-authz no longer working?

John Masterson jmasterson at modwest.com
Fri Sep 4 17:01:42 EDT 2009


Dan White wrote:
> Looks like this problem is related to the mechanism that you are connecting
> with. If I explicitly request the 'PLAIN' mechanism, then I see:
> 
> Sep  4 15:06:25 neo cyrus/imap[28930]: login: vpn.olp.net [67.217.151.100]
> dwhite PLAIN User logged in
> 
> but if I do the LOGIN mechanism (which I think is really the RFC 3501 6.2.3
> login command, which doesn't support authz), then I get something similar
> to what you're getting:
> 
> Sep  4 15:06:00 neo cyrus/imap[28930]: login: vpn.olp.net [67.217.151.100]
> cyrus plaintext User logged in

Looks like you're on to something!

jmasterson at mgmt:~$ cyradm -user cyrus -authz magnafix -auth PLAIN mbe1
Password:
IMAP Password:
               mbe1.msomt.modwest.com>
mbe1.msomt.modwest.com>

had to enter password twice, resulting in logs:

Sep  4 14:59:09 mbe1 cyrus/imap[18587]: badlogin: mgmt.modwest.com 
[204.11.245.21] PLAIN [SASL(-16): encryption needed to use mechanism: 
security flags do not match required]
Sep  4 14:59:39 mbe1 cyrus/imap[18587]: login: mgmt.modwest.com 
[204.11.245.21] cyrus plaintext User logged in


That's something new for me to search for anyway. If you have a silver 
bullet for this, I do appreciate the help.


--
John Masterson
http://modwest.com







More information about the Info-cyrus mailing list