<HTML dir=ltr><HEAD><TITLE>RE: murder configuration issue final stretch</TITLE>
<META http-equiv=Content-Type content="text/html; charset=unicode">
<META content="MSHTML 6.00.2900.3429" name=GENERATOR></HEAD>
<BODY>
<DIV id=idOWAReplyText66086 dir=ltr>
<DIV dir=ltr><FONT face=Arial color=#000000 size=2>Andrew, </FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>Any idea how this works with the lmtpproxy? Also, I've tried to setup the lmtp using the local port but for some reason when I restart cyrus-imapd it doesn't who up in netstat.</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>Tried</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2>lmtp cmd="lmtpd" listen="lmtp" prefork=1</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2>Tried<BR>lmtp cmd="lmtpd" listen="/var/lib/imap/socket/lmtp" prefork=1 maxchild=20<BR>Current:</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2>lmtp cmd="lmtpproxyd" listen="/var/lib/imap/socket/lmtpunix" prefork=1</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>Do you have any examples of setting it up on a different port and forwarding it onwards to the backend (or I assume that we would forward it to the proxy) using postfix?.</FONT></DIV>
<DIV dir=ltr><FONT face=Arial size=2></FONT> </DIV>
<DIV dir=ltr><FONT face=Arial size=2>Gary<BR></FONT></DIV></DIV>
<DIV dir=ltr><BR>
<HR tabIndex=-1>
<FONT face=Tahoma size=2><B>From:</B> Andrew Morgan [mailto:morgan@orst.edu]<BR><B>Sent:</B> Fri 12/12/2008 9:00 AM<BR><B>To:</B> Gary W. Smith<BR><B>Cc:</B> Wesley Craig; info-cyrus@lists.andrew.cmu.edu<BR><B>Subject:</B> RE: murder configuration issue final stretch<BR></FONT><BR></DIV>
<DIV>
<P><FONT size=2>On Thu, 11 Dec 2008, Gary W. Smith wrote:<BR><BR>> Andrew,<BR>><BR>> I found one of your older posting which also covers this. Here is what<BR>> I did.<BR>><BR>> I added psotfixlmtp as a user to both the frontend and and then ran the<BR>> 'runuser - postfixlmtp -c "lmtptest mds01"' and used the password and it<BR>> authenticated just fine. So I added the entry to my lmtp_passwd file<BR>> for postfix. I also added the additional entries into the postfix<BR>> main.cf file as per the instructions.<BR>><BR>> On the frontend I added lmtp_admins: postfixlmtp and on the backends I<BR>> added lmtp_admins: murder postfixlmtp.<BR>><BR>> I did notice that when I try connecting to the lmtp on the frontend I<BR>> get an error. I suspect that it's because it's looking for lmtp and<BR>> it's running the lmtpproxy<BR>><BR>> # runuser - postfixlmtp -c "lmtptest"<BR>> WARNING: no hostname supplied, assuming localhost<BR>> connect: Connection refused<BR>> failure: Network initialization - can not connect to localhost.localdomain:lmtp<BR>><BR>> Anyway, postfix is kicking this out in the log:<BR>><BR>> lmtp[6073]: lmtp connection preauth'd as postman <-- why I'm getting<BR>> this, I don't know<BR>><BR>> I assume that for some reason it's still allowing anonynous connections<BR>> to lmtp. I checked my cyrus.conf files on all servers and there is no<BR>> "-a". It's perplexing. The information you gave me makes sense but it's<BR>> like something has cached a setting and isn't letting go even though I<BR>> have restarted all of the services.<BR><BR>Looking at the source code in lmtpengine.c:<BR><BR> /* we're not connected to a internet socket! */<BR> func->preauth = 1;<BR> strcpy(cd.clienthost, "[unix socket]");<BR> syslog(LOG_DEBUG, "lmtp connection preauth'd as postman");<BR><BR>So it appears that unix socket connections are always preauth'd. You'll<BR>need to enable Cyrus' lmtpd to listen on the internet socket as well. If<BR>you are running Postfix on your frontends (it looks like you are), then<BR>you could either disable Postfix's lmtp, or run the Cyrus lmtp on an<BR>alternate port.<BR><BR>Maybe other folks know of a cleaner way to do this, or have other<BR>suggestions.<BR><BR> Andy<BR></FONT></P></DIV></BODY></HTML>