-authz no longer working?
jmasterson at modwest.com
Fri Sep 4 17:01:42 EDT 2009
Dan White wrote:
> Looks like this problem is related to the mechanism that you are connecting
> with. If I explicitly request the 'PLAIN' mechanism, then I see:
> Sep 4 15:06:25 neo cyrus/imap: login: vpn.olp.net [126.96.36.199]
> dwhite PLAIN User logged in
> but if I do the LOGIN mechanism (which I think is really the RFC 3501 6.2.3
> login command, which doesn't support authz), then I get something similar
> to what you're getting:
> Sep 4 15:06:00 neo cyrus/imap: login: vpn.olp.net [188.8.131.52]
> cyrus plaintext User logged in
Looks like you're on to something!
jmasterson at mgmt:~$ cyradm -user cyrus -authz magnafix -auth PLAIN mbe1
had to enter password twice, resulting in logs:
Sep 4 14:59:09 mbe1 cyrus/imap: badlogin: mgmt.modwest.com
[184.108.40.206] PLAIN [SASL(-16): encryption needed to use mechanism:
security flags do not match required]
Sep 4 14:59:39 mbe1 cyrus/imap: login: mgmt.modwest.com
[220.127.116.11] cyrus plaintext User logged in
That's something new for me to search for anyway. If you have a silver
bullet for this, I do appreciate the help.
More information about the Info-cyrus