Re: Alternative ways of sendmail & cyrus integration [Was: Virtual domains, user@domain.com: Mailbox unknown]
--On Monday, 08 March, 2004 19:30 -0500 "William K. Hardeman" <[EMAIL PROTECTED]> wrote: As I mentioned above, there is one situation where I have found that the above configuration does not work. This is when email is sent to a canonical hostname in the virtual domain. For example, mail to [EMAIL PROTECTED] succeeds with no problems. Mail sent to [EMAIL PROTECTED], however, does not succeed. Where I've run into problems, according to the debug, is that in the 2nd case, mail.wkh.org never makes it into the mailertable definition, but gets rewritten to the primary host's canonical hostname in the virtusertable steps, e.g., [EMAIL PROTECTED] becomes [EMAIL PROTECTED] In the first example, [EMAIL PROTECTED] successfully makes it to the mailertable lookup, and everything works successfully from there. Since I very very rarely have any mail sent to the MX record's canonical host name, I can live with this (for now anyway :-). Just for completeness, I found the problem I was mentioning here, and it didn't have anything to do with my sendmail.cf that I generated from the .mc rulesets I previously posted. It had everything to do with my being blind when looking at the local-host-names file. I had the mail.wkh.org hostname in there and that was short-circuiting the mailertable lookup. Doh! Will William K. Hardeman [EMAIL PROTECTED] http://www.wkh.org The most exciting phrase to hear in science, the one that heralds new discoveries, is not "Eureka!" (I found it!) but "That's funny ..." -- Isaac Asimov Always listen to experts. They'll tell you what can't be done and why. Then do it. --Robert A. Heinlein --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Configuration help for auxprop/sasldb authentication
Hi, all. Jr. Newbie here. Please point me in the right direction if possible. :) I can't seem to get past "user not found" to enable me to login to the IMAP server. My objective is to authenticate and login using the imap admin user. I would like to use what (I thought) would be the easiest configuration. All users and passwords would be contained in a Berkeley db. The IMAP server would verify user/pass against entries in that database. Any help would be appreciated. ...john *** DETAIL *** System Redhat Enterprise 3 plain-vanilla. RPMs were used http://www.invoca.ch/pub/packages/cyrus-imapd/cyrus-imapd-2.2.3-8.src.rpm (Thank you Simon Matter) ... I originally compiled from source code, but could not get the cyradm to run properly. I understand that the /etc/imapd.conf can be the single source of configuration for the IMAP server (including SASL configuration). Is there a configuration detail that I need to load the "sasldb" auxprop ? /etc/imapd.conf configdirectory: /var/lib/imap partition-default: /var/spool/imap admins: rat sasl_pwcheck_method: auxprop servername: Edgate tls_cert_file: /etc/cyrus/cyrus.pem tls_key_file: /etc/cyrus/cyrus.pem [EMAIL PROTECTED] RPMS]# strings /etc/sasldb2 Rat_F1nk apollo userPassword [EMAIL PROTECTED] RPMS]# [EMAIL PROTECTED] RPMS]# imtest -s -u rat -a rat -w Rat_F1nk -m plain apollo verify error:num=18:self signed certificate TLS connection established: TLSv1 with cipher AES256-SHA (256/256 bits) S: * OK Edgate Cyrus IMAP4 v2.2.3-Invoca-RPM-2.2.3-8 server ready C: C01 CAPABILITY S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE AUTH=PLAIN AUTH=LOGIN AUTH=GSSAPI AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR LISTEXT LIST-SUBSCRIBED X-NETSCAPE S: C01 OK Completed C: A01 AUTHENTICATE PLAIN cmF0AHJhdABSYXRfRjFuaw== S: A01 NO user not found Authentication failed. generic failure Security strength factor: 256 C: Q01 LOGOUT Connection closed. [EMAIL PROTECTED] RPMS]# cat /var/log/auth.log Mar 10 09:17:46 apollo imaps[2804]: Password verification failed [EMAIL PROTECTED] RPMS]# [EMAIL PROTECTED] RPMS]# ls -lat /etc/sasl* -rwxrwxrwx1 root root12288 Mar 10 07:41 /etc/sasldb2 [EMAIL PROTECTED] RPMS]# * my reference From cyrus-imapd-2.2.3/doc/install-auth.html Configuring Authentication Cyrus SASL has a number of options that can be configured by the application. To configure these via imapd.conf, simply prefix the appropriate option name with sasl_ (e.g. pwcheck_method becomes sasl_pwcheck_method). /etc/sasldb2 The easiest method for authenticating users is to use the libsasl authentication database and create users using the "saslpasswd2" utility. Set "sasl_pwcheck_method: auxprop", and be sure that the SASL sasldb auxprop module is installed (it is, by default). Make sure Cyrus can read "/etc/sasldb2 --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: createmailbox Please Help!
> tsg wrote: > > Hi! > > I tried to create virtual domain mailboxes with cyrus-imapd v2.2.3 as it > > written in install-virtdomains.html, but I got error: > > > > # cyradm --user administrator --auth login localhost > > > > test> create [EMAIL PROTECTED] > > createmailbox: Permission denied > > What does imapd.log show when you try this? Nothing. Just Mar 10 11:38:41 test master[6778]: about to exec /usr/lib/cyrus/bin/imapd Mar 10 11:38:41 test imap[6778]: executed Mar 10 11:38:41 test imap[6778]: accepted connection Mar 10 11:38:45 test imap[6778]: login: test [127.0.0.1] administrator plaintext --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: createmailbox Please Help!
