Virtual domain admin login behaviour

Nels Lindquist nlindq at maei.ca
Mon May 14 17:31:36 EDT 2018


On 2018/04/30 12:22 PM, Dan White wrote:
> On 04/30/18 12:00 -0600, Nels Lindquist wrote:
>> I have a mail server still running an older version of Cyrus IMAPD
>> (version 2.3.16) on CentOS 6 with virtual domains, using OpenLDAP as
>> an authentication backend with saslauthd for LOGIN/PLAIN when SSL/TLS
>> is used.
>>
>> I recently set up a domain admin account for one of the virtual
>> domains in order to facilitate transfer of mail from that domain to a
>> different mail host, and while I was testing the setup I noticed some
>> inconsistent behaviour.
>>
>> Using "imtest -m PLAIN -u user at example.ca -a admin at example.ca
>> mail.example.ca", I'm successfully able to login.
>>
>> Executing ". list *.*" produces the expected list of user at example.ca's
>> INBOX and subfolders.
>>
>> Using "imtest -u user at example.ca -a admin at example.ca" (Note: no
>> mechanism override) it defaults to using the LOGIN method rather than
>> PLAIN, and I'm successfully able to log in.
>>
>> However, the ". list *.*" command now produces a list of every folder
>> in the example.ca subdomain, not just the specified user's mailbox.
>>
>> Anyone know what's going on here?
> 
> The LOGIN mech does not support proxy authentication:
> 
> https://www.sendmail.org/~ca/email/cyrus2/mechanisms.html

Ah, that makes perfect sense.

Thanks!

----
Nels Lindquist <nlindq at maei.ca>


More information about the Info-cyrus mailing list