saslauthd problems causes cyradm coredump

Erik Norgaard norgaard at locolomo.org
Tue Aug 17 15:12:34 EDT 2004 

Hi,

I am having troubles making cyrus-imapd authenticate using
saslauthd, really, I just want to do something simple:
Authenticate against the password file.

Not specifying any mechanism, I keep getting an error 'A01 NO user
not found' with imtest and using cyradm causes a perl core dump (I
would have expected a nicer die).

I have run 'saslpaswd2 cyrus', but I understand that the sasldb2
isn't used anyway. Saslauthd is running with options '-a pam'.

I can't use mechanism 'PLAIN', imtest works with the 'LOGIN'
mechanism but I get error using this mechanism in my scripts
(Mail::IMAPClient).

What am I missing? Is this meant to be overcomplicated?

Thanks, Erik

Mail::IMAPClient debugging output:

Using Mail::IMAPClient version 2.2.9 and perl version 5.8.4 (5.008004)
Read: * OK top.example.com Cyrus IMAP4 v2.2.8 server ready
Connect: Received this from readline: 0/OUTPUT/* OK top.example.com Cyrus IMAP4 v2.2.8 server ready
Sending: 1 AUTHENTICATE LOGIN
Sent 22 bytes
Read: 1 NO encryption needed to use mechanism

The conf, imapd.conf:

configdirectory: /var/imap
partition-default: /var/imap/spool
altnamespace: yes
defaultdomain: example.com
virtdomains: yes
admins: cyrus root
defaultacl: anyone lrs
sieveusehomedir: false
sievedir: /var/imap/sieve
sasl_pwcheck_method: saslauthd

imtest output:
# imtest -u cyrus localhost
S: * OK top.example.com Cyrus IMAP4 v2.2.8 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE AUTH=NTLM AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR LISTEXT LIST-SUBSCRIBED
S: C01 OK Completed
C: A01 AUTHENTICATE NTLM TlRMTVNTUAABAAAABwIAAAAAAAAgAAAAAAAAACAAAAA=
S: + TlRMTVNTUAACAAAALAAsADAAAAAFAgIA/MWUjl45+mYAAAAAAAAAAAAAAAAAAAAAVABPAFAALgBEAEEARQBNAE8ATgBTAEUAQwBVAFIASQBUAFkALgBDAE8ATQA=
Please enter your password:
C: TlRMTVNTUAADAAAAAAAAAEAAAAAYABgAQAAAACwALABYAAAACAAIAIQAAAAAAAAAjAAAAAAAAACMAAAABQIAAEZUkCMicvZF8Dk1iYg7+FCa560OoL+9gFQATwBQAC4ARABBAEUATQBPAE4AUwBFAEMAVQBSAEkAVABZAC4AQwBPAE0AcgBvAG8AdAA=
S: A01 NO user not found
Authentication failed. generic failure
Security strength factor: 0

The log:

Aug 17 20:25:06 top imap[33465]: accepted connection
Aug 17 20:25:08 top imap[33465]: badlogin: localhost.example.com \
   [::1] DIGEST-MD5 [SASL(-13): user not found: no secret in database]

The log when -m plain:

Aug 17 20:56:26 top imap[33566]: accepted connection
Aug 17 20:56:30 top imap[33566]: badlogin: localhost.example.com \
   [::1] PLAIN [SASL(-16): encryption needed to use mechanism: \
   security flags do not match required]

GnuPG Key: http://www.locolomo.org/home/norgaard/norgaard.gpg.asc
pub  1024D/B02CC311 2004-04-05 Erik Norgaard <norgaard at locolomo.org>
     Key fingerprint = 6C11 B9B1 52BD F16D 34AD  9893 D3EC E6DB B02C C311
---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

More information about the Info-cyrus mailing list