> > I am following the Postfix-Cyrus-Web-cyradm-HOWTO. My command line is the > > > > following: > > > saslpasswd2 -c cyrus > > > Password: secret > > > Again (for verification): secret > > Here you create a user in /etc/sasldb2... > > > When I try to connect with cyradm: > > > cyradm --user cyrus --server localhost --auth plain > > > Password: secret > > > IMAP Password: secret > > > > I get the following errors in my /var/log/auth.log: > > > May 10 00:47:21 linuxmail perl: No worthy mechs found > > May 10 00:52:01 linuxmail imap(pam_unix)[31961]: authentication failure; > > logname= uid=0 euid=0 tty= ruser= rhost= user=cyrus > > May 10 00:52:01 linuxmail saslauthd[31961]: pam_sm_authenticate called. > > ... but you are using saslauthd. These are two difrent storages.
Ahhh - I thought they were using the same storage db, but were two different ways of accessing it. What authentication process uses the /etc/sasldb2? > > /var/log/maillog: > > May 10 01:12:50 linuxmail imap[31979]: accepted connection > > May 10 01:12:50 linuxmail master[32099]: about to exec > > /usr/lib/cyrus-imapd/imapd > > May 10 01:12:50 linuxmail imap[32099]: executed > > May 10 01:13:00 linuxmail imap[31979]: badlogin: localhost.localdomain > > [127.0.0.1] PLAIN [SASL(-4): no mechanism available: security flags do not > > match required] > > May 10 01:13:11 linuxmail imap[31979]: badlogin: localhost.localdomain > > [127.0.0.1] plaintext cyrus SASL(-13): authentication failure: checkpass > > failed > > > If your passwords are unencrypted in a mysql-db, you should use the > sql-auxprop-plugin. In your plugin-dir should be a libsql.so*-Plugin. The > available options are described in ./doc/options.html Indeed I have a libsql.so* in my /usr/lib/sasl2 directory. (defined as my plugin directory). I've read through the options.html document, but am not sure where i need to specify the sql-auxprop-plugin. Does that go in the /usr/lib/sasl2/smptd.conf file? in a /usr/lib/sasl2/imapd.conf file? How exactly should it go in? is my conf file just the following: pwcheck_method: auxprop auxprop_plugin: sql My /etc/pam.d/imapd: auth required /lib/security/pam_stack.so service=system-auth account required /lib/security/pam_stack.so service=system-auth auth sufficient pam_mysql.so user=mail passwd=secret host=localhost db=mail table=accountuser usercolumn=username passwdcolumn=password crypt=0 logtable=log logmsgcolumn=msg logusercolumn=user loghostcolumn=host logpidcolumn=pid logtimecolumn=time account required pam_mysql.so user=mail passwd=secret host=localhost db=mail table=accountuser usercolumn=username passwdcolumn=password crypt=0 logtable=log logmsgcolumn=msg logusercolumn=user loghostcolumn=host logpidcolumn=pid logtimecolumn=time If I change the pwcheck_method to auxprop, does that mean it no longer uses saslauthd? Is there anyway to use saslauthd with non-encrypted p/ws? Where does saslauthd retrieve its username/passwd information from? As you can see, I'm still somewhat confused, and am having trouble locating documentation to describes all this. Thanks for any help. Eric --- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
