Hi all. We are trying to get Cyrus imap running, authenticating to
/etc/shadow. We would prefer not to run the pwcheck daemon (more on this
below). The /etc/shadow file is readable by the group "shadow", in which I
put root and the cyrus user. Authentication is not working (we are trying
to use plain auth). I get nothing useful from my logs, just unspecific
authentication failures.
Here's my environment:
Mandrake 8. Cyrus-sasl-1.5.24, from the mandrake package...I did not
configure this at all. Cyrus-imapd-2.0.16. Berkeley db 3.3.1, also from
the mandrake package.
here's the configure statement I used for cyrus-imap:
./configure --with-cyrus-user=cyrus --with-dbdir=/usr/local/BerkeleyDB.3.3
--with-sasl=/usr/local/lib --with-ssl=/usr/lib --with-auth=unix
My main point of confusion is this: is it OK to use the Mandrake 8 distro's
generic install of cyrus-sasl and bekerely db? Keeping in mind that I want
to use shadow for my user info, i would think that the db is not really a
factor. SASL, on the other hand, I am not so sure about.
If I do end up having to homebrew the SASL config, will that effect
sendmail, which relies on SASL in its own right? Has anyone set up cyrus
with a config like mine, and if so, what did you do?
Thank you in advance for any advice!
Andrew Sternick
files follow...
_______________________
here's my imapd.conf:
[root@snapple /etc]# more imapd.conf
configdirectory: /var/imap
srvtab: /var/imap/srvtab
#defaultpartition: default
partition-default: /var/spool/imap
admins: root cyrus
sasl_pwcheck_method: shadow
servername: snapple.instant802.com
#servername: 192.168.0.1
allowplaintext: yes
allowanonymouslogin: no
_____________________
and my cyrus.conf:
[root@snapple /etc]# more cyrus.conf
# standard standalone server implementation
START {
# do not delete these entries!
mboxlist cmd="ctl_mboxlist -r"
deliver cmd="ctl_deliver -r"
# this is only necessary if using idled for IMAP IDLE
# idled cmd="idled"
}
# UNIX sockets start with a slash and are put into /var/imap/socket
SERVICES {
# add or remove based on preferences
imap cmd="imapd" listen="imap" prefork=0
imaps cmd="imapd -s" listen="imaps" prefork=0
pop3 cmd="pop3d" listen="pop3" prefork=0
pop3s cmd="pop3d -s" listen="pop3s" prefork=0
sieve cmd="timsieved" listen="sieve" prefork=0
# at least one LMTP is required for delivery
# lmtp cmd="lmtpd" listen="lmtp" prefork=0
lmtpunix cmd="lmtpd" listen="/var/imap/socket/lmtp" prefork=0
}
EVENTS {
# this is required
checkpoint cmd="ctl_mboxlist -c" period=30
# this is only necessary if using duplicate delivery suppression
delprune cmd="ctl_deliver -E 3" period=1440
}
__________________
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
