Newbie Q's: Authentication problems

Jon Drukman jsd at cluttered.com
Fri Sep 27 11:47:11 EDT 2002


At 07:42 AM 9/27/2002, Ken Murchison wrote:
>You can't turn plaintext off and specify PLAIN as the only SASL
>mechanism, because cyram doesn't support SSL/TLS (which is this only way
>that PLAIN or IMAP LOGIN would be allowed with your config).  Either
>allow plaintext, or add some other mechs (ie, CRAM-MD5) to the
>sasl_mech_list.

ok, i set my /etc/imapd.conf to look like this:

configdirectory: /var/imap
defaultpartition: default
partition-default: /var/spool/imap
allowplaintext: yes
sasl_pwcheck_method: saslauthd
admins: cyrus
sasl_mech_list: PLAIN, CRAM-MD5

now i get the following errors when trying to connect:

# cyradm --user cyrus localhost
Password:
cyradm: cannot authenticate to server with  as cyrus

# tail /var/log/auth.log
Sep 27 08:43:27 rs2 imapd[74583]: Could not open db
Sep 27 08:43:27 rs2 imapd[74583]: Could not open db
Sep 27 08:43:27 rs2 imapd[74583]: no secret in database
Sep 27 08:43:30 rs2 perl: No worthy mechs found

also, eventually when i want to block plaintext passwords completely, is it 
possible to use cyradm at all?

-jsd-





More information about the Info-cyrus mailing list