The first thing you might try to do is determine if cyrus is actually using pam or if the problem is with your pam configuration.
put a: auth required pam_warn.so in your pam configuration file which should place a message in the log file (From http://www.kernel.org/pub/linux/libs/pam/Linux-PAM-html/pam-5.html ... and the pam_warn module will send a syslog message to auth.notice: ) You also mention that you have configuration files for imap and pop. >From the configuration guide (at the url above) ==== The local configuration of those aspects of system security controlled by Linux-PAM is contained in one of two places: either the single system file, /etc/pam.conf; or the /etc/pam.d/ directory. In this section we discuss the correct syntax of and generic options respected by entries to these files. ==== I'm not sure if you have things both places which one takes precidence. If you determine that pam is being called you can then focus on your pam configuration. If you don't see the log message then it is more likely configuration of cyrus. Note I have PAM in uppercase in imap.conf - I don't know if that makes a difference. johnh... On Fri, 28 Sep 2001, root wrote: > Date: Fri, 28 Sep 2001 08:22:22 -0400 > From: root <[EMAIL PROTECTED]> > To: [EMAIL PROTECTED], [EMAIL PROTECTED], > [EMAIL PROTECTED], [EMAIL PROTECTED] > Subject: Re: Cyrus 2.0.16 with RedHat 7.1 > > Hi Everybody, > > I have compiled the sources with the "--with-auth=unix" and I also > tried with "--with-pwcheck_method=pam" but still does not work. > > My /etc/imapd.conf file looks like this: > configdirectory: /var/imap > partition-default: /var/spool/imap > admins: cyrus > allowanonymouslogin: no > sasl_pwcheck_method: pam > > My /etc/cyrus.conf: > # standard standalone server implementation > > START { > # do not delete these entries! > mboxlist cmd="ctl_mboxlist -r" > deliver cmd="ctl_deliver -r" > } > > # UNIX sockets start with a slash and are put into /var/imap/socket > SERVICES { > # add or remove based on preferences > imap cmd="/usr/cyrus/bin/imapd" listen="imap" prefork=0 > imaps cmd="/usr/cyrus/bin/imapd -s" listen="imaps" prefork=0 > pop3 cmd="/usr/cyrus/bin/pop3d" listen="pop3" prefork=0 > pop3s cmd="/usr/cyrus/bin/pop3d -s" listen="pop3s" prefork=0 > sieve cmd="/usr/cyrus/bin/timsieved" listen="sieve" prefork=0 > > # at least one LMTP listener is required for proper delivery > # lmtp cmd="lmtpd" listen="lmtp" prefork=0 > lmtpunix cmd="/usr/cyrus/bin/lmtpd" listen="/var/imap/socket/lmtp" > prefor > k=0 > } > > EVENTS { > # this is required > checkpoint cmd="ctl_mboxlist -c" period=30 > > # this is only necessary if using duplicate delivery suppression > #delprune cmd="ctl_deliver -E 3" period=1440 > } > > My /usr/lib/sasl/Cyrus.conf > pwcheck_method:pam > > /var/log/messages Log file with a 600 perm. shadow file: > Sep 28 07:57:26 magenta pop3d[1831]: unable to open Berkeley db /etc/sasldb: > No such file or directory > Sep 28 07:57:26 magenta pop3d[1831]: unable to open Berkeley db /etc/sasldb: > No such file or directory > Sep 28 07:57:31 magenta pop(pam_unix)[1831]: authentication failure; logname= > uid=76 euid=76 tty= ruser= rhost= user=test > > /var/log/messages Log file with a 777 perm. shadow file: > Sep 28 08:01:00 magenta pop3d[1831]: login: magenta.omnisig.com[127.0.0.1] > test plaintext > > In both previous cases, I got the following output: > Trying 127.0.0.1... > Connected to 127.0.0.1. > Escape character is '^]'. > +OK magenta.omnisig.com Cyrus POP3 v2.0.16 server ready > user test > +OK Name is a valid mailbox > pass ******** > -ERR Invalid login > > My /etc/pam.d/imap and pop files look like this: > #%PAM-1.0 > auth required /lib/security/pam_stack.so service=system-auth > account required /lib/security/pam_stack.so service=system-auth > > So does anybody have any ideas??? > > Thank you in advance > > Eric > > Eric L'Heureux wrote: > > > -------- Original Message -------- > > Subject: Re: Cyrus 2.0.16 with RedHat 7.1 > > Date: Fri, 28 Sep 2001 06:58:50 +1000 > > From: "Jeremy Howard" <[EMAIL PROTECTED]> > > Reply-To: "Jeremy Howard" <[EMAIL PROTECTED]> > > To: "Eric L'Heureux" > > <[EMAIL PROTECTED]>,<[EMAIL PROTECTED]> > > References: <[EMAIL PROTECTED]> > > > > Eric L'Heureux wrote: > > > I need help! I'm trying to install Cyrus 2.0.16 on Red Hat 7.1. > > > I keep getting "Invalid login" errors when trying to connect from pop or > > > imap. > > > > > > I've set-up Cyrus to use PAM for authentication but it seems to > > > try looking for a sasldb file. I DO NOT want to use sasldb, I have > > > already a huge passwd/shadow database and I'm not planning to convert it > > > to sasldb. > > > > > What configure command did you use? What do your cyrus.conf and > > imapd.conf > > files look like? What is in your imap log when you fail to authenticate? > >
