<html><head><meta http-equiv="Content-Type" content="text/html charset=windows-1252"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;"><div><br></div><div>I have two servers, both with identical configurations, right down to their imapd.conf files … both use sqlite to store auth information …</div><div><br></div><div>Both running on FreeBSD 10.x, and versions of imapd/sasl are the same:</div><div><br></div><div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">cyrus-imapd24-2.4.17_4/ cyrus-sasl-2.1.26_5</div></div><div><br></div><div>One works great, nary a problem … the other, I get the above message when I try and authenticate. And I can’t find anything different … I’ve checked permissions on the various files, etc …</div><div><br></div><div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">/var/log # telnet localhost imap</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Trying 127.0.0.1...</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Connected to localhost.</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Escape character is '^]'.</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0); position: static; z-index: auto;">* OK [CAPABILITY IMAP4rev1 LITERAL+ ID ENABLE STARTTLS AUTH=SCRAM-SHA-1 AUTH=DIGEST-MD5 AUTH=CRAM-MD5 AUTH=LOGIN AUTH=PLAIN SASL-IR] xxx.xxx Cyrus IMAP v2.4.17 server ready</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">. login <a href="mailto:xxx@xxx.xxx">xxx@xxx.xxx</a> xxx</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">. NO Login failed: generic failure</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">. logout</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">* BYE LOGOUT received</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">. OK Completed</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Connection closed by foreign host.</div></div><div><br></div><div>/var/log/debug.log shows:</div><div><br></div><div>==</div><div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:08 xxx imap[67279]: SQL backend defaulting to engine 'sqlite'</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:08 xxx imap[67279]: executed</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:08 xxx imap[67279]: sql auxprop plugin using sqlite engine</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:08 xxx imap[67279]: IOERROR: opening /var/spool/imap/user_deny.db: No such file or directory</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:08 xxx imap[67279]: accepted connection</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:36 xxx imap[67279]: accepted connection</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: sql plugin Parse the username <a href="mailto:xxx@xxx.xxx">xxx@xxx.xxx</a> </div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: sql plugin try and connect to a host</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: sql plugin trying to open db '/var/db/sqlite/mailsys' on host ''</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: begin transaction</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: sql plugin create statement from userPassword xxx xxx.xxx </div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: sql plugin doing query SELECT userPassword FROM sasl_auth WHERE userid = '<a href="mailto:xxx@xxx.xxx">xxx@xxx.xxx</a>';</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: sql plugin create statement from cmusaslsecretPLAIN xxx xxx.xxx </div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: sql plugin doing query SELECT cmusaslsecretPLAIN FROM sasl_auth WHERE userid = '<a href="mailto:xxx@xxx.xxx">xxx@xxx.xxx</a>';</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: sql plugin: no such column: cmusaslsecretPLAIN</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: commit transaction</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: sql plugin Parse the username <a href="mailto:xxx@xxx.xxx">xxx@xxx.xxx</a> </div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: sql plugin try and connect to a host</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">Mar 26 16:09:49 xxx imap[67279]: sql plugin trying to open db '/var/db/sqlite/mailsys' on host ''</div></div><div><br></div><div>/var/log/messages shows:</div><div><br></div><div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0); position: static; z-index: auto;">Mar 26 16:09:49 rdfund imap[67279]: badlogin: xxx [200.46.208.227] plaintext <a href="mailto:xxx@xxx.xxx">xxx@xxx.xxx</a> SASL(-1): generic failure: checkpass failed</div></div><div><br></div><div>I’ve even tried su’ng to the cyrus user and running the sql command against the database, and it returns the right database:</div><div><br></div><div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">% echo "SELECT userPassword FROM sasl_auth WHERE userid = ‘<a href="mailto:xxx@xxx.xxx">xxx@xxx.xxx</a>';" | sqlite /var/db/sqlite/mailsys</div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">rightPW</div></div><div style="margin: 0px; font-size: 10px; font-family: Monaco; color: rgb(245, 245, 245); background-color: rgb(0, 0, 0);">%</div><div><br></div><div>I’ve double checked the imapd.conf files, and they are identical except different admins: and one has tls_* lines in it … but I’m having the identical issue with *another* server, and it doesn’t have the tls_* lines …</div><div><br></div><div>I figure I have to be overlooking *something* stupid, but I’m at a loss as to what it could be … I’ve even checked md5 on imapd between both working / non-working … identical …</div><div><br></div><div>Is there any way of getting more debug information out of the backend without modifying the code itself? </div><div><br></div><div>Thanks ...</div><div><br></div><div><br></div></body></html>