NO Login failed: generic failure

Dan White dwhite at olp.net
Wed Mar 26 14:25:04 EDT 2014


On 03/26/14 09:27 -0700, Marc Fournier wrote:
>cyrus-imapd24-2.4.17_4/ cyrus-sasl-2.1.26_5

>/var/log # telnet localhost imap
>Trying 127.0.0.1...
>Connected to localhost.
>Escape character is '^]'.
>* OK [CAPABILITY IMAP4rev1 LITERAL+ ID ENABLE STARTTLS AUTH=SCRAM-SHA-1 AUTH=DIGEST-MD5 AUTH=CRAM-MD5 AUTH=LOGIN AUTH=PLAIN SASL-IR] xxx.xxx Cyrus IMAP v2.4.17 server ready
>. login xxx at xxx.xxx xxx
>. NO Login failed: generic failure
>. logout
>* BYE LOGOUT received
>. OK Completed
>Connection closed by foreign host.
>
>/var/log/debug.log shows:
>
>==
>Mar 26 16:09:08 xxx imap[67279]: SQL backend defaulting to engine 'sqlite'
>Mar 26 16:09:08 xxx imap[67279]: executed
>Mar 26 16:09:08 xxx imap[67279]: sql auxprop plugin using sqlite engine
>Mar 26 16:09:08 xxx imap[67279]: IOERROR: opening /var/spool/imap/user_deny.db: No such file or directory
>Mar 26 16:09:08 xxx imap[67279]: accepted connection
>Mar 26 16:09:36 xxx imap[67279]: accepted connection
>Mar 26 16:09:49 xxx imap[67279]: sql plugin Parse the username xxx at xxx.xxx
>Mar 26 16:09:49 xxx imap[67279]: sql plugin try and connect to a host
>Mar 26 16:09:49 xxx imap[67279]: sql plugin trying to open db '/var/db/sqlite/mailsys' on host ''
>Mar 26 16:09:49 xxx imap[67279]: begin transaction
>Mar 26 16:09:49 xxx imap[67279]: sql plugin create statement from userPassword xxx xxx.xxx
>Mar 26 16:09:49 xxx imap[67279]: sql plugin doing query SELECT userPassword FROM sasl_auth WHERE userid = 'xxx at xxx.xxx';
>Mar 26 16:09:49 xxx imap[67279]: sql plugin create statement from cmusaslsecretPLAIN xxx xxx.xxx
>Mar 26 16:09:49 xxx imap[67279]: sql plugin doing query SELECT cmusaslsecretPLAIN FROM sasl_auth WHERE userid = 'xxx at xxx.xxx';
>Mar 26 16:09:49 xxx imap[67279]: sql plugin: no such column: cmusaslsecretPLAIN
>Mar 26 16:09:49 xxx imap[67279]: commit transaction
>Mar 26 16:09:49 xxx imap[67279]: sql plugin Parse the username xxx at xxx.xxx
>Mar 26 16:09:49 xxx imap[67279]: sql plugin try and connect to a host
>Mar 26 16:09:49 xxx imap[67279]: sql plugin trying to open db '/var/db/sqlite/mailsys' on host ''
>
>/var/log/messages shows:
>
>Mar 26 16:09:49 rdfund imap[67279]: badlogin: xxx [200.46.208.227] plaintext xxx at xxx.xxx SASL(-1): generic failure: checkpass failed
>
>I’ve even tried su’ng to the cyrus user and running the sql command against the database, and it returns the right database:
>
>% echo "SELECT userPassword FROM sasl_auth WHERE userid = ‘xxx at xxx.xxx';" | sqlite /var/db/sqlite/mailsys
>rightPW
>%

What does your imapd.conf config look like? In particular the sasl_*,
virtdomain, defaultdomain, allowplaintext, and loginrealms options.

Try using a sasl mechanism, e.g.:

imtest -m digest-md5 -a 'xxx at xxx.xxx' localhost

>Is there any way of getting more debug information out of the backend without modifying the code itself?

Add 'sasl_log_level: 7' to imapd.conf, and verify your syslog daemon is
logging 'auth.*'.

-- 
Dan White


More information about the Info-cyrus mailing list