Virtual domain admin login behaviour

Dan White dwhite at olp.net
Mon Apr 30 14:22:50 EDT 2018


On 04/30/18 12:00 -0600, Nels Lindquist wrote:
>I have a mail server still running an older version of Cyrus IMAPD
>(version 2.3.16) on CentOS 6 with virtual domains, using OpenLDAP as
>an authentication backend with saslauthd for LOGIN/PLAIN when SSL/TLS
>is used.
>
>I recently set up a domain admin account for one of the virtual
>domains in order to facilitate transfer of mail from that domain to a
>different mail host, and while I was testing the setup I noticed some
>inconsistent behaviour.
>
>Using "imtest -m PLAIN -u user at example.ca -a admin at example.ca
>mail.example.ca", I'm successfully able to login.
>
>Executing ". list *.*" produces the expected list of user at example.ca's
>INBOX and subfolders.
>
>Using "imtest -u user at example.ca -a admin at example.ca" (Note: no
>mechanism override) it defaults to using the LOGIN method rather than
>PLAIN, and I'm successfully able to log in.
>
>However, the ". list *.*" command now produces a list of every folder
>in the example.ca subdomain, not just the specified user's mailbox.
>
>Anyone know what's going on here?

The LOGIN mech does not support proxy authentication:

https://www.sendmail.org/~ca/email/cyrus2/mechanisms.html

-- 
Dan White


More information about the Info-cyrus mailing list