> On Tue, 9 Mar 2004, tsg wrote: > > > > tsg <[EMAIL PROTECTED]> 03/09/04 06:41pm >>> > > > >Hi! > > > >I tried to create virtual domain mailboxes with cyrus-imapd v2.2.3 as > > > > > > it > > > > > > >written in install-virtdomains.html, but I got error: > > > > > > > ># cyradm --user administrator --auth login localhost > > > > > > > >test> create [EMAIL PROTECTED] > > > >createmailbox: Permission denied > > > > > > > >in the mean time I can create default domain users without any > > > > > > problems: > > > >test> create user.jill > > > >test> > > > > > > > >and users: > > > >test> create [EMAIL PROTECTED] > > > >test> > > > >Can somebody tell me what I did wrong? > > Based on your setup example.net is not your default domain. My guess is > you have 'virtualdomains: yes' and 127.0.0.1 resolves to > localhost.example.net. > > For global admin you need to login as [EMAIL PROTECTED]: > cyradm --user [EMAIL PROTECTED] --auth login localhost > > or > > Set 'virtualdomains: userid' I use this option. So imapd shouldn't make any lookups. I can create mailbox for user.rick [EMAIL PROTECTED] [EMAIL PROTECTED] but not for [EMAIL PROTECTED] as it written in the virtual domains doc > > -Igor > > > > >My imapd.conf: > > > >configdirectory:/var/lib/imap > > > >defaultpartition: default > > > >partition-default: /var/lib/imap/default > > > >partition-news: /var/lib/imap/news > > > >newsspool:/var/spool/imap/news > > > >admins: root administrator [EMAIL PROTECTED] > > > >sasl_pwcheck_method:saslauthd > > > >#sasl_maximum_layer: 256 > > > >#sasl_minimum_layer: 128 > > > >allowanonimouslogin:no > > > >allowplaintext: yes > > > >#servername: test.com > > > >tls_cert_file: /var/lib/imap/cyrus.crt > > > >tls_key_file: /var/lib/imap/cyrus.key > > > >tls_ca_path:/usr/share/ssl > > > >tls_ca_file:/usr/share/ssl/certs/ca.crt > > > >#tls_require_cert: yes > > > >imapidresponse: no > > > >sendmail: /usr/sbin/sendmail > > > >sievedir: /var/lib/imap/sieve > > > >virtualdomains: userid > > > >#hashimapspool: yes > > > >defaultdomain: test.com > > > > > > > >Please help! > > > >Best regards. Sergios > > > > > > Hi Sergios, > > > > > > In your imapd.conf, the value of the "virtualdomains:" key should _not_ > > > be "userid"; it should be "yes" or "t" or "1" > > > > > > Mike. > > > > Hi Mike! > > Thank you for your answer! > > > > From Cyrus-imapd documentation: > > In order to accomplish this, Cyrus needs to know which domain to look in > > when a mailbox is accessed. There are two ways in which Cyrus can > > determine the domain: > > > > * Fully qualified userid - the client logs in with a userid > > containing the domain in which the user belongs (e.g [EMAIL PROTECTED] or > > test%example.net) * IP address - the server looks up the domain based on > > the IP address of the receiving interface (useful for servers with > > multiple NICs or using IP aliasing) > > > > Both of these methods are active if the virtdomains option is set to on > > (or yes, 1, true) and can be used in conjunction with one another. If the > > virtdomains option is set to userid, then only the first method is used. > > Note that a fully qualified userid takes precedence over a domain > > obtained from the IP address. > > > > But I do not need any IP lookups. So I used > > virtualdomains: userid > > > > But anyhow > > virtualdomains: yes > > > > gives the same result. > > > > > --- > > > Home Page: http://asg.web.cmu.edu/cyrus > > > Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > > > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > > > > --- > > Home Page: http://asg.web.cmu.edu/cyrus > > Wiki/FAQ: http://cyruswiki.andrew.cmu.edu > > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Configuration help for auxprop/sasldb authentication
- Original Message - From: "John Gibson" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, March 10, 2004 10:03 AM Subject: Configuration help for auxprop/sasldb authentication > My objective is to authenticate and login using the imap admin user. I > would like to use what (I thought) would be the easiest configuration. > All users and passwords would be contained in a Berkeley db. The IMAP > server would verify user/pass against entries in that database. If using the auprop method, the easiest I have found, users are autheticated against /etc/sasldb2. Users, (including admin user who also has a system account) are created by, saslpasswd2 -c $username > I understand that the /etc/imapd.conf can be the single source of > configuration for the IMAP server (including SASL configuration). Is not for a Cyrus-IMAP. /etc/cyrus.conf (With SuSE 8.2 rpms). What is handling SMTP? Al --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Cyrus IMAP server: can not setup user
Hi all, I install cyrus-imapd-2.1.15-44 on SUSE 9.0; After starting server, i could telnet over port 143 to check. It's OK. Following http://en.tldp.org/HOWTO/Cyrus-IMAP-8.html: I could run "imtest -m login -p imap localhost" under cyrus admin user without any problem. But when I tried to set up user (Setting up users), the cyrus user can not login into IMAP server: [EMAIL PROTECTED]:> cyradm localhost Password: cyradm: cannot authenticate to server with as cyrus The passwd of "cyrus" was setup by using "saslpasswd2 cyrus". In /etc/imapd.conf: i have: ... sasl_pwcheck_method: saslauthd ... and server saslauthd works: [EMAIL PROTECTED]:/root> ps -ef | grep sas root 30616 1 0 Mar09 ?00:00:00 /usr/sbin/saslauthd -a pam root 30617 30616 0 Mar09 ?00:00:00 /usr/sbin/saslauthd -a pam root 30618 30616 0 Mar09 ?00:00:00 /usr/sbin/saslauthd -a pam root 30619 30616 0 Mar09 ?00:00:00 /usr/sbin/saslauthd -a pam root 30620 30616 0 Mar09 ?00:00:00 /usr/sbin/saslauthd -a pam Anyone could help me please. Thank you in advance, VP __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: creating mailboxes
