cyradm lm wildcard and the @ sign

Andrew Morgan morgan at orst.edu
Wed May 12 17:38:24 EDT 2010 

On Thu, 13 May 2010, Berend de Boer wrote:

>>>>>> "Andrew" == Andrew Morgan <morgan at orst.edu> writes:
>
>    Andrew> Use "imtest" instead of "nc".  imtest can do all the SASL
>    Andrew> login magic and still gives you raw access to the
>    Andrew> connection for sending commands.
>
> Same thing:
>
>  # imtest -u admin at server2.example.com localhost
>  S: * OK server2.example.com Cyrus IMAP4 v2.2.13-Debian-2.2.13-16ubuntu1 server ready
>  C: C01 CAPABILITY
>  S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE STARTTLS LOGINDISABLED AUTH=CRAM-MD5 SASL-IR
>  S: C01 OK Completed
>  C: A01 AUTHENTICATE CRAM-MD5
>  S: + PDI4ODc2MDU3MTUuMTU0MDU3ODZAc2VydmVyMi54cGxhaW5ob3N0aW5nLmNvbT4=
>  Please enter your password:
>  C: cm9vdCAzNmJhYWUzMGY1MGEwNjkzYWEyMjI1MzM1OTc0ZmE0NQ==
>  S: A01 NO authentication failure
>  Authentication failed. generic failure
>  Security strength factor: 0
>  . LIST * *@example.com
>  . BAD Please login first
>  . LOGIN cyrus at server2.example.com oUQR8keuun
>  . NO Login only available under a layer
>  C: Q01 LOGOUT
>  * BYE LOGOUT received
>  Q01 OK Completed
>  Connection closed.
>
>
> Perhaps the "only available under a layer" is an indication I must use
> ssl or so? Tried that as well:
>
>
>  # imtest -s -u admin -r server2.example.com
>  WARNING: no hostname supplied, assuming localhost
>
>  verify error:num=19:self signed certificate in certificate chain
>  TLS connection established: TLSv1 with cipher AES256-SHA (256/256 bits)
>  S: * OK server2.example.com Cyrus IMAP4 v2.2.13-Debian-2.2.13-16ubuntu1 server ready
>  C: C01 CAPABILITY
>  S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE AUTH=CRAM-MD5 SASL-IR
>  S: C01 OK Completed
>  C: A01 AUTHENTICATE CRAM-MD5
>  S: + PDQwNDczMDY5My4xNTQwNTk4NEBzZXJ2ZXIyLnhwbGFpbmhvc3RpbmcuY29tPg==
>  Please enter your password:
>  C: cm9vdCBhODUyNzIxZDM4MjVkMzEwMGNjMDlkNmM0YzEzMmM1Yw==
>  S: A01 NO authentication failure
>  Authentication failed. generic failure
>  Security strength factor: 256
>
>
> And perhaps something I should mention: all users are defined in a
> postgresql database, but the admin user is in an sasldb2 database.
>
> I think that explains the problem right? Both nc and imtest use the
> normal imap server interface but my admin user isn't defined there.
>
> But isn't this a side track? I.e. I just want to have a wildcard on a
> string with an @ character working? Or is this actually the root cause?
>
>
> I thought I had to create users and set acls and such by using
> cyradm. If not, can I just create users by login in the "normal" way,
> i.e. through the imap daemon itself? Because that would open up a
> different avenue.

cyradm is just an IMAP client too.  :)

If you are able to login with cyradm, then obviously it should be possible 
to login with imtest.

 	Andy

More information about the Info-cyrus mailing list