cyrus 2.2 from yesterday cvs
Ilya
mail at krel.org
Wed Feb 19 15:45:36 EST 2003
Ken, do you have any plans for global admins without default domain setting?
On Wed, Feb 19, 2003 at 09:24:54AM -0500, Ken Murchison wrote:
>
>
> Jure Pecar wrote:
> >
> > Hi all,
> >
> > I started playing with the recent cvs code. Basically i want to set up a
> > multidomain server with one default domain and mysql auxprop auth. So i
> > have this in imapd.conf (among other things):
> >
> > admins: cyrus
> > allowplaintext: yes
> > defaultdomain: example.com
> > hashimapspool: 1
> > imapidresponse: 1
> > loginrealms: example.com
> > unixhirearcysep: 1
> > virtdomains: 1
> > sasl_pwcheck_method: auxprop
> > sasl_mysql_statement: select password_plain from users where username='%u'
> > and realm='%r'
> > sasl_mysql_verbose: yes
> >
> > Here are my current findings:
> >
> > cyradm still does not compile to a working state outofthebox. Looks like
> > env variables like BDB_LIB and SASL_LIB are not passed down to perl/imap.
> > When exporting them by hand and going through standard 'perl Makefile.PL;
> > make; make install' it works.
> >
> > There's a comment at the top of sasl*/plugins/mysql.c which states that '
> > %r is the realm which could be the kerbros realm, the FQDN of the computer
> > the sasl app is on or what ever is after the @ on a username'. Looking at
> > the code it looks like 'whatever is after @ on a username' take precedence
> > over server FQDN (line 276 of plugins/mysql.c in sasl-2.1.12).
> > Now, if i try to log in with imtest, it looks like it does not care what
> > is after @ at all. Regardless if i set -a cyrus at example.com or -u
> > cyrus at example.com or both, i get such log entries: mysql plugin doing
> > query select password_plain from users where username='cyrus' and
> > realm='myhost.example.com'. Same goes for IMAP logins.
> >
> > I have a default domain set in imapd.conf. I created its ondisk hirearchy
> > with mkimap -d example.com and expect its mailboxes to appear underneath.
> > However, mailboxes under default domain appear at the top level, as if
> > virtdomains is off. (is this intentional? i havent run mkimap without -d
>
> Yes. defaultdomain is mainly used for backwards compatibility when
> upgrading a single domain server. If you're starting from scratch then
> you probably don't want/need to use defaultdomain.
>
> --
> Kenneth Murchison Oceana Matrix Ltd.
> Software Engineer 21 Princeton Place
> 716-662-8973 x26 Orchard Park, NY 14127
> --PGP Public Key-- http://www.oceana.com/~ken/ksm.pgp
More information about the Info-cyrus
mailing list