-authz no longer working?

John Masterson jmasterson at modwest.com
Fri Sep 4 17:01:42 EDT 2009

Dan White wrote:
> Looks like this problem is related to the mechanism that you are connecting
> with. If I explicitly request the 'PLAIN' mechanism, then I see:
> Sep  4 15:06:25 neo cyrus/imap[28930]: login: vpn.olp.net []
> dwhite PLAIN User logged in
> but if I do the LOGIN mechanism (which I think is really the RFC 3501 6.2.3
> login command, which doesn't support authz), then I get something similar
> to what you're getting:
> Sep  4 15:06:00 neo cyrus/imap[28930]: login: vpn.olp.net []
> cyrus plaintext User logged in

Looks like you're on to something!

jmasterson at mgmt:~$ cyradm -user cyrus -authz magnafix -auth PLAIN mbe1
IMAP Password:

had to enter password twice, resulting in logs:

Sep  4 14:59:09 mbe1 cyrus/imap[18587]: badlogin: mgmt.modwest.com 
[] PLAIN [SASL(-16): encryption needed to use mechanism: 
security flags do not match required]
Sep  4 14:59:39 mbe1 cyrus/imap[18587]: login: mgmt.modwest.com 
[] cyrus plaintext User logged in

That's something new for me to search for anyway. If you have a silver 
bullet for this, I do appreciate the help.

John Masterson

More information about the Info-cyrus mailing list