> Has anyone got cyrus imapd installed successfully?
The RedHat Powertools version of Cyrus IMAPd is broken.
Cyrus imapd *does not* run as root. However, RedHat distributes it with a
PAM config that attempts to authenticate against your system accounts,
which requires the ability to read the shadow password file [if you have
shadow passwords configured] -- which won't work, because it's not root.
There is a clean solution to this -- the SASL libraries include a
'pwcheck' daemon that provides authentication services to cyrus
imapd; however, the RedHat SASL package does not include pwcheck. Go
figure.
Of course, one of the primary features of cyrus imapd is that it doesn't
require user's to have an account on your system, so arguably if you want
local users to have imap access you're better off with something like UW
IMAPd.
You can grab the SASL libraries off the Project Cyrus web site and rebuild
them with pwcheck support. You could create a seperate set of accounts
for IMAP users (and use SASL or PAM to tell imapd how to authenticate).
In theory, you could also stop using shadow passwords if you really need
to keep imap accounts in sync with system accounts.
Alternate possiblities include the use of something like LDAP for both
local authentication and IMAP authentication -- there are PAM and NSS
modules for LDAP out there, if you're interesting in something like that.
-- Lars
--
Lars Kellogg-Stedman <[EMAIL PROTECTED]>
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
