Fedora 8 cyrus-imap install w/ cyrus admin cm permission errors (long post)

[Flash]

Greetings,

I have two freshly installed Fedora 8 systems exhibiting the same behaviour, 
cyrus admin permission error when creating a mailbox, this may be only 
coincidental because of the operator. 

After several days of research reading and reviewing multiple cyrus 
installation howtos, then IMAP RFC, installing and uninstalling, and following 
threads in discussion forums, I am unable to find the persistant cause of the 
permission error.

Please direct me to some debugging method to solve the permission complaint.
-system information
- cyrus is admin in imapd.conf
- user cyrus and group mail have permissions in directories /var/spool/imap and 
/var/lib/imap
- cyradm and imtest connections are authenticated
- cyrus authenticates via sasl_sql
- perl modules are current
- no error reporting in /var/log within messages, auth.log, or cyrus.log  

Sample imtest session:

# imtest -u cyrus -a cyrus localhost

S: * OK [CAPABILITY IMAP4 IMAP4rev1 LITERAL+ ID STARTTLS AUTH=PLAIN AUTH=LOGIN 
SASL-IR] mysmtp.mydomain.net Cyrus IMAP4 v2.3.9-Fedora-RPM-2.3.9-7.fc8 server 
ready

C: C01 CAPABILITY

S: * CAPABILITY IMAP4 IMAP4rev1 LITERAL+ ID STARTTLS AUTH=PLAIN AUTH=LOGIN 
SASL-IR ACL RIGHTS=kxte QUOTA MAILBOX-REFERRALS NAMESPACE UIDPLUS 
NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT SORT=MODSEQ 
THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE CATENATE CONDSTORE IDLE 
LISTEXT LIST-SUBSCRIBED X-NETSCAPE URLAUTH

S: C01 OK Completed

Please enter your password: 

C: A01 AUTHENTICATE PLAIN *SOMESTRING*

S: A01 OK [CAPABILITY IMAP4 IMAP4rev1 LITERAL+ ID LOGINDISABLED ACL RIGHTS=kxte 
QUOTA MAILBOX-REFERRALS NAMESPACE UIDPLUS NO_ATOMIC_RENAME UNSELECT CHILDREN 
MULTIAPPEND BINARY SORT SORT=MODSEQ THREAD=ORDEREDSUBJECT THREAD=REFERENCES 
ANNOTATEMORE CATENATE CONDSTORE IDLE LISTEXT LIST-SUBSCRIBED X-NETSCAPE 
URLAUTH] Success (no protection)

Authenticated.

Security strength factor: 0

. create user.roboeb

. NO Permission denied

. logout

* BYE LOGOUT received

. OK Completed

Connection closed.

-- Directory structures
ls -ld /var/lib/imap/

drwxr-x--- 18 cyrus mail 4096 2008-03-16 12:36 /var/lib/imap/

--

ls -ld /var/spool/imap/

drwx-- 4 cyrus mail 4096 2008-03-15 15:50 /var/spool/imap/

--

ls -lR /var/spool/imap

/var/spool/imap:

total 16

drwxr-xr-x 2 cyrus mail 4096 2008-03-15 15:50 stage.

drwxr-xr-x 2 cyrus mail 4096 2008-03-15 15:50 sync.

/var/spool/imap/stage.:

total 0

/var/spool/imap/sync.:

--

ls -lR /var/lib/imap

/var/lib/imap:

