=pam] [reason=PAM auth error]
Jul 10 12:46:16 ns imaplocal[4363]: badlogin: localhost [127.0.0.1] plaintext leon SASL(-13): authentication failure: checkpass failed
Do you have any
suggestions to solve this?
P.S.:
Postfix is installed
from RPM compiled with Mysql support from here: http://www.norrbring.biz/SuSE/
Leon
_______________________________________________ This mailing list is hosted and supported by bit-heads GmbH | http://www.bit-heads.ch
_______________________________________________ Web-cyradm mailing list [email protected] http://www.web-cyradm.org/mailman/listinfo/web-cyradm
