cyrus imapd auth

Thomas Börnert tb at tbits.net
Mon Jul 25 09:09:42 EDT 2005 

with cram-md5 your password should be stored in plaintext in ldap.
is it encrypted ?

-Thomas

On Mon, 2005-07-25 at 13:45 +0100, Dmitriy Kirhlarov wrote:
> Hi, list.
> 
> I try use ldap-autentication.
> When I try work with imap-server without TLS/SSL -- all work.
> When I try use starttls -- autentication not work and, as I can see in slapd debug -- nobody try connect to server in this moment.
> 
> My configs:
> -----------
> $ cat /usr/local/etc/imapd.conf
> configdirectory: /var/imap
> partition-default: /var/spool/imap
> sieveusehomedir: false
> sievedir: /var/imap/sieve
> sasl_pwcheck_method: saslauthd
> servername: free2.mow.oilspace.com
> admins: cyrus root dkirhlarov
> 
> tls_ca_file: /usr/local/etc/ssl/cacert.pem
> tls_cert_file: /usr/local/etc/ssl/imap-free2.crt
> tls_key_file: /usr/local/etc/ssl/imap-free2.key
> 
> -----------
> $ cat /usr/local/etc/saslauthd.conf 
> ldap_servers: ldaps://free2.mow.oilspace.com/
> ldap_search_base: ou=users,o=oilspace
> ldap_tls_cacert_file: /usr/local/etc/openldap/ssl/cacert.pem
> 
> -----------
> /var/log/messages in moment of connect I get:
> Jul 25 12:38:29 free2 imap[66302]: auxpropfunc error invalid parameter supplied
> Jul 25 12:38:29 free2 imap[66302]: OTP unavailable because can't read/write key database /etc/opiekeys: Permission denied
> Jul 25 12:38:30 free2 imap[66302]: starttls: TLSv1 with cipher RC4-SHA (128/128 bits new) no authentication
> Jul 25 12:38:30 free2 imap[66302]: no user in db
> Jul 25 12:38:30 free2 imap[66302]: no user in db
> Jul 25 12:38:30 free2 imap[66302]: no secret in database
> Jul 25 12:38:30 free2 imap[66302]: badlogin: dkirhlarov.mow.oilspace.com [172.17.1.254] CRAM-MD5 [SASL(-13): user not found: no secret in database]
> 
> -----------
> $ uname -rs
> FreeBSD 5.4-STABLE
> 
> I try use plaintext password over SSL for autentication.
> I must use only crypted connection between imap client-server, saslauthd-slapd.
> 
> PS. Sorry for my english.


---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

More information about the Info-cyrus mailing list