Cyrus+SASL+PAM+pam_mysql Migration problem
Simon Matter
simon.matter at ch.sauter-bc.com
Thu Jun 29 09:13:13 EDT 2006
>>>> sender: "Phil Pennock" date: "Wed, Jun 28, 2006 at 09:22:12PM +0200"
>>>> <<<EOQ
>> [..]
>> pwcheck_method: auxprop
>> mech_list: plain login cram-md5 digest-md5
>> sql_engine: mysql
>> sql_database: sys
>> sql_user: someuser
>> sql_passwd: fubar
>> sql_select: SELECT password FROM users WHERE name='%u' and
>> domain='%r';
>
> Ok. I've dropped PAM+pam_mysql out of the equation.
> Now I've got a plain Cyrus+SASL, unsing auxprop & mysql.
> Read all the FAQs I could, the SASL Administrator guide and
> ended up with this config:
>
> /etc/imapd.conf
> =======================================================================
> configdirectory: /cyrus/imap
> partition-default: /cyrus/spool
> defaultacl: lrswipcd
> admins: cyrus at equat=com cyrus at equat.com
> allowanonymouslogin: no
> timeout: 400
> plaintextloginpause: 0
> quotawarn: 90
> autocreatequota: 50000
> singleinstancestore: yes
> drachost: localhost
> dracinterval: 600
> loginrealms: all
> allowplaintext: yes
>
> #######################################################################
> #### HERE I tried BOTH ways with 'sasl_' prefix, and
> #### without. I even tried both ways at the same time :)
> #######################################################################
> sasl_pwcheck_method: auxprop
> sasl_auxprop_plugin: sql
> sasl_mech_list: PLAIN
>
> sql_engine: mysql
> sql_database: email
> sql_user: cyrus
> sql_passwd: cypass
> sql_select: SELECT password FROM popusers WHERE alias='%u' and
> domain='%r';
^^^
I'm not sure you need this one.
And then, from examples I found on the net I think you need the sasl_
prefix like those:
sasl_pwcheck_method: auxprop
sasl_auxprop_plugin: sql
sasl_mech_list: PLAIN LOGIN CRAM-MD5 DIGEST-MD5
sasl_sql_engine: mysql
sasl_sql_hostnames: localhost
sasl_sql_user: xxx
sasl_sql_passwd: xxx
sasl_sql_database: xxx
sasl_sql_select: SELECT %p FROM users WHERE username = '%u' AND auth = '1'
I don't know if it can load the sql plugin with wrong sasl_sql_engine
parameter.
Simon
>
>
> However still no luck...
> =======================================================================
> [root at mailtx1 ~]# cyradm --user cyrus at equat.com localhost
> IMAP Password:
> Login failed: user not found at
> /usr/lib/perl5/site_perl/5.8.5/i386-linux-thread-multi/Cyrus/IMAP/Admin.pm
> line 118
> cyradm: cannot authenticate to server with as cyrus at equat.com
>
>
> Jun 29 00:07:01 mailtx1 master[18922]: about to exec
> /usr/lib/cyrus-imapd/imapd
> Jun 29 00:07:01 mailtx1 imap[18922]: executed
> Jun 29 00:07:01 mailtx1 imap[18922]: sql_select option missing
> Jun 29 00:07:01 mailtx1 imap[18922]: auxpropfunc error no mechanism
> available
> Jun 29 00:07:01 mailtx1 imap[18922]: _sasl_plugin_load failed on
> sasl_auxprop_plug_init for plugin: sql
> Jun 29 00:07:01 mailtx1 imap[18922]: accepted connection
> Jun 29 00:07:01 mailtx1 perl: No worthy mechs found
> Jun 29 00:07:08 mailtx1 imap[18922]: could not find auxprop plugin, was
> searching for 'sql'
> Jun 29 00:07:08 mailtx1 last message repeated 3 times
> Jun 29 00:07:08 mailtx1 imap[18922]: badlogin: localhost [127.0.0.1]
> plaintext cyrus at equat.com SASL(-13): user not found: checkpass failed
>
>
> I do have cyrus-sasl-sql installed properly in /usr/lib/sasl2:
> [root at mailtx1 ~]# ls /usr/lib/sasl2/*sql* -1
> /usr/lib/sasl2/libsql.la
> /usr/lib/sasl2/libsql.so
> /usr/lib/sasl2/libsql.so.2
> /usr/lib/sasl2/libsql.so.2.0.19
>
>
> Also I DO have the sql_select option... Why does it keep complaining
> about 'sql_select option missing' ?!?
>
>
> Is there anything else I have to add/remove to make cyrus and sasl
> play nice together... ? Should I buy them candies... :D ?
>
>
> Any help is highly appreciated,
> Thank you,
> Alex
> ----
> Cyrus Home Page: http://asg.web.cmu.edu/cyrus
> Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
> List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
>
More information about the Info-cyrus
mailing list