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Edward Rudd wrote: | try running this | telnet localhost imap | 123 logout | | and see what shows up from the IMAP server.. That will tell you if you | are connecting to Cyrus or another mail service on the computer.. | It should show up something like this.. | * OK myhost.mydomain.tld Cyrus IMAP4 v2.2.3 server ready | | As it looks like you are not actually connecting to Cyrus.. that would | be the reason for mboxish files in your home directory. That's what I initially suspected, but here's the conversation with my system: schizo [178]# pkill xinetd schizo [179]# ps -ef | grep imap ~ andrea 12302 1 0 18:01:21 ?0:00 imapd ~ manuka 17720 1 0 06:33:26 ?0:00 imapd ~ manuka 13516 1 0 20:23:28 ?0:00 imapd ~ andrea 12997 1 0 19:21:21 ?0:01 imapd ~root 11936 4097 0 Mar 06 pts/40:00 tail -f /var/log/imapd.log schizo [180]# pkill imapd schizo [181]# ps -ef | grep sasl ~root 12106 12102 0 17:43:30 ?0:00 saslauthd -a shadow ~root 12102 1 0 17:43:29 ?0:00 saslauthd -a shadow ~root 12103 12102 0 17:43:29 ?0:00 saslauthd -a shadow ~root 12105 12102 0 17:43:30 ?0:00 saslauthd -a shadow ~root 12104 12102 0 17:43:30 ?0:00 saslauthd -a shadow schizo [182]# /usr/cyrus/bin/master & [1] 17961 schizo [183]# telnet localhost imap Trying 127.0.0.1... Connected to localhost (127.0.0.1). Escape character is '^]'. * OK schizo Cyrus IMAP4 v2.2.3 server ready . logout * BYE LOGOUT received . OK Completed Connection closed by foreign host. schizo [184]# cyradm --user mailadm localhost IMAP Password: localhost> lm user.manuka (\HasNoChildren) localhost> dm user.manuka deletemailbox: Permission denied localhost> cm user.ian localhost> lm user.ian (\HasNoChildren) user.manuka (\HasNoChildren) localhost> quit schizo [185]# cd ~mailadm schizo [186]# ls user.ian user.manukauser.manuka.lists user.manuka.test schizo [187]# ls -l total 8 - -rw--- 1 mailadm other507 Mar 9 17:50 user.ian - -rw--- 1 mailadm other507 Mar 9 17:47 user.manuka - -rw--- 1 mailadm other507 Mar 9 17:47 user.manuka.lists - -rw--- 1 mailadm other507 Mar 9 17:48 user.manuka.test schizo [188]# cat user.ian ~From MAILER-DAEMON Tue Mar 9 17:50:05 2004 Date: 09 Mar 2004 17:50:05 -0600 From: Mail System Internal Data <[EMAIL PROTECTED]> Subject: DON'T DELETE THIS MESSAGE -- FOLDER INTERNAL DATA X-IMAP: 1078876205 00 Status: RO This text is part of the internal format of your mail folder, and is not a real message. It is created automatically by the mail system software. If deleted, important folder data will be lost, and it will be re-created with the data reset to initial values. schizo [189]# cyradm --user mailadm localhost IMAP Password: localhost> lm user.ian (\HasNoChildren) user.manuka (\HasNoChildren) localhost> quit -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.1 (MingW32) iD8DBQFATxVQRGycTB/It0gRAr8eAJ9k9ZFGKojt6I1eSJF7uovZNtmkqgCfRNIo sYQeUEpPoNHG8+14NUo097k= =T2Sh -END PGP SIGNATURE- --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: creating mailboxes
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Edward Rudd wrote: | try running this | telnet localhost imap | 123 logout | | and see what shows up from the IMAP server.. That will tell you if you | are connecting to Cyrus or another mail service on the computer.. | It should show up something like this.. | * OK myhost.mydomain.tld Cyrus IMAP4 v2.2.3 server ready | | As it looks like you are not actually connecting to Cyrus.. that would | be the reason for mboxish files in your home directory. That's what I initially suspected, but here's the conversation with my system: schizo [178]# pkill xinetd schizo [179]# ps -ef | grep imap ~ andrea 12302 1 0 18:01:21 ?0:00 imapd ~ manuka 17720 1 0 06:33:26 ?0:00 imapd ~ manuka 13516 1 0 20:23:28 ?0:00 imapd ~ andrea 12997 1 0 19:21:21 ?0:01 imapd ~root 11936 4097 0 Mar 06 pts/40:00 tail -f /var/log/imapd.log schizo [180]# pkill imapd schizo [181]# ps -ef | grep sasl ~root 12106 12102 0 17:43:30 ?0:00 saslauthd -a shadow ~root 12102 1 0 17:43:29 ?0:00 saslauthd -a shadow ~root 12103 12102 0 17:43:29 ?0:00 saslauthd -a shadow ~root 12105 12102 0 17:43:30 ?0:00 saslauthd -a shadow ~root 12104 12102 0 17:43:30 ?0:00 saslauthd -a shadow schizo [182]# /usr/cyrus/bin/master & [1] 17961 schizo [183]# telnet localhost imap Trying 127.0.0.1... Connected to localhost (127.0.0.1). Escape character is '^]'. * OK schizo Cyrus IMAP4 v2.2.3 server ready . logout * BYE LOGOUT received . OK Completed Connection closed by foreign host. schizo [184]# cyradm --user mailadm localhost IMAP Password: localhost> lm user.manuka (\HasNoChildren) localhost> dm user.manuka deletemailbox: Permission denied localhost> cm user.ian localhost> lm user.ian (\HasNoChildren) user.manuka (\HasNoChildren) localhost> quit schizo [185]# cd ~mailadm schizo [186]# ls user.ian user.manukauser.manuka.lists user.manuka.test schizo [187]# ls -l total 8 - -rw--- 1 mailadm other507 Mar 9 17:50 user.ian - -rw--- 1 mailadm other507 Mar 9 17:47 user.manuka - -rw--- 1 mailadm other507 Mar 9 17:47 user.manuka.lists - -rw--- 1 mailadm other507 Mar 9 17:48 user.manuka.test schizo [188]# cat user.ian ~From MAILER-DAEMON Tue Mar 9 17:50:05 2004 Date: 09 Mar 2004 17:50:05 -0600 From: Mail System Internal Data <[EMAIL PROTECTED]> Subject: DON'T DELETE THIS MESSAGE -- FOLDER INTERNAL DATA X-IMAP: 1078876205 00 Status: RO This text is part of the internal format of your mail folder, and is not a real message. It is created automatically by the mail system software. If deleted, important folder data will be lost, and it will be re-created with the data reset to initial values. schizo [189]# cyradm --user mailadm localhost IMAP Password: localhost> lm user.ian (\HasNoChildren) user.manuka (\HasNoChildren) localhost> quit -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.1 (MingW32) iD8DBQFATxVQRGycTB/It0gRAr8eAJ9k9ZFGKojt6I1eSJF7uovZNtmkqgCfRNIo sYQeUEpPoNHG8+14NUo097k= =T2Sh -END PGP SIGNATURE- --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus IMAP server: can not setup user
--- Andreas Winkelmann <[EMAIL PROTECTED]> wrote: > > Did you install cyrus-sasl-plain ? Yeah, i have it > > Add: > sasl_mech_list: plain login > It works now! Thank you so much for your help, Regard, VP __ Do you Yahoo!? Yahoo! Search - Find what youre looking for faster http://search.yahoo.com --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: creating mailboxes
Hi, --On Mittwoch, 10. März 2004 7:17 Uhr -0600 Ian Beyer <[EMAIL PROTECTED]> wrote: | As it looks like you are not actually connecting to Cyrus.. that would | be the reason for mboxish files in your home directory. That's what I initially suspected, but here's the conversation with my system: the date is missing, but I guess you did this just now ... schizo [178]# pkill xinetd schizo [179]# ps -ef | grep imap ~ andrea 12302 1 0 18:01:21 ?0:00 imapd ~ manuka 17720 1 0 06:33:26 ?0:00 imapd ~ manuka 13516 1 0 20:23:28 ?0:00 imapd ~ andrea 12997 1 0 19:21:21 ?0:01 imapd ~root 11936 4097 0 Mar 06 pts/40:00 tail -f /var/log/imapd.log schizo [180]# pkill imapd ... schizo [182]# /usr/cyrus/bin/master & [1] 17961 schizo [183]# telnet localhost imap Trying 127.0.0.1... Connected to localhost (127.0.0.1). Escape character is '^]'. * OK schizo Cyrus IMAP4 v2.2.3 server ready . logout * BYE LOGOUT received . OK Completed Connection closed by foreign host. OK. schizo [184]# cyradm --user mailadm localhost IMAP Password: localhost> lm user.manuka (\HasNoChildren) localhost> dm user.manuka deletemailbox: Permission denied localhost> cm user.ian localhost> lm user.ian (\HasNoChildren) user.manuka (\HasNoChildren) localhost> quit OK. schizo [185]# cd ~mailadm Wrong. schizo [186]# ls user.ian user.manukauser.manuka.lists user.manuka.test schizo [187]# ls -l total 8 - -rw--- 1 mailadm other507 Mar 9 17:50 user.ian - -rw--- 1 mailadm other507 Mar 9 17:47 user.manuka - -rw--- 1 mailadm other507 Mar 9 17:47 user.manuka.lists - -rw--- 1 mailadm other507 Mar 9 17:48 user.manuka.test Those were created *earlier*. They were not created just now. Note the timestamps. schizo [188]# cat user.ian ~From MAILER-DAEMON Tue Mar 9 17:50:05 2004 Date: 09 Mar 2004 17:50:05 -0600 From: Mail System Internal Data <[EMAIL PROTECTED]> Subject: DON'T DELETE THIS MESSAGE -- FOLDER INTERNAL DATA X-IMAP: 1078876205 00 Status: RO This text is part of the internal format of your mail folder, and is not a real message. It is created automatically by the mail system software. If deleted, important folder data will be lost, and it will be re-created with the data reset to initial values. Typical for UW imapd. You will find your new Cyrus mailboxes in its spool directory. Cheers, Sebastian Hagedorn -- Sebastian Hagedorn M.A. - RZKR-R1 (Gebäude 52), Zimmer 18 Zentrum für angewandte Informatik - Universitätsweiter Service RRZK Universität zu Köln / Cologne University - Tel. +49-221-478-5587 pgp0.pgp Description: PGP signature
Re: creating mailboxes
--On Wednesday, 10 March, 2004 07:17 -0600 Ian Beyer <[EMAIL PROTECTED]> wrote: That's what I initially suspected, but here's the conversation with my system: schizo [178]# pkill xinetd schizo [179]# ps -ef | grep imap ~ andrea 12302 1 0 18:01:21 ?0:00 imapd ~ manuka 17720 1 0 06:33:26 ?0:00 imapd ~ manuka 13516 1 0 20:23:28 ?0:00 imapd ~ andrea 12997 1 0 19:21:21 ?0:01 imapd ~root 11936 4097 0 Mar 06 pts/40:00 tail -f /var/log/imapd.log schizo [180]# pkill imapd schizo [181]# ps -ef | grep sasl ~root 12106 12102 0 17:43:30 ?0:00 saslauthd -a shadow ~root 12102 1 0 17:43:29 ?0:00 saslauthd -a shadow ~root 12103 12102 0 17:43:29 ?0:00 saslauthd -a shadow ~root 12105 12102 0 17:43:30 ?0:00 saslauthd -a shadow ~root 12104 12102 0 17:43:30 ?0:00 saslauthd -a shadow schizo [182]# /usr/cyrus/bin/master & [1] 17961 schizo [183]# telnet localhost imap Trying 127.0.0.1... Connected to localhost (127.0.0.1). Escape character is '^]'. * OK schizo Cyrus IMAP4 v2.2.3 server ready . logout * BYE LOGOUT received . OK Completed Connection closed by foreign host. schizo [184]# cyradm --user mailadm localhost IMAP Password: localhost> lm user.manuka (\HasNoChildren) localhost> dm user.manuka deletemailbox: Permission denied localhost> cm user.ian localhost> lm user.ian (\HasNoChildren) user.manuka (\HasNoChildren) localhost> quit Ok. You're finally getting connected to the cyrus server, now, as opposed to whatever imap server was setup and running. The user.manuka is reporting 'HasNoChildren', which it should do if the other imap server were still running. schizo [185]# cd ~mailadm schizo [186]# ls user.ian user.manukauser.manuka.lists user.manuka.test schizo [187]# ls -l total 8 - -rw--- 1 mailadm other507 Mar 9 17:50 user.ian - -rw--- 1 mailadm other507 Mar 9 17:47 user.manuka - -rw--- 1 mailadm other507 Mar 9 17:47 user.manuka.lists - -rw--- 1 mailadm other507 Mar 9 17:48 user.manuka.test Those timestamps on the user.* files in the mailadm file are from yesterday afternoon. cd to your default spool and do a find for a user's name (find . -name 'manuka'). You should find a directory in the spool directory structure with that user's name and with several cyrus.* files. Will William K. Hardeman [EMAIL PROTECTED] http://www.wkh.org The most exciting phrase to hear in science, the one that heralds new discoveries, is not "Eureka!" (I found it!) but "That's funny ..." -- Isaac Asimov Always listen to experts. They'll tell you what can't be done and why. Then do it. --Robert A. Heinlein --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Configuration help for auxprop/sasldb authentication
Allister Gearon wrote:
- Original Message -
From: "John Gibson" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, March 10, 2004 10:03 AM
Subject: Configuration help for auxprop/sasldb authentication
My objective is to authenticate and login using the imap admin user. I
would like to use what (I thought) would be the easiest configuration.
All users and passwords would be contained in a Berkeley db. The IMAP
server would verify user/pass against entries in that database.
If using the auprop method, the easiest I have found, users are autheticated
against /etc/sasldb2. Users, (including admin user who also has a system
account) are created by, saslpasswd2 -c $username
*** I had done that, but here goes again ***
[EMAIL PROTECTED] RPMS]# ls /etc/sasl*
/etc/sasldb2
[EMAIL PROTECTED] RPMS]# rm /etc/sasldb2
rm: remove regular file `/etc/sasldb2'? y
[EMAIL PROTECTED] RPMS]# saslpasswd2 -c rat
Password:
Again (for verification):
[EMAIL PROTECTED] RPMS]# ls /etc/sasl*
/etc/sasldb2
[EMAIL PROTECTED] RPMS]# chown cyrus /etc/sasldb2
[EMAIL PROTECTED] RPMS]# strings /etc/sasldb2
Rat_F1nk
apollo
userPassword
[EMAIL PROTECTED] RPMS]# saslpasswd2 -c dog
Password:
Again (for verification):
saslpasswd2: passwords don't match; aborting
[EMAIL PROTECTED] RPMS]# saslpasswd2 -c dog
Password:
Again (for verification):
[EMAIL PROTECTED] RPMS]# saslpasswd2 -c cat
Password:
Again (for verification):
[EMAIL PROTECTED] RPMS]# strings /etc/sasldb2
Rat_F1nk
apollo
userPassword
mice
apollo
userPassword
mutt
apollo
userPassword
[EMAIL PROTECTED] RPMS]#
*** from auth.log during saslpasswd2 execution***
Mar 10 15:16:26 apollo saslpasswd2: error deleting entry from sasldb:
DB_NOTFOUND: No matching key/data pair found
Mar 10 15:19:30 apollo last message repeated 3 times
Mar 10 15:20:34 apollo last message repeated 3 times
I understand that the /etc/imapd.conf can be the single source of
configuration for the IMAP server (including SASL configuration). Is
not for a Cyrus-IMAP. /etc/cyrus.conf (With SuSE 8.2 rpms).
What is handling SMTP?
Al
Postfix will be my MTA, but I havn't set it up yet. I have been working
on the IMAP/POP server component.
Thank you for pointing these out, Al.
Sorry... This is my /etc/cyrus.conf file.
[EMAIL PROTECTED] RPMS]# cat /etc/cyrus.conf
# standard standalone server implementation
START {
# do not delete this entry!
recover cmd="ctl_cyrusdb -r"
# this is only necessary if using idled for IMAP IDLE
# idledcmd="idled"
}
# UNIX sockets start with a slash and are put into /var/lib/imap/sockets
SERVICES {
# add or remove based on preferences
# imap cmd="imapd" listen="imap" prefork=5
imaps cmd="imapd -s" listen="imaps" prefork=1
# pop3 cmd="pop3d" listen="pop3" prefork=3
pop3s cmd="pop3d -s" listen="pop3s" prefork=1
# sievecmd="timsieved" listen="sieve" prefork=0
# at least one LMTP is required for delivery
# lmtp cmd="lmtpd" listen="lmtp" prefork=0
lmtpunix cmd="lmtpd" listen="/var/lib/imap/socket/lmtp" prefork=1
}
EVENTS {
# this is required
checkpointcmd="ctl_cyrusdb -c" period=30
}
[EMAIL PROTECTED] RPMS]#
---
Home Page: http://asg.web.cmu.edu/cyrus
Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: createmailbox Please Help!
On Wed, 10 Mar 2004, tsg wrote: > > On Tue, 9 Mar 2004, tsg wrote: > > > > > tsg <[EMAIL PROTECTED]> 03/09/04 06:41pm >>> > > > > >Hi! > > > > >I tried to create virtual domain mailboxes with cyrus-imapd v2.2.3 as > > > > > > > > it > > > > > > > > >written in install-virtdomains.html, but I got error: > > > > > > > > > ># cyradm --user administrator --auth login localhost > > > > > > > > > >test> create [EMAIL PROTECTED] > > > > >createmailbox: Permission denied > > > > > > > > > >in the mean time I can create default domain users without any > > > > > > > > problems: > > > > >test> create user.jill > > > > >test> > > > > > > > > > >and users: > > > > >test> create [EMAIL PROTECTED] > > > > >test> > > > > >Can somebody tell me what I did wrong? > > > > Based on your setup example.net is not your default domain. My guess is > > you have 'virtualdomains: yes' and 127.0.0.1 resolves to > > localhost.example.net. > > > > For global admin you need to login as [EMAIL PROTECTED]: > > cyradm --user [EMAIL PROTECTED] --auth login localhost > > > > or > > > > Set 'virtualdomains: userid' > I use this option. So imapd shouldn't make any lookups. > I can create mailbox for > user.rick > [EMAIL PROTECTED] > [EMAIL PROTECTED] > but not for > [EMAIL PROTECTED] > as it written in the virtual domains doc Check your config again, you misspelled virtdomains option (there is no such option as virtualdomains). I also mistakenly assumed your config was correct when I wrote the previous message. -- Igor --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
SASL domains and usernames and authentication
I'm using sasldb2 for authenticating users for my Cyrus mailserserves. The sasldb2 file is shared by all the machines by storing it on a SAN filesystem. Since saslpasswd2 adds the hostname to the username by default, I specify my domain when adding users: saslpasswd2 -c -u domain.tld username The problem is when I try to authenticate to the IMAP server using Mozilla, it sends the user name as [EMAIL PROTECTED] That username is not in the sasldb, so then the user cannot authenticate. Is there anyway to fix this on the server side? I don't know if it can be fixed in Mozilla, and even if it could be, I can't expect the users to know how to reconfigure Mozilla. -- Prentice Bisbal Computer System Administrator Protein Data Bank Rutgers University --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
AW: Cyrus restart: ctl_deliver takes very long!
Hello,
where is the difference between the following cyrus.conf files (check: EVENTS brackets
--> are both cyris.conf files okay) and do i have to put the command "ctl_deliver -r"
in the START section?
I got the following warning messages:
Mar 10 18:14:01 oscar-mail ctl_mboxlist: ctl_mboxlist -c is deprecated: use
ctl_cyrusdb -c instead^H
START {
mboxlist cmd="ctl_cyrusdb -r"
deliver cmd="ctl_deliver -r"
}
SERVICES {
imap cmd="imapd" listen="imap" prefork=5
imaps cmd="imapd -s" listen="imaps" prefork=0
pop3 cmd="pop3d" listen="pop3" prefork=5
pop3s cmd="pop3d -s" listen="pop3s" prefork=0
sieve cmd="timsieved" listen="sieve" prefork=0
lmtpunix cmd="lmtpd" listen="/var/imap/socket/lmtp" prefork=0
}
EVENTS {
checkpoint cmd="ctl_mboxlist -c" period=5
delprune cmd="ctl_deliver -E 3" period=1440
}
START {
mboxlist cmd="ctl_cyrusdb -r"
deliver cmd="ctl_deliver -r"
}
SERVICES {
imap cmd="imapd" listen="imap" prefork=5
imaps cmd="imapd -s" listen="imaps" prefork=0
pop3 cmd="pop3d" listen="pop3" prefork=5
pop3s cmd="pop3d -s" listen="pop3s" prefork=0
sieve cmd="timsieved" listen="sieve" prefork=0
lmtpunix cmd="lmtpd" listen="/var/imap/socket/lmtp" prefork=0
}
EVENTS {
checkpoint cmd="ctl_cyrusdb -c" period=5
delprune cmd="ctl_deliver -E 3" period=1440
}
Regards,
Chris
-Ursprüngliche Nachricht-
Von: Andreas [mailto:[EMAIL PROTECTED]
Gesendet: Montag, 08. März 2004 15:24
An: Christoph Nagelreiter
Cc: [EMAIL PROTECTED]
Betreff: Re: Cyrus restart: ctl_deliver takes very long!
On Mon, Mar 08, 2004 at 02:40:28AM +0100, Christoph Nagelreiter wrote:
> ERRORS in cyrus.log (is this normal???):
>
> Mar 8 02:24:01 oscar-mail ctl_deliver[5263]: DBERROR db4: 5 lockers
(...)
Take a look at this text:
http://www.openldap.org/faq/index.cgi?_highlightWords=locks&file=893
It's written for openldap, but explains several important Berkeley DB configuration
parameters. In particular:
"On a very busy system you might see error messages talking about running out of
locks, lockers, or lock objects. Usually the default values are plenty, and in older
versions of the BDB library the errors were more likely due to library bugs than
actual system load. However, it is possible that you have actually run out of lock
resources due to heavy system usage. If this happens, you should read about the
set_lk_max_lockers[1], set_lk_max_locks[2], and set_lk_max_objects[3] keywords."
1. http://www.sleepycat.com/docs/api_c/env_set_lk_max_lockers.html
2. http://www.sleepycat.com/docs/api_c/env_set_lk_max_locks.html
3. http://www.sleepycat.com/docs/api_c/env_set_lk_max_objects.html
The links above talk about the C api, but don't get alarmed, these paremeters can be
set with a DB_CONFIG configuration file located in the DB environment home.
I also suppose the db_stat utility can be used to diagnose this.
---
Home Page: http://asg.web.cmu.edu/cyrus
Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: createmailbox Please Help!
Thank You for your help! It works fine now! Best regards. Sergios --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: SASL domains and usernames and authentication
--On Wednesday, 10 March, 2004 11:44 -0500 Prentice Bisbal <[EMAIL PROTECTED]> wrote: The problem is when I try to authenticate to the IMAP server using Mozilla, it sends the user name as [EMAIL PROTECTED] That username is not in the sasldb, so then the user cannot authenticate. Is there anyway to fix this on the server side? I don't know if it can be fixed in Mozilla, and even if it could be, I can't expect the users to know how to reconfigure Mozilla. I fixed this by writing a little shell script that I use to actually add my users to my sasldb2. It adds both the domain.tld that is specified on the command line and also adds a mail.domain.tld entry, as well. I also use this script to change passwords, when that's required, so that I don't have to manually do it for each entry. I can send the script to you if you would like, but it's a pretty simple little hack job. :-) Will William K. Hardeman [EMAIL PROTECTED] http://www.wkh.org The most exciting phrase to hear in science, the one that heralds new discoveries, is not "Eureka!" (I found it!) but "That's funny ..." -- Isaac Asimov Always listen to experts. They'll tell you what can't be done and why. Then do it. --Robert A. Heinlein --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: creating mailboxes
On Wed, 2004-03-10 at 05:17, Ian Beyer wrote: > schizo [178]# pkill xinetd > schizo [179]# ps -ef | grep imap > ~ andrea 12302 1 0 18:01:21 ?0:00 imapd > ~ manuka 17720 1 0 06:33:26 ?0:00 imapd > ~ manuka 13516 1 0 20:23:28 ?0:00 imapd > ~ andrea 12997 1 0 19:21:21 ?0:01 imapd Here's something very wrong. Cyrus imapd processes will always be running as user 'cyrus'--not the connecting user. UW and other IMAP servers run as root and setuid to the appropriate user, which is what this looks like. Wil -- Wil Cooley [EMAIL PROTECTED] Naked Ape Consultinghttp://nakedape.cc * * * * * * Linux Consulting in Portland, Oregon * * * * * * * Naked Ape Consultinghttp://nakedape.cc * signature.asc Description: This is a digitally signed message part
cyradm problem
Hi, I just installed the cyrus-imapd-2.2.3 and noticed the following problem with cyradm: [EMAIL PROTECTED] etc]# cyradm -user imap localhost imclient_connect: unknown host "localhost" at /usr/local/lib/perl5/site_perl/5.8.3/sun4-solaris/Cyrus/IMAP/Admin.pm line 71. I searched the web for solution, but didn't find anything. Could someone please tell me a way to solve this issue? Thanks Didi -- - Didi Rieder [EMAIL PROTECTED] PGPKey ID: 3431D0B0 - pgp0.pgp Description: PGP signature
Re: creating mailboxes
On Wed, 10 Mar 2004, Wil Cooley wrote: > On Wed, 2004-03-10 at 05:17, Ian Beyer wrote: > > > schizo [178]# pkill xinetd > > schizo [179]# ps -ef | grep imap > > ~ andrea 12302 1 0 18:01:21 ?0:00 imapd > > ~ manuka 17720 1 0 06:33:26 ?0:00 imapd > > ~ manuka 13516 1 0 20:23:28 ?0:00 imapd > > ~ andrea 12997 1 0 19:21:21 ?0:01 imapd > > Here's something very wrong. Cyrus imapd processes will always be > running as user 'cyrus'--not the connecting user. UW and other IMAP > servers run as root and setuid to the appropriate user, which is what > this looks like. Only xinetd was killed. imapds were orphaned, but not killed. Their ppid's are all 1. If xinetd had been forking uw-imapds before it was killed, this would make sense. Dave -- Dave McMurtrie, Systems Programmer University of Pittsburgh Computing Services and Systems Development, Development Services -- UNIX and VMS Services 717P Cathedral of Learning (412)-624-6413 PGP/GPG Key: http://www.pitt.edu/~dgm/gpgkey.asc.txt --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyradm problem
Try cyradm in the following way: cyradm -user imap -auth login localhost or cyradm -user root -auth login localhost On 10.03.2004, at 19:51, Didi Rieder wrote: Hi, I just installed the cyrus-imapd-2.2.3 and noticed the following problem with cyradm: [EMAIL PROTECTED] etc]# cyradm -user imap localhost imclient_connect: unknown host "localhost" at /usr/local/lib/perl5/site_perl/5.8.3/sun4-solaris/Cyrus/IMAP/Admin.pm line 71. I searched the web for solution, but didn't find anything. Could someone please tell me a way to solve this issue? Thanks Didi -- - Didi Rieder [EMAIL PROTECTED] PGPKey ID: 3431D0B0 - -- Roland Huber aka Darkcruix [EMAIL PROTECTED] GPG Fingerprint: B350 42B8 557B 2B7F 0F2D 9C61 4194 371D B123 E2D9
Re: SASL domains and usernames and authentication
Thanks for the reply. I could write shell script to do it, too, but I was hoping for a more "proper" solution. Prentice William K. Hardeman wrote: --On Wednesday, 10 March, 2004 11:44 -0500 Prentice Bisbal <[EMAIL PROTECTED]> wrote: The problem is when I try to authenticate to the IMAP server using Mozilla, it sends the user name as [EMAIL PROTECTED] That username is not in the sasldb, so then the user cannot authenticate. Is there anyway to fix this on the server side? I don't know if it can be fixed in Mozilla, and even if it could be, I can't expect the users to know how to reconfigure Mozilla. I fixed this by writing a little shell script that I use to actually add my users to my sasldb2. It adds both the domain.tld that is specified on the command line and also adds a mail.domain.tld entry, as well. I also use this script to change passwords, when that's required, so that I don't have to manually do it for each entry. I can send the script to you if you would like, but it's a pretty simple little hack job. :-) Will William K. Hardeman [EMAIL PROTECTED] http://www.wkh.org The most exciting phrase to hear in science, the one that heralds new discoveries, is not "Eureka!" (I found it!) but "That's funny ..." -- Isaac Asimov Always listen to experts. They'll tell you what can't be done and why. Then do it. --Robert A. Heinlein --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html -- Prentice Bisbal Computer System Administrator Protein Data Bank Rutgers University --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyradm problem
--On Wednesday, March 10, 2004 08:34:02 PM +0100 Roland Huber <[EMAIL PROTECTED]> wrote: Try cyradm in the following way: cyradm -user imap -auth login localhost or cyradm -user root -auth login localhost Thanks for your answer, but it doesn't seem to solve the problem. I' also checked the dns settings and /etc/hosts everething is fine. Other applications work as they should and cyrus is running: [EMAIL PROTECTED] etc]# telnet localhost imap Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. * OK zidd-198.tu-graz.ac.at Cyrus IMAP4 v2.2.3 server ready . login imap ** . OK User logged in Didi -- - Didi Rieder [EMAIL PROTECTED] PGPKey ID: 3431D0B0 - pgp0.pgp Description: PGP signature
Re: cyradm problem
Let's try specifying the server a different way on the command line. I had similar problems at one point, and after much trial and tribulation, I used a similar commandline as below. cyradm --user imap --auth login --server zidd-198.tu-graz.ac.at -- Michael King Systems Administrator Web International, Inc. --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyradm problem
--On Wednesday, March 10, 2004 02:10:52 PM -0600 Michael King <[EMAIL PROTECTED]> wrote: cyradm --user imap --auth login --server zidd-198.tu-graz.ac.at Hmm still no luck, see: [EMAIL PROTECTED] etc]# cyradm --user imap --auth login --server zidd-198.tu-graz.ac.at imclient_connect: unknown host "zidd-198.tu-graz.ac.at" at /usr/local/lib/perl5/site_perl/5.8.3/sun4-solaris/Cyrus/IMAP/Admin.pm line 71. [EMAIL PROTECTED] etc]# nslookup zidd-198.tu-graz.ac.at Server: ns1.tu-graz.ac.at Address: 129.27.2.3 Name:zidd-198.tu-graz.ac.at Address: 129.27.24.198 Didi -- - Didi Rieder [EMAIL PROTECTED] PGPKey ID: 3431D0B0 - pgp0.pgp Description: PGP signature
PAM (Red Hat) saslauthd, and Cyrus IMAP
I'm having trouble authenticating to Cyrus IMAP. After having problems with salsdb2 and auxprop, I"m now trying to use saslauthd and pam so I can use the users' password from NIS. I can authenticate as myself, the cyrus admin, and the mupdate user fine with the cyradm command, but when I try to use imtest or connect from an IMAP mail client, I get reject, with the following entries in /var/log/auth.log Mar 10 15:40:18 pdb-mail-1 saslauthd[11318]: do_auth : auth failure: [user=mupdate] [service=mupdate] [realm=] [mech=pam] [reason=PAM auth error] Mar 10 15:40:18 pdb-mail-1 mupdate[11091]: Password verification failed Mar 10 15:40:50 pdb-mail-1 saslauthd[11319]: DEBUG: auth_pam: pam_authenticate failed: Authentication failure Mar 10 15:40:50 pdb-mail-1 saslauthd[11319]: do_auth : auth failure: [user=mupdate] [service=mupdate] [realm=] [mech=pam] [reason=PAM auth error] Mar 10 15:40:50 pdb-mail-1 mupdate[11091]: Password verification failed Mar 10 15:41:14 pdb-mail-1 saslauthd[11320]: DEBUG: auth_pam: pam_authenticate failed: Authentication failure Mar 10 15:41:14 pdb-mail-1 saslauthd[11320]: do_auth : auth failure: [user=mupdate] [service=mupdate] [realm=] [mech=pam] [reason=PAM auth error] Mar 10 15:41:14 pdb-mail-1 mupdate[11091]: Password verification faile The relevant config files are below -- Prentice Bisbal Computer System Administrator Protein Data Bank Rutgers University # more /etc/imapd.conf configdirectory: /var/lib/imap partition-default: /var/cyrus/spool/imap admins: cyrus mupdate sievedir: /var/cyrus/lib/imap/sieve sendmail: /usr/sbin/sendmail hashimapspool: true #sasl_pwcheck_method: auxprop sasl_pwcheck_method: saslauthd sasl_mech_list: PLAIN tls_cert_file: /usr/share/ssl/certs/cyrus-imapd.pem tls_key_file: /usr/share/ssl/certs/cyrus-imapd.pem tls_ca_file: /usr/share/ssl/certs/ca-bundle.crt mupdate_config: replicated mupdate_server: pdb-mupdate.rutgers.edu mupdate_username: mupdate mupdate_authname: mupdate mupdate_password: # more /etc/sysconfig/saslauthd MECH=pam FLAGS="-n=5" more /etc/pam.d/imap #%PAM-1.0 auth required pam_stack.so service=system-auth accountrequired pam_stack.so service=system-auth --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: PAM (Red Hat) saslauthd, and Cyrus IMAP
Prentice Bisbal wrote: I'm having trouble authenticating to Cyrus IMAP. After having problems with salsdb2 and auxprop, I"m now trying to use saslauthd and pam so I can use the users' password from NIS. I can authenticate as myself, the cyrus admin, and the mupdate user fine with the cyradm command, but when I try to use imtest or connect from an IMAP mail client, I get reject, with the following entries in /var/log/auth.log Mar 10 15:40:18 pdb-mail-1 saslauthd[11318]: do_auth : auth failure: [user=mupdate] [service=mupdate] [realm=] [mech=pam] You need to create a PAM config file for each service. -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Removing mail from command line
Hey all, First, a bit of background -- I have SpamAssassin running on another server, and I'm transferring mail from a shared folder (used so users can toss any spam that gets through in there, so SA can improve its bayes analysis) called SPAM to another server. After I've done that, I'd like to delete the messages currently in the folder. I've read the bits and pieces about cyrus being a 'closed box' mail system, but I was hoping that someone would have a solution. I've tried rm'ing a message from a test mailbox, and while it's gone, I assume that cyrus caches all mail because it remains there when I check with my IMAP client. Any ideas/suggestions? TIA -j -- -jamie <[EMAIL PROTECTED]> | spamtrap: [EMAIL PROTECTED] w: http://silverdream.org | p: [EMAIL PROTECTED] pgp key @ http://silverdream.org/~jps/pub.key 23:30:01 up 7 days, 8:50, 14 users, load average: 0.21, 0.21, 0.30 signature.asc Description: This is a digitally signed message part
[no subject]
Hi I am deploying a cyrus server for my second time. The first time was great. This time I wanted to learn more about disaster recovery. I am using the simon matter rpm 2.2.3-8 confugured with virtdomain: support. As a test I deleted the cyrus.* files from a mailbox I thought that I may be able to run su -l cyrus "/usr/lib/recontruct -r -f" but this did not rebuild the cyrus.* files and the mailbox was considered corrupt. After copying the cyrus.* files from another directory and running the recontruct command, everything worked fine. I have googled and read the docs but have not seen much docs regarding this and other types of disaster recovery. Does anyone know of any good tutorials or docs with disaster scenarios ? the following run as user cyrus -bash-2.05b$ pwd /var/spool/imap/domain/d/draftmail.org/r/user/robin -bash-2.05b$ /usr/lib/cyrus-imapd/reconstruct -f -r draftmail.org!user.robin: Mailbox has an invalid format user/robin/Junk [EMAIL PROTECTED] user/robin/Sent [EMAIL PROTECTED] -bash-2.05b$ cp Sent\ Items/cyrus.* ./ -bash-2.05b$ /usr/lib/cyrus-imapd/reconstruct -r -f user/[EMAIL PROTECTED] user/robin/Junk [EMAIL PROTECTED] user/robin/Sent [EMAIL PROTECTED] --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
disaster recover tips (repost - forgot the subject line)
Hi I am deploying a cyrus server for my second time. The first time was great. This time I wanted to learn more about disaster recovery. I am using the simon matter rpm 2.2.3-8 confugured with virtdomain: support. As a test I deleted the cyrus.* files from a mailbox I thought that I may be able to run su -l cyrus "/usr/lib/recontruct -r -f" but this did not rebuild the cyrus.* files and the mailbox was considered corrupt. After copying the cyrus.* files from another directory and running the recontruct command, everything worked fine. I have googled and read the docs but have not seen much docs regarding this and other types of disaster recovery. Does anyone know of any good tutorials or docs with disaster scenarios ? the following run as user cyrus -bash-2.05b$ pwd /var/spool/imap/domain/d/draftmail.org/r/user/robin -bash-2.05b$ /usr/lib/cyrus-imapd/reconstruct -f -r draftmail.org!user.robin: Mailbox has an invalid format user/robin/Junk [EMAIL PROTECTED] user/robin/Sent [EMAIL PROTECTED] -bash-2.05b$ cp Sent\ Items/cyrus.* ./ -bash-2.05b$ /usr/lib/cyrus-imapd/reconstruct -r -f user/[EMAIL PROTECTED] user/robin/Junk [EMAIL PROTECTED] user/robin/Sent [EMAIL PROTECTED] --- Home Page: http://asg.web.cmu.edu/cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
