timsieved not offering any auth mechanisms

Matt Bernstein mb/cyrus at dcs.qmul.ac.uk
Sat Oct 5 10:06:09 EDT 2002 

At 09:24 -0400 Ken Murchison wrote:

>> Telnet-ing to port 2000 gives me:
>> 
>> "IMPLEMENTATION" "Cyrus timsieved v1.1.0"
>> "SIEVE" "fileinto reject envelope vacation imapflags notify subaddress
>> relational regex"
>> OK
>> 
>> ..and "STARTTLS" if I configure it. But there's no "SASL" line.

>I'm guessing that one of two things is happening:
>
>1. you have allowplaintext:no in imapd.conf

nope :) In fact I'd even tried explicitly "allowplaintext: yes".

>2. you installed SASL in a non-default location and Cyrus can't find the 
>plugins.  If you do:
>
>imtest -t '' -a <user> -u <user> <server>

[mangled by pine justifying my middle button paste :)]

S: * OK vicar Cyrus IMAP4 v2.1.9 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS 
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT 
THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS LISTEXT 
LIST-SUBSCRIBED ANNOTATEMORE
S: C01 OK Completed
C: S01 STARTTLS
S: S01 OK Begin TLS negotiation now
verify error:num=19:self signed certificate in certificate chain
TLS connection established: TLSv1 with cipher DES-CBC3-SHA (168/168 bits)
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS 
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT 
THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS AUTH=LOGIN 
AUTH=PLAIN LISTEXT LIST-SUBSCRIBED ANNOTATEMORE
S: C01 OK Completed
C: A01 AUTHENTICATE LOGIN
S: + VXNlcm5hbWU6

>what mechs are listed?  I'm guessing none.  If this is the case, either link 
>your SASL plugins directory to /usr/lib/sasl2 or rebuild Cyrus using the 
>--with-sasl option.  FYI, the reason that IMAP and POP3 both work is that they 
>each have their own plaintext login commands (LOGIN and USER/PASS 
>respectively), which don't depend on SASL plugins.

I've got AUTHENTICATE PLAIN working on imapd as it's used to presubscribe 
our new accounts to a couple of folders we create.

I have /usr/lib/sasl2 -> ../local/lib/sasl2, in which live seemingly the 
right things.

FWIW,

# ldd /usr/cyrus/bin/timsieved
        libsasl2.so.2 => /usr/local/lib/libsasl2.so.2 (0x40014000)
        libssl.so.0.9.6 => /usr/lib/libssl.so.0.9.6 (0x4002c000)
        libcrypto.so.0.9.6 => /usr/lib/libcrypto.so.0.9.6 (0x4005a000)
        libdb3.so.3 => /usr/lib/libdb3.so.3 (0x4011a000)
        libresolv.so.2 => /lib/libresolv.so.2 (0x401c2000)
        libwrap.so.0 => /lib/libwrap.so.0 (0x401d2000)
        libnsl.so.1 => /lib/libnsl.so.1 (0x401da000)
        libc.so.6 => /lib/libc.so.6 (0x401ee000)
        libdl.so.2 => /lib/libdl.so.2 (0x4030b000)
        /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)

Cheers,

Matt

More information about the Info-cyrus mailing list