If you want Plaintext you will need to disable CRAM and DIGEST and SRP/OTP.
--On Tuesday, April 30, 2002 12:34 AM -0400 "[EMAIL PROTECTED]" <[EMAIL PROTECTED]> wrote: > Scott, > > Thanks for the help... I believe I will not aware there is such utility > if you don't tell me... =) If you read the docs/install.html it would have told you :) > Indeed, I am still encountering the same problem.. and please find > what I have done below, > > 1. run mkimap as root (since error show up if I run as user cyrus) > 2. chown -R cyrus:mail /var/imap, /var/spool/imap, /usr/sieve > 3. run dohash as cyrus and see the following error message > > cyrus@uatwebmail:/home/ronnie/software/cyrus-imapd-2.1.3/tools> ./ > dohash > Use of uninitialized value in string eq at (eval 1) line 9, <DATA> line > 209. > Use of uninitialized value in string eq at (eval 1) line 17, <DATA> line > 209. > Use of uninitialized value in string eq at (eval 1) line 25, <DATA> line > 209. > upgrading configuration directory /var/imap...user error: couldn't create > a Hmm would be nice to know what it couldn't create? > And below please find the imapd.conf I am using, > > configdirectory: /var/imap > partition-default: /var/spool/imap > admins: cyrus > allowanonymouslogin: no > autocreatequota: 40000 > reject8bit: no > quotawarn: 90 > timeout: 30 > poptimeout: 10 > dracinterval: 0 > drachost: localhost > sasl_pwcheck_method: auxprop > allowplaintext: yes > altnamespace: yes > unixhierarchysep: yes > > I found that if I put anything other than auxprop in > "sasl_pwcheck_method", I will see the error message of below, Ok, and have you tried using test-saslauth.c? It's in the saslauthd directory uncompiled, it's a simple compile. Try it It is simple to pass to, what it does is pipe it thru to saslauthd and give a yes or no answer on if the authentication passed. Great for finding out if your Mech is right. what's drachost/interval? > > cyrus@uatwebmail:/home/ronnie/software/cyrus-imapd-2.1.3/tools> / > usr/local/bin/cyradm -u cyrus -a PLAIN localhost > Login failed: no mechanism available at /usr/lib/perl5/site_perl/5.6.1/ > Cyrus/IMAP/Admin.pm line 110 > cyradm: cannot authenticate to server with PLAIN as cyrus > > but if I use "auxprop", I will see the following, > > cyrus@uatwebmail:/home/ronnie/software/cyrus-imapd-2.1.3/tools> / > usr/local/bin/cyradm -u cyrus -a login localhost > Login failed: authentication failure at > /usr/lib/perl5/site_perl/5.6.1/Cyrus/ IMAP/Admin.pm line 110 > cyradm: cannot authenticate to server with login as cyrus > > If I change to use the following method, > sasl_pwcheck_method: saslauthd > allowplaintext: yes > > Recreate a new /etc/sasldb2 and try cyradm again, I see new problem. > > Apr 30 12:30:14 uatwebmail imapd[14389]: badlogin: > localhost[127.0.0.1] plaintext ronnie SASL(-4): no mechanism > available: checkpass failed > Apr 30 12:30:17 uatwebmail imapd[14389]: unable to tell master 1: > Broken pipe Sounds like you dont have saslauthd -a shadow running on the master and slaves. > And please correct me if I am wrong. What I want to do with the > password is, keep them as plaintext and use plaintext validation. Since > I think this will be the most simple setup. Plaintext is the most simple setup, it is also the most insecure setup. But it is also the only setup that will use /etc/shadow and /etc/passwd for the password retrieval. > And one more question is, what should I consider when I am using > Sendmail to authenticate against the sasldb? Will plaintext work with > Sendmail? Plaintext will look also for sendmail, another user in the mailing list has been working with getting CRAM and DIGEST working. But i believe he has PLAINTEXT fine. Sincerely, Scott
