Login disabled user=cyrus - Installing new mail server - No worth y mechs found

Ken Murchison ken at oceana.com
Fri Dec 12 11:34:04 EST 2003


Tim Branson wrote:

> I am in the process of putting in a new mail server.  Apparently this 
> distribution of SUSE 8.2 has some weird things wrong with Cyrus and 
> SASL, or it's just me.  I would like to allow the following:
> 
>  
> 
>    1. User accounts on the machine will have mailboxes and authenticate
>       with the login authentication
>    2. PAM must be the method of choice for authentication
> 
>  
> 
> Here are the config files and the log entries I received.
> 
>  
> 
> /etc/imapd.conf
> 
> configdirectory: /var/lib/imap
> 
> partition-default: /var/spool/imap
> 
> sievedir: /var/lib/sieve
> 
> admins: cyrus
> 
> allowanonymouslogin: no
> 
> autocreatequota: 10000
> 
> reject8bit: no
> 
> quotawarn: 90
> 
> timeout: 30
> 
> poptimeout: 10
> 
> dracinterval: 0
> 
> drachost: localhost
> 
> sasl_pwcheck_method: plain
                        ^^^^^^

This isn't valid.  If you want to use PAM, then this should be 
'saslauthd'.  And you should run 'saslauthd -a pam'

If you only want to use plaintext authentication, then you probably also 
want to add:

sasl_mech_list: PLAIN LOGIN

> 
> lmtp_overquota_perm_failure: no
> 
> #
> 
> # if you want TLS, you have to generate certificates and keys
> 
> #
> 
> #tls_cert_file: /usr/ssl/certs/cert.pem
> 
> #tls_key_file: /usr/ssl/certs/skey.pem
> 
> #tls_ca_file: /usr/ssl/CA/CAcert.pem
> 
> #tls_ca_path: /usr/ssl/CA
> 
>  
> 
>  
> 
>  
> 
>  
> 
> /etc/cyrus.conf
> 
> # standard standalone server implementation
> 
>  
> 
> START {
> 
>   # do not delete this entry!
> 
>   recover   cmd="ctl_cyrusdb -r"
> 
>  
> 
>   # this is only necessary if using idled for IMAP IDLE
> 
> #  idled          cmd="idled"
> 
> }
> 
>  
> 
> # UNIX sockets start with a slash and are put into /var/lib/imap/socket
> 
> SERVICES {
> 
>   # add or remove based on preferences
> 
>   imap            cmd="imapd" listen="imap" prefork=0
> 
> #  imaps          cmd="imapd -s" listen="imaps" prefork=0
> 
>   pop3            cmd="pop3d" listen="pop3" prefork=0
> 
> #  pop3s          cmd="pop3d -s" listen="pop3s" prefork=0
> 
>   sieve           cmd="timsieved" listen="sieve" prefork=0
> 
>  
> 
>   # at least one LMTP is required for delivery
> 
> #  lmtp           cmd="lmtpd" listen="lmtp" prefork=0
> 
>   lmtpunix  cmd="lmtpd" listen="/var/lib/imap/socket/lmtp" prefork=0
> 
>  
> 
>   # this is only necessary if using notifications
> 
> #  notify   cmd="notifyd" listen="/var/lib/imap/socket/notify" 
> proto="udp" prefork=1
> 
> }
> 
>  
> 
> EVENTS {
> 
>   # this is required
> 
>   checkpoint      cmd="ctl_cyrusdb -c" period=30
> 
>  
> 
>   # this is only necessary if using duplicate delivery suppression
> 
>   delprune  cmd="ctl_deliver -E 3" period=1440
> 
>  
> 
>   # this is only necessary if caching TLS sessions
> 
>   tlsprune  cmd="tls_prune" period=1440
> 
>  
> 
>   # Uncomment the next entry, if you want to automatically remove
> 
>   # old messages of EVERY user.
> 
>   # This example calls ipurge every 60 minutes and ipurge will delete
> 
>   # ALL messages older then 30 days.
> 
>   # enter 'man 8 ipurge' for more details
> 
>  
> 
>   # cleanup      cmd="ipurge -d 30 -f" period=60
> 
> }
> 
>  
> 
> /var/log/messages
> 
>  
> 
> Dec 12 00:24:41 ms01 master[3932]: process 5143 exited, status 0
> 
> Dec 12 00:37:51 ms01 sshd[5167]: Accepted password for root from 
> ::ffff:192.168.0.173 port 1084
> 
> Dec 12 00:40:11 ms01 sshd[5285]: Accepted password for cyrus from 
> ::ffff:192.168.0.173 port 1085
> 
> Dec 12 00:40:23 ms01 perl: No worthy mechs found
> 
> Dec 12 00:40:26 ms01 imapd[5308]: Login disabled user=cyrus auth=cyrus 
> host=localhost [127.0.0.1]
> 
> Dec 12 00:40:32 ms01 perl: No worthy mechs found
> 
> Dec 12 00:40:35 ms01 imapd[5313]: Login disabled user=cyrus auth=cyrus 
> host=localhost [127.0.0.1]
> 
> Dec 12 00:41:00 ms01 imapd[5321]: Login disabled user=cyrus auth=cyrus 
> host=localhost [127.0.0.1]
> 
> Dec 12 00:42:30 ms01 perl: No worthy mechs found
> 
> Dec 12 00:42:32 ms01 imapd[5337]: Login disabled user=root auth=root 
> host=localhost [127.0.0.1]
> 
>  
> 
> Regards.
> 
> Tim Branson.
> Manager of Information Technology.
> 
> 331 Mallory Station Road
> Franklin, TN 37067
> 
> Phone:   615-224-1007
> Fax:     615-224-1414
> Cell:    615-456-5489
> 
> Email: tbranson at leecompany.com
> Web Page: http://www.leecompany.com <http://www.leecompany.com/>
> 
>  
> 
> */"Working together for success"/*
> 
>  
> 


-- 
Kenneth Murchison     Oceana Matrix Ltd.
Software Engineer     21 Princeton Place
716-662-8973 x26      Orchard Park, NY 14127
--PGP Public Key--    http://www.oceana.com/~ken/ksm.pgp





More information about the Info-cyrus mailing list