Can't access the imap server using telnet, nor send email.

badock badock at gmail.com
Tue Jan 22 11:49:27 EST 2008


so you haven't changed your /etc/pam.d/imap ?
mine says:
#%PAM-1.0
auth    include   system-auth
account   include   system-auth


2008/1/22, Alain Spineux <aspineux at gmail.com>:
>
> On Jan 22, 2008 3:09 PM, badock <badock at gmail.com> wrote:
> > OK, so with PAM, how do you set passwords to your virtual users ?
> > sorry, i'm like _really_ lost, and running out of time :-/
>
> Virtual user ? This mean your user don have local access to the server
> (ssh, ftp ...)
> Then you can use sasldb, without saslauth
> Exactly as I said.
>
> Maybe you have some problem with domain.
>
> 1 saspasswd2 foobar
> 2 saspasswd2 foobar at defaultdomain
> 3 saspasswd2 foobar at anotherdomain
>
> can have different result.
>
> 1 and 2 can have the same result if defaultdomain is the default domain
>
> I gave you my working config on centos-5.1, just changing imapd.conf
> and creating sasldb.
>
>
>
>
> >
> > thanks.
> >
> > 2008/1/22, Alain Spineux < aspineux at gmail.com>:
> >
> > > On Jan 22, 2008 2:33 PM, badock < badock at gmail.com> wrote:
> > > > mmmmh i still don't manage to have the 'testsaslauthd -u logon -p
> > password'
> > > > work...
> > > > does yours work allright ?
> > > > can you paste your /etc/sysconfig/saslauthd file please ?
> > >
> > > I don't use saslauthd !
> > >
> > > > in mine :
> > > > SOCKETDIR=/var/run/saslauthd
> > > > MECH=pam
> > > > FLAGS=
> > >
> > > If you use saslauthd with PAM, like you are trying, you dont need to
> > > work with a sasldb nor saslpasswd ....
> > >
> > >
> > > >
> > > >
> > > >
> > > > 2008/1/21, Alain Spineux <aspineux at gmail.com>:
> > > > > On Jan 21, 2008 5:31 PM, badock <badock at gmail.com > wrote:
> > > > > > OK, apparently, i have a problem, but it's more a SASL problem.
> > > > > > I set passwords with "saslpasswd2 -c logon" and then tried to
> check
> > > > whether
> > > > > > it worked with the command : "testsaslauthd -u logon -p
> password"
> > and it
> > > > > > doesn't work... :S
> > > > >
> > > > > Do you want to use saslauth or just don't realy know what you are
> > doing?
> > > > >
> > > > > I have just migrated my server yesterday using just here are some
> of
> > my
> > > > config :
> > > > >
> > > > > # cat  /etc/imapd.conf
> > > > > configdirectory: /var/lib/imap
> > > > > partition-default: /var/spool/imap
> > > > > admins: cyrus
> > > > > sievedir: /var/lib/imap/sieve
> > > > > sendmail: /usr/sbin/sendmail
> > > > > #sasl_pwcheck_method: saslauthd
> > > > > sasl_pwcheck_method: auxprop
> > > > > sasl_auxprop_plugin: sasldb
> > > > > sasl_mech_list: PLAIN
> > > > >
> > > > > tls_cert_file: /etc/pki/cyrus-imapd/cyrus-imapd.pem
> > > > > tls_key_file: /etc/pki/cyrus-imapd/cyrus-imapd.pem
> > > > > tls_ca_file: /etc/pki/tls/certs/ca- bundle.crt
> > > > >
> > > > > virtdomains: userid
> > > > > defaultdomain: max.asxnet.loc
> > > > > loginrealms: max.asxnet.loc
> > > > >
> > > > > hashimapspool: yes
> > > > >
> > > > > altnamespace:           0
> > > > > unixhierarchysep:       yes
> > > > > lmtp_downcase_rcpt:     yes
> > > > > username_tolower:       1
> > > > >
> > > > >
> > > > > THE relevant thing for you are :
> > > > >
> > > > > sasl_pwcheck_method: auxprop
