unable to login with cyradm

Larry Rosenbaum rosenbaumlm at ornl.gov
Wed Aug 2 13:44:13 EDT 2006 

Cyrus IMAP v2.3.3 and above have TLS support.  You might have to add the 
"--tls" switch to make it work.  For older versions see the patch on

https://bugzilla.andrew.cmu.edu/show_bug.cgi?id=2036


> -----Original Message-----
> From: info-cyrus-bounces at lists.andrew.cmu.edu [mailto:info-cyrus-
> bounces at lists.andrew.cmu.edu] On Behalf Of Daniel Eckl
> Sent: Wednesday, August 02, 2006 10:41 AM
> To: Joe Harvell
> Cc: info-cyrus at lists.andrew.cmu.edu
> Subject: Re: unable to login with cyradm
> 
> Hi Joe!
> 
> Cyradm (or only your cyradm? Dunno...) might not be SSL capable.
> 
> So either use port 143 to connect or if you have to user IMAPS Port 993,
> then you could establish an ssl tunnel with stunnel program.
> 
> Best,
> Daniel
> 
> Joe Harvell schrieb:
> > Could someone *please* take a look at this?
> >
> > Joe Harvell wrote:
> >> I used cyradm a long time ago to set up two mailboxes, and now I need
> to
> >> use it again, but I can't login:
> >>
> >> I am running cyrus-imapd 2.2.12.  I know that the latest 2.3 version
> >> supports TLS with cyradm.  But I am not ready to upgrade.  I just want
> >> to be able to run cyradm from the localhost.  Here is what happens when
> >> I enter the cyradm command:
> >>
> >> jharvell at dingo ~ $ cyradm --user cyrus --server localhost --port 993
> >> IMAP Password:
> >>               jharvell at dingo ~ $
> >>
> >>
> >> Here is my syslog:
> >>
> >> Jul 31 17:10:13 dingo master[18188]: about to exec /usr/lib/cyrus/imapd
> >> Jul 31 17:10:13 dingo imaps[18188]: executed
> >> Jul 31 17:10:13 dingo imaps[18188]: auxpropfunc error invalid parameter
> >> supplied
> >> Jul 31 17:10:13 dingo imaps[18188]: _sasl_plugin_load failed on
> >> sasl_auxprop_plug_init for plugin: ldapdb
> >> Jul 31 17:10:13 dingo imaps[18188]: sql_select option missing
> >> Jul 31 17:10:13 dingo imaps[18188]: auxpropfunc error no mechanism
> available
> >> Jul 31 17:10:13 dingo imaps[18188]: _sasl_plugin_load failed on
> >> sasl_auxprop_plug_init for plugin: sql
> >> Jul 31 17:10:13 dingo imaps[18188]: accepted connection
> >> Jul 31 17:10:13 dingo imaps[18188]: imaps TLS negotiation failed:
> >> localhost [127.0.0.1]
> >> Jul 31 17:10:13 dingo imaps[18188]: Fatal error: tls_start_servertls()
> >> failed
> >> Jul 31 17:10:13 dingo master[31124]: process 18188 exited, status 75
> >> Jul 31 17:10:13 dingo master[31124]: service imaps pid 18188 in BUSY
> >> state: terminated abnormally
> >>
> >> And here is my imapd.conf:
> >>
> >> # $Header:
> >> /var/cvsroot/gentoo-x86/net-mail/cyrus-imapd/files/imapd.conf,v 1.5 2
> >> 004/08/27 06:02:45 langthang Exp $
> >>
> >> # Don't forget to use chattr +S (if you are using ext[23])
> >> # when you change these directories (read the docs).
> >> configdirectory:        /var/imap
> >> partition-default:      /var/spool/imap
> >> sievedir:               /var/imap/sieve
> >>
> >> tls_ca_path:            /etc/ssl/certs
> >> tls_cert_file:          /etc/ssl/cyrus/dingo.x509.pem
> >> tls_key_file:           /etc/ssl/cyrus/dingo.rsakeys.pem
> >>
> >> # Don't use an everyday user as admin.
> >> admins:                 cyrus
> >>
> >> hashimapspool:          yes
> >> allowanonymouslogin:    no
> >> allowplaintext:         no
> >>
> >> # Allow renaming of top-level mailboxes.
> >> #allowusermoves:         yes
> >>
> >> # Use this if sieve-scripts could be in ~user/.sieve.
> >> #sieveusehomedir:       yes
> >>
> >> # Use saslauthd if you want to use pam for imap.
> >> # But be warned: login with DIGEST-MD5 or CRAM-MD5
> >> # is not possible using pam.
> >> sasl_pwcheck_method:    saslauthd
> >>
> >> servername: dingo.dogpad.net.
> >>
> >> ####################################################
> >> ## This is a recommended authentication method if you
> >> ## emerge cyrus-sasl with 'postgres' or 'mysql'
> >> ## To use with mysql database uncomment those lines below.
> >>
> >> #sasl_pwcheck_method: auxprop
> >> #sasl_auxprop_plugin: sql
> >>
> >> ## possible values for sasl_auxprop_plugin 'mysql', 'pgsql', 'sqlite'.
> >> #sasl_sql_engine: mysql
> >>
> >> ## all possible values.
> >> #sasl_mech_list: LOGIN PLAIN CRAM-MD5 DIGEST-MD5 NTLM
> >> ## or limit to CRAM-MD5 only
> >> #sasl_mech_list: CRAM-MD5
> >>
> >> ## change below to suit your setup.
> >> #sasl_sql_user: mailsqluser
> >> #sasl_sql_passwd: password
> >> #sasl_sql_database: mailsqldb
> >> #sasl_sql_hostnames: localhost
> >> #sasl_sql_select: SELECT clear FROM users WHERE email = '%u@%r'
> >>
> >> ----
> >> Cyrus Home Page: http://asg.web.cmu.edu/cyrus
> >> Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
> >> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
> >
> > ----
> > Cyrus Home Page: http://asg.web.cmu.edu/cyrus
> > Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
> > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
> ----
> Cyrus Home Page: http://asg.web.cmu.edu/cyrus
> Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

More information about the Info-cyrus mailing list