total 160

-rw--- 1 cyrus mail 144 2008-03-16 06:11 annotations.db

drwx-- 2 cyrus mail 4096 2007-09-25 02:21 backup

drwx-- 2 cyrus mail 4096 2008-03-16 12:36 db

drwx-- 2 cyrus mail 4096 2008-03-16 12:12 db.backup1

drwx-- 2 cyrus mail 4096 2008-03-16 11:42 db.backup2

-rw--- 1 cyrus mail 144 2008-03-16 12:36 deliver.db

drwx-- 2 cyrus mail 4096 2007-09-25 02:21 log

-rw--- 1 cyrus mail 144 2008-03-16 06:11 mailboxes.db

drwx-- 2 cyrus mail 4096 2007-09-25 02:21 md5

drwx-- 2 cyrus mail 4096 2007-09-25 02:21 meta

drwx-- 2 cyrus mail 4096 2007-09-25 02:21 msg

drwx-- 2 cyrus mail 4096 2008-03-15 18:04 proc

drwx-- 2 cyrus mail 4096 2007-09-25 02:21 ptclient

drwx-- 2 cyrus mail 4096 2007-09-25 02:21 quota

drwx-- 2 cyrus mail 4096 2008-03-16 12:36 rpm

drwx-- 2 cyrus mail 4096 2007-09-25 02:21 sieve

drwxr-x--- 2 cyrus mail 4096 2008-03-16 06:11 socket

drwx-- 2 cyrus mail 4096 2007-09-25 02:21 sync

-rw--- 1 cyrus mail 144 2008-03-16 12:36 tls_sessions.db

drwx-- 2 cyrus mail 4096 2007-09-25 02:21 user

/var/lib/imap/backup:

total 0

/var/lib/imap/db:

total 8

-rw--- 1 cyrus mail 4 2008-03-16 06:11 skipstamp

/var/lib/imap/db.backup1:

total 10276

-rw--- 1 cyrus mail 144 2008-03-16 12:12 annotations.db

-rw--- 1 cyrus mail 10485760 2008-03-16 12:12 log.01

-rw--- 1 cyrus mail 144 2008-03-16 12:12 mailboxes.db

/var/lib/imap/db.backup2:

total 10276

-rw--- 1 cyrus mail 144 2008-03-16 11:42 annotations.db

-rw--- 1 cyrus mail 10485760 2008-03-16 11:42 log.01

-rw--- 1 cyrus mail 144 2008-03-16 11:42 mailboxes.db

/var/lib/imap/log:

total 0

/var/lib/imap/md5:

total 0

/var/lib/imap/meta:

total 0

/var/lib/imap/msg:

total 0

/var/lib/imap/proc:

total 0

/var/lib/imap/ptclient:

total 0

/var/lib/imap/quota:

total 0

/var/lib/imap/rpm:

total 24

-rw--- 1 cyrus mail 212 2008-03-16 12:36 db.cfg.cache

-rw--- 1 cyrus mail 904 2008-03-16 12:36 db_export.log

-rw--- 1 cyrus mail 601 2008-03-16 06:11 db_import.log

/var/lib/imap/sieve:

total 0

/var/lib/imap/socket:

total 44

srwxrwxrwx 1 cyrus mail 0 2008-03-16 06:11 idle

-rw--- 1 cyrus mail 0 2008-03-15 15:12 imap-0.lock

-rw--- 1 cyrus mail 0 2008-03-15 15:12 imap-1.lock

-rw--- 1 cyrus mail 0 2008-03-15 15:12 imaps-0.lock

-rw-

[No Subject]

[Flash]

subscribe info-cyrus flas...@dailybrood.com

Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus

Need help with NO AUTH configuration problem

[Flash Love]

I am running saslauthd 2.1.20 with authentication mechanisms: getpwent 
kerberos5 pam rimap shadow ldap

When I telnet to example.com on port 25 this is what the session looks like:

telnet mail.example.com 25
Connected to mail.example.com (x.xxx.xxx.x).
Escape character is '^]'.
220 mail.example.com ESMTP Postfix
EHLO mail.example.com
250-mail.example.com
250-PIPELINING
250-SIZE 1024
250-ETRN
250-STARTTLS
250 8BITMIME
quit
221 Bye

===
imtest
===
imtest -m login -a cyrus localhost
S: * OK mail.example.com Cyrus IMAP4 v2.2.12-Invoca-RPM-2.2.12-6.fc4 server 
ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS NAMESPACE 
UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND BINARY SORT 
THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE LISTEXT 
LIST-SUBSCRIBED X-NETSCAPE
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN cyrus {9}
S: + go ahead
C: 
S: L01 OK User logged in
Authenticated.
Security strength factor: 0
 logout
* BYE LOGOUT received
 OK Completed

=
software
=
cyrus-sasl-2.1.20-5
postfix-2.2.2-2.mysql.sasl2.fc4
cyrus-sasl-plain-2.1.20-5
cyrus-sasl-sql-2.1.20-5
cyrus-sasl-md5-2.1.20-5
cyrus-sasl-devel-2.1.20-5
cyrus-imapd-murder-2.2.12-6.fc4
cyrus-imapd-2.2.12-6.fc4
cyrus-imapd-devel-2.2.12-6.fc4
cyrus-imapd-utils-2.2.12-6.fc4
==
/etc/sysconfig/saslauthd
==
# Directory in which to place saslauthd's listening socket, pid file, and so
# on.  This directory must already exist.
SOCKETDIR=/var/run/saslauthd
# Mechanism to use when checking passwords.  Run "saslauthd -v" to get a list
# of which mechanism your installation was compiled to use.
MECH=pam
# Additional flags to pass to saslauthd on the command line.  See saslauthd(8)
# for the list of accepted flags.
FLAGS='-n0 -s 2048 -t 3600 -c -r'
=
/usr/lib/sasl2/smtpd.conf
=
# This sets smtpd to authenticate using the saslauthd daemon.
# This allows only plain and login as the authentication mechanisms.
mech_list: LOGIN PLAIN
pwcheck_method: saslauthd
log_level: 7

/etc/imapd.conf

postmaster: postmaster
configdirectory: /var/lib/imap
partition-default: /var/spool/imap
allowanonymouslogin: no
allowplaintext: yes
autocreatequota: 1
drachost: localhost
dracinterval: 0
hashimapspool: true
poptimeout: 10
quotawarn: 90
reject8bit: no
sasl_pwcheck_method: pam 
sasl_auxprop_plugin: mysql
sasl_mech_list: PLAIN LOGIN
sasl_sql_engine: mysql
sasl_sql_user: mail
sasl_sql_passwd: password
sasl_sql_hostnames: localhost
sasl_sql_database: mail
sasl_sql_statement: SELECT password FROM accountuser WHERE username = '[EMAIL 
PROTECTED]' 
OR (username = '%u' AND domain_name = '')
sasl_sql_verbose: true
sasl_saslauthd_path: /var/run/saslauthd/mux
sendmail: /usr/sbin/sendmail
servername: example.com
sievedir: /var/lib/imap/sieve
sieve_maxscripts: 5
sieve_maxscriptsize: 32
timeout: 30
tls_ca_file: /var/imapd/mail.example.key-cert.pem
tls_cert_file: /var/imapd/cert.pem
tls_key_file: /var/imapd/mail.example.key-cert.pem

What have I missed to be absent: mech_list: LOGIN PLAIN ?

Thanks
Flash


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Need help with NO AUTH configuration problem

[Flash Love]

On Thursday 15 September 2005 05:19 pm, Joshua Schmidlkofer wrote:
> Fedora Core 4
>
>   look and see if you have a /etc/sasl2 directory.
 ls -l /etc/sasl*
lrwxrwxrwx  1 root  root12 Sep 11 11:20 /etc/sasldb -> /etc/sasldb2
-rw-r-  1 cyrus mail 12288 Sep  7 19:25 /etc/sasldb2

> However,
>
>   What is not authting?  Waht is missing?  Do you mean postfix?
>
During the telnet session, I am missing

250-PIPELINING
250-ETRN
- missing 
250-AUTH PLAIN PLAIN
250-AUTH=PLAIN PLAIN 
- missing 
250 8BITMIME
[snip]

Imap CAPABILITY should adverstise AUTH=LOGIN
> > ===
> > imtest
> > ===
> > imtest -m login -a cyrus localhost
> > S: * OK mail.example.com Cyrus IMAP4 v2.2.12-Invoca-RPM-2.2.12-6.fc4
> > server ready
> > C: C01 CAPABILITY
> > S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> > NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
> > BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE
> > LISTEXT LIST-SUBSCRIBED X-NETSCAPE

telnet to mail server and the imtest earlier reported AUTH, while trying to 
stop sasl from complainting, somehow, I no longer have AUTH capability.

Flash


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Where is imapd.conf option to direct postfix to /var/spool/imapd/user/mailbox?