> > > > > sasl_auxprop_plugin: sasldb
> > > > >
> > > > >
> > > > > # history | grep sasl
> > > > >   705  sasldblistusers2
> > > > >   706  saslpasswd2 cyrus at max.asxnet.loc
> > > > >   707  sasldblistusers2
> > > > >   709  saslpasswd2 -u max.asxnet.loc root
> > > > >   710  sasldblistusers2
> > > > >   728  chown cyrus.mail  /etc/sasldb2
> > > > >
> > > > >
> > > > > >
> > > > > > I checked the logs, here's what i found :
> > > > > > in /var/log/secure:
> > > > > > #  Jan 21 17:12:28 demovm33 saslauthd[3393]:
> pam_unix(imap:auth):
> > check
> > > > > > pass; user unknown
> > > > > > #  Jan 21 17:12:28 demovm33 saslauthd[3393]:
> pam_unix(imap:auth):
> > > > > > authentication failure; logname= uid=0 euid=0 tty= ruser= rhost=
> > > > > > #  Jan 21 17:12:28 demovm33 saslauthd[3393]:
> > pam_succeed_if(imap:auth):
> > > > > > error retrieving information about user logon
> > > > > >
> > > > > > in /var/log/messages:
> > > > > > #  Jan 21 17:12:20 demovm33 saslauthd[3351]: server_exit     :
> > master
> > > > > > exited: 3351
> > > > > > #  Jan 21 17:12:21 demovm33 saslauthd[3376]: set_auth_mech   :
> > unknown
> > > > > > authentication mechanism: map
> > > > > > #  Jan 21 17:12:27 demovm33 saslauthd[3392]: detach_tty      :
> > master
> > > > pid
> > > > > > is: 3392
> > > > > > #  Jan 21 17:12:27 demovm33 saslauthd[3392]: ipc_init        :
> > listening
> > > > on
> > > > > > socket: /var/run/saslauthd/mux
> > > > > > #  Jan 21 17:12:31 demovm33 saslauthd[3393]: do_auth         :
> auth
> > > > failure:
> > > > > > [user=logon] [service=imap] [realm=] [mech=pam] [reason=PAM auth
> > error]
> > > > > >
> > > > > > OK, so that's when in /etc/sysconfig/saslauthd i have one line
> > saying :
> > > > > > #  MECH=pam
> > > > > >
> > > > > > I tried with several other "MECH" but i still get errors like,
> for
> > > > instance
> > > > > > with MECH=shadow :
> > > > > > #  Jan 21 17:11:41 demovm33 saslauthd[3318]: server_exit     :
> > master
> > > > > > exited: 3318
> > > > > > #  Jan 21 17:11:41 demovm33 saslauthd[3351]: detach_tty      :
> > master
> > > > pid
> > > > > > is: 3351
> > > > > > #  Jan 21 17:11:41 demovm33 saslauthd[3351]: ipc_init        :
> > listening
> > > > on
> > > > > > socket: /var/run/saslauthd/mux
> > > > > > #  Jan 21 17:11:43 demovm33 saslauthd[3352]: do_auth         :
> auth
> > > > failure:
> > > > > > [user=logon] [service=imap] [realm=] [mech=shadow]
> [reason=Unknown]
> > > > > >
> > > > > >
> > > > > > I couldn't try to use the MECH=sasldb because natively the
> sasldb
> > mech
> > > > is
> > > > > > disabled, so i have two options :
> > > > > > 1. compile a new saslauthd from sources that supports sasldb (i
> > tried
> > > > and
> > > > > > failed, i get error coming from the .c and .h files :-/ )
> > > > > > 2. have it working without the sasldb, which i guess is
> possible...
> > i
> > > > mean i
> > > > > > only need a simple login/password thing, it's not that complex
> > > > > >
> > > > > > So anyway, when _you_ use this cyrus-imapd thing, do you
> > authenticate
> > > > with
> > > > > > the sasldb by typing login/password, or do you do it another way
> ?
> > > > > >
> > > > > > Hope it's clearer now to you (it isn't to me... ;) )
> > > > > > Any idea, please ?
