saslpasswd and virtual domains

mitrohin a.s. swp at swp.pp.ru
Fri May 12 05:03:48 EDT 2006


On Thu, May 11, 2006 at 03:44:31PM +0200, Rudy Gevaert wrote:
> Hello,
> 
> I have some problems with setting up a domain wide cyrus administrator.
> 
> If I create a cyrus at mail.ugent.be user with saslpasswd2 and login as 
> that user with cyradm I can administrate the mail.ugent.be mailboxes.
> 
> In my imapd.conf I have:
> ...
> admins: cyrus at mail.ugent.be cyrus
> defaultdomain: ugent.be
> virtdomains: userid
> ...
> 
> So I would suspect that the user cyrus at ugent.be would be able to add 
> mailboxes in my domains, and in my ugent.be domain.
> 
> jura:/mail/mail1# sasldblistusers2
> cyrus at ugent.be: userPassword
> cyrus at mail.ugent.be: userPassword
> 
> 
> jura:/mail/mail1# cyradm --user cyrus mail1.ugent.be
> Password:
> cyradm: cannot authenticate to server with  as cyrus
> Segmentation fault
> jura:/mail/mail1# cyradm --user cyrus at ugent.be mail1.ugent.be
> Password:
> cyradm: cannot authenticate to server with  as cyrus at ugent.be
> Segmentation fault
> 
> The cyrus at mail.ugent.be user works as admin.
> 
> jura:/mail/mail1# cyradm --user cyrus at mail.ugent.be  mail1.ugent.be
> Password:
> mail1.ugent.be>
> 
> I have found some posts about the same problem in google groups but not 
>  with an answers.
> 

defaultdomain always is removed from username. imho, sasl routines
use hostname as realm for this case.

/swp


More information about the Info-cyrus mailing list