[Flash Love]

I am using postfix+cyrus+sasl+webcryadm. When logging to imap accounts the 
following complaint appears in maillog:

pop3: login: [192.168.2.154] benu0001 plaintext User logged in
pop3: IOERROR: opening /var/spool/imap/b/user/benu0001/cyrus.header: No such 
file or directory
pop3: Unable to open maildrop for benu0001: System I/O error

Pop is attempting to open the incorrect file /var/.../b/user/benu0001 when it 
should be just /var/.../user/benu0001. Which imap option is adding the /b/ to 
the mailbox file name?

thanks,
flashl


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Need Sanity Check Please

[Flash Love]

   -   1   verify
flush unix  n   -   n   1000?   0   flush
proxymap  unix  -   -   n   -   -   proxymap
smtp  unix  -   -   n   -   -   smtp
relay unix  -   -   n   -   -   smtp
-o fallback_relay=
-o smtp_generic_maps=
showq unix  n   -   n   -   -   showq
error unix  -   -   n   -   -   error
discard   unix  -   -   n   -   -   discard
local unix  -   n   n   -   -   local
virtual   unix  -   n   n   -   -   virtual
lmtp  unix  -   -   n   -   -   lmtp
anvil unix  -   -   n   -   1   anvil
scacheunix  -   -   n   -   1   scache
cyrus unix  -   n   n   -   -   pipe -v
  user=cyrus argv=//usr/lib/cyrus-imapd/deliver -e -r ${sender} -m 
${extension} ${user}
ifmailunix  -   n   n   -   -   pipe
  flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix  -   n   n   -   -   pipe
  flags=Fq. user=foo argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient
127.0.0.1:10025 inet n - n - 100 smtpd
 -o content_filter=
 -o smtpd_proxy_filter=
 -o myhostname=injector.example.com
 -o mynetworks=127.0.0.0/8
 -o smtpd_client_restrictions=
 -o smtpd_helo_restrictions=
 -o smtpd_sender_restrictions=
 -o smtpd_restriction_classes=
 -o smtpd_recipient_restrictions=permit_mynetworks,reject
 -o header_checks=
 -o body_checks=
 -o receive_override_options=no_address_mappings
 -o smtpd_authorized_xforward_hosts=127.0.0.0/8
 -o strict_rfc821_envelopes=yes
 -o smtpd_error_sleep_time=0
 -o smtpd_soft_error_limit=1001
 -o smtpd_hard_error_limit=1000
127.0.0.1:10026 inet n  -   n   --  smtpd
 -o smtpd_authorized_xforward_hosts=127.0.0.0/8
 -o smtpd_client_restrictions=
 -o smtpd_helo_restrictions=
 -o smtpd_sender_restrictions=
 -o smtpd_recipient_restrictions=permit_mynetworks,reject
 -o smtpd_data_restrictions=
 -o mynetworks=127.0.0.0/8
 -o receive_override_options=no_unknown_recipient_checks
127.0.0.1:10027 inet n - n - 100 smtpd
 -o content_filter=
 -o myhostname=reinject.example.com
 -o mynetworks=127.0.0.0/8
 -o smtpd_client_restrictions=
 -o smtpd_helo_restrictions=
 -o smtpd_sender_restrictions=
 -o smtpd_recipient_restrictions=permit_mynetworks,reject
 -o header_checks=
 -o body_checks=
spamfilter unix - n n - - pipe flags=Rq user=spam 
argv=/usr/local/bin/spamfilter.sh ${sender} $
{recipient}
spamdelivery unix - n n - - pipe flags=R user=spam argv=/usr/bin/procmail -t 
-m /etc/procmailrc
-spam -d spam

-- end of postfinger output --

thanks for help,
flash


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Where is imapd.conf option to direct postfix to /var/spool/imapd/user/mailbox?

[Flash Love]

On Saturday 17 September 2005 08:10 pm, Wil Cooley wrote:
> On Sat, 2005-09-17 at 12:21 -0500, Flash Love wrote:
> > I am using postfix+cyrus+sasl+webcryadm. When logging to imap accounts
> > the following complaint appears in maillog:
> >
> > pop3: login: [192.168.2.154] benu0001 plaintext User logged in
> > pop3: IOERROR: opening /var/spool/imap/b/user/benu0001/cyrus.header: No
> > such file or directory
> > pop3: Unable to open maildrop for benu0001: System I/O error
> >
[...]

> You're going about it all wrong.  Postfix doesn't deliver directly
> to /var/spool/imap; it delivers to Cyrus through LMTP, which manages the
> backend spool itself.
>
> Wil

Thanks. Under which conditions is "mail_transport=cyrus" correct?

flash


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Where is imapd.conf option to direct postfix to /var/spool/imapd/user/mailbox?

[Flash Love]

On Monday 19 September 2005 05:18 pm, Wil Cooley wrote:
[...]
> Sorry, I think I took your subject line too literally; are you using the
> 'cyrus' service from master.cf