On Tue, Jun 17, 2008 at 12:46 AM, Michael Menge < [EMAIL PROTECTED]> wrote:
> Hi, > > sasl does not pass the IP-Address to pam. > Exactly!!!!! This is what is happening i guess... coz it takes "ALL" as the token but doesnt react on IP addresses.. any guess how i can MAKE it work?? Any link on this?? regards, Ashay. > > > > Quoting Ashay Chitnis <[EMAIL PROTECTED]>: > > > Dear All, > > > > I need to access pop and imap on user based IP level restrictions. I > found > > pam to be best suited for this service level restriction. The restriction > > will be as below. > > > > User pqr should be allowed POP from IPADDR-1 > > User B should be allowed IMAP from IPADDR-2 > > User C should be allowed POP and IMAP from IPADDR-3 > > > > and so on. > > > > To achieve this below settings are done in /etc/pam.d/pop > > > > > > cat /etc/pam.d/pop > > auth required /lib/security/pam_ldap.so > > account required /lib/security/pam_access.so debug > > accessfile=/usr/local/etc/popaccess.conf > > account required /lib/security/pam_ldap.so > > > > > > cat /usr/local/etc/popaccess.conf > > > > +:pqr:192.168.2.66/32 > > > > OR > > > > -:pqr:ALL EXCEPT 192.168.2.66/32 > > > > > > But this does not see to be working as it is not yielding desired effect > > even after restarting saslauthd and cyrus.. > > > > > > Kindly guide me through.. > > > > regards > > Ashay > > > > > > > -------------------------------------------------------------------------------- > M.Menge Tel.: (49) 7071/29-70316 > Universitaet Tuebingen Fax.: (49) 7071/29-5912 > Zentrum fuer Datenverarbeitung mail: > [EMAIL PROTECTED] > Waechterstrasse 76 > 72074 Tuebingen > > ---- > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html >
---- Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
