Cyrus sasl authentication problem

Wilson, Dave dwilson at pactolus.com
Wed Dec 15 15:43:00 EST 2004


I'm using Cyrus with sasl, using auth method getpwent:

./saslauthd -d -a getpwent

I then use imtest:

./imtest -m login -u pcs localhost
S: * OK pcs-pfni-01 Cyrus IMAP4 v2.2.10 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
NAMESPACE UIDPLUS ID NO_ATOMIC_
RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT THREAD=ORDEREDSUBJECT
THREAD=REFERENCES ANNOTATEMOR
E IDLE AUTH=OTP AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN root {3}
S: + go ahead
C: <omitted>
S: L01 NO Login failed: authentication failure
Authentication failed. generic failure
Security strength factor: 0

The debug log from sasl is:

saslauthd[5293] :main            : num_procs  : 5
saslauthd[5293] :main            : mech_option: NULL
saslauthd[5293] :main            : run_path   : /var/state/saslauthd
saslauthd[5293] :main            : auth_mech  : getpwent
saslauthd[5293] :ipc_init        : using accept lock file:
/var/state/saslauthd/mux.accept
saslauthd[5293] :detach_tty      : master pid is: 0
saslauthd[5293] :ipc_init        : listening on socket:
/var/state/saslauthd/mux
saslauthd[5293] :main            : using process model
saslauthd[5293] :have_baby       : forked child: 5294
saslauthd[5293] :have_baby       : forked child: 5295
saslauthd[5293] :have_baby       : forked child: 5296
saslauthd[5293] :have_baby       : forked child: 5297
saslauthd[5293] :get_accept_lock : acquired accept lock
saslauthd[5293] :rel_accept_lock : released accept lock
saslauthd[5294] :get_accept_lock : acquired accept lock
saslauthd[5293] :do_auth         : auth failure: [user=root] [service=imap]
[realm=] [mech=getpwent]
 [reason=Unknown]
saslauthd[5293] :do_request      : response: NO
saslauthd[5294] :rel_accept_lock : released accept lock
saslauthd[5295] :get_accept_lock : acquired accept lock
saslauthd[5294] :do_auth         : auth failure: [user=root] [service=imap]
[realm=] [mech=getpwent]
 [reason=Unknown]
saslauthd[5294] :do_request      : response: NO

Why does this have user=root?  More generally, why is the authentication
failing?

Thanks
Dave

---
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html




More information about the Info-cyrus mailing list