I'm hoping that someone here may be able to give me some advice. I'm
attempting to configure a machine inside our company to work as a testbed
mail system. The goal is to use it to test upgrades to our mail software
before moving it onto the company's production server. (This came about
because I seriously botched my first attempt to upgrade sendmail to
version 8.11.6 on the production server. This resulted in mail delivery
problems for several hours, which upset a few people. :-)
A quick overview of the system:
A 700 MHz PIII with 512 MB of RAM.
RedHat 6.2 installed with _almost_ all service patches. (Not all of them
are relevant for our use.)
Installed mail software:
TrendMicro VirusWall 3.6
cyrus-sasl-1.5.24
cyrus-imapd-1.6.19
sendmail-8.9.3
Now I want to move to sendmail 8.11.6 and cyrus-imapd-2.0.16 without
breaking anything. I also want to change my sendmail configuration to
use SMTP-AUTH, and to install some spam filtering software. This all
still has to work with the current VirusWall software.
To test the transition, we added a DNS entry for a fake domain name
which we named foo.bar (not the real name, but I'm paranoid about
releasing that sort of information) and added a MX record for the
test machine. Mail sent to [EMAIL PROTECTED] gets directed to the test
machine just fine.
Next I installed the virus software. Okay, everything still works.
Now I attempt to install cyrus-sasl and cyrus-imapd. I used the very
same packages from our working system, and configured everything to be
identical to our production machine.
/usr/lib/sasl/Cyrus.conf contains:
pwcheck_method:passwd
/etc/imapd.conf contains:
configdirectory: /var/imap
partition-default: /var/spool/imap
admins: cyrusadmin
allowanonymouslogin: no
sasl_pwcheck_method: sasldb
/etc/pam.d/imap contains: (although it isn't used)
#%PAM-1.0
auth required /lib/security/pam_pwdb.so shadow nullok
account required /lib/security/pam_pwdb.so
I used saslpasswd to create a shared secret for cyrusadmin and one for
myself. These show up in the output from sasldblistusers
/usr/sbin/sasldblistusers
user: bacon realm: xxxxxx.aerodyne.com mech: PLAIN
user: cyrusadmin realm: xxxxxx.aerodyne.com mech: PLAIN
user: cyrusadmin realm: xxxxxx.aerodyne.com mech: DIGEST-MD5
user: bacon realm: xxxxxx.aerodyne.com mech: CRAM-MD5
user: bacon realm: xxxxxx.aerodyne.com mech: DIGEST-MD5
user: cyrusadmin realm: xxxxxx.aerodyne.com mech: CRAM-MD5
Now I want to create an imap mailbox for bacon on my machine using cyradm.
cyradm -u cyrusadmin shamus.aerodyne.com
Please enter your password:
application-specific initialization failed: authentication failed
If I try the tests suggested in the installation directions, I get
imtest -m login -u cyrusadmin -p imap xxxxxx.aerodyne.com
S: * OK xxxxxx.aerodyne.com Cyrus IMAP4 v1.6.19 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ NAMESPACE UIDPLUS
X-NON-HIERARCHICAL-RENAME NO_ATOMIC_RENAME AUTH=PLAIN AUTH=LOGIN UNSELECT
X-NETSCAPE
S: C01 OK Completed
Password:
+ go ahead
L01 NO Login failed. Error=-1
Authenticated.
Security strength factor: 0
The imapd.log file just shows
Oct 22 18:13:34 xxxxxx imapd[7708]: badlogin:
xxxxxx.aerodyne.com[198.4.242.xxx] PLAIN generic failure
I currently have cyrus-imapd-1.6.19 installed on both the production
server and my small testbed machine. I've rebuilt all of the software
on this machine in the hopes that library inconsistencies will be minimal.
Is there anything obvious which I've forgotten? Is it possible that I
cyrus-imapd and cyrus-sasl are using incompatible databases? I have
db-3.1.17 installed on the machine.
Here are the libraries used by the software installed on the testbed
machine.
ldd /usr/cyrus/bin/imapd
libsasl.so.7 => /usr/lib/libsasl.so.7 (0x4001d000)
libdl.so.2 => /lib/libdl.so.2 (0x40028000)
libdb.so.3 => /lib/libdb.so.3 (0x4002c000)
libc.so.6 => /lib/libc.so.6 (0x40066000)
libgdbm.so.2 => /usr/lib/libgdbm.so.2 (0x4015c000)
libcrypt.so.1 => /lib/libcrypt.so.1 (0x40162000)
libpam.so.0 => /lib/libpam.so.0 (0x40190000)
libresolv.so.2 => /lib/libresolv.so.2 (0x40198000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
ldd /usr/sbin/saslpasswd
libsasl.so.7 => /usr/lib/libsasl.so.7 (0x4001d000)
libgdbm.so.2 => /usr/lib/libgdbm.so.2 (0x40028000)
libdl.so.2 => /lib/libdl.so.2 (0x4002e000)
libcrypt.so.1 => /lib/libcrypt.so.1 (0x40032000)
libpam.so.0 => /lib/libpam.so.0 (0x40061000)
libresolv.so.2 => /lib/libresolv.so.2 (0x40069000)
libdb.so.3 => /lib/libdb.so.3 (0x40078000)
libc.so.6 => /lib/libc.so.6 (0x400b2000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
I apologize for the length of this message, but the more detail I provide,
the more likely someone will see my error. Does any of this suggest a
possible solution to anyone?
Thanks in advance,
Fred Bacon
--
===========================================================================
Fred Bacon email: [EMAIL PROTECTED]
Aerodyne Research, Inc. http://www.aerodyne.com
45 Manning Rd Phone: (978) 663-9500 ext 273
Billerica, MA 01821-3976 FAX: (978) 663-4918
===========================================================================
"Scientists have invented a car that runs on pecans. That sounds like a
good idea until you consider that pecans are like $10 a jar. I've got
an idea for a car that runs on Faberge eggs and bald eadle heads."
-- SNL Weekend Update