> > > > > >
> > > > > >
> > > > > > @Alain> about this RCTP TO error, i'd say it comes from the
> SMTP,
> > but i
> > > > > > don't understand what you meant by "Ave you configured your SMTP
> to
> > > > accept
> > > > > > lgon at mydomai.com ?", do i have to configure something on the
> SMTP
> > side ?
> > > > >
> > > > > Often things are made to work together without to much change.
> > > > > It help to stay in the main idea of the developer, but not always
> easy
> > > > > to guest it.
> > > > > Yesterday I didn't touch my postfix on my centos 5.1 to make it
> works
> > > > > with cyrus.
> > > > >
> > > > > Regards
> > > > > > Thanks for paying interest in my helplessness :)
> > > > > >
> > > > > >
> > > > > >
> > > > > >  2008/1/21, Alain Spineux < aspineux at gmail.com>:
> > > > > >
> > > > > > > On Jan 21, 2008 2:19 PM, badock <badock at gmail.com> wrote:
> > > > > > > >
> > > > > > > > Hello all,
> > > > > > > >
> > > > > > > > I recently installed cyrus-imapd, and i'm now trying to make
> it
> > > > work.
> > > > > > > > I created a mailbox user (cm user.logon) then acl'ed it (sam
> > > > user.logon
> > > > > > > > logon all)
> > > > > > > >  Then i set a password to logon : saslpasswd2 -c logon
> > > > > > >
> > > > > > > maybe a
> > > > > > > # chown cyrus.cyrus /etc/sasl2.db
> > > > > > > or something like that could help
> > > > > > > Read all cyrus error messages in log files!
> > > > > > >
> > > > > > > > So now, i expect the "user" logon to have access to his
> mailbox
> > > > > > > > But it doesn't work, cause
> > > > > > > >
> > > > > > > > 1. i can't telnet/login to the imap server with "logon":
> > > > > > > >     shell says:
> > > > > > > >     LOGIN BAD Error in IMAP commabd received by server
> > > > > > > >
> > > > > > > > 2. i can't send any mail to logon at host.domain.com
> > > > > > > >      mailer says :
> > > > > > > >      RCPT TO < logon at mydomain.com> failed :
> > > > > > > >       < logon at mydomain.com >: Recipient address rejected:
> User
> > > > unknown in
> > > > > > > > local recipient table
> > > > > > >
> > > > > > > Where this message come from ? SMTP or cyrus ? Is-it lmtpd ?
> > > > > > > Can you give some more line around this error ?
> > > > > > > Ave you configured your SMTP to accept lgon at mydomai.com ?
> > > > > > >
> > > > > > > >
> > > > > > > >
> > > > > > > >  Do you have an idea how i can check wether the imap works
> or
> > not ?
> > > > > > > > Actually i'd like to check if my settings are ok, is there a
> way
> > to
> > > > > > check
> > > > > > > > that ?
> > > > > > > >
> > > > > > > >
> > > > > > > > Thanks in advance.
> > > > > > > >
> > > > > > > > ----
> > > > > > > > Cyrus Home Page: http://cyrusimap.web.cmu.edu/
> > > > > > > > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
> > > > > > > > List Archives/Info:
> > http://asg.web.cmu.edu/cyrus/mailing-list.html
> > > > > > > >
> > > > > > >
> > > > > > >
> > > > > > >
> > > > > > > --
> > > > > > > Alain Spineux
> > > > > > > aspineux gmail com
> > > > > > > May the sources be with you
> > > > > > >
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > > >
> > > > > --
> > > > > Alain Spineux
> > > > > aspineux gmail com
> > > > > May the sources be with you
> > > > >
> > > >
> > > >
> > >
> > >
> > >
> > > --
> > > Alain Spineux
> > > aspineux gmail com
> > > May the sources be with you
> > >
> >
> >
>
>
>
> --
> Alain Spineux
> aspineux gmail com
> May the sources be with you
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.andrew.cmu.edu/pipermail/info-cyrus/attachments/20080122/67ba50e4/attachment-0001.html 


More information about the Info-cyrus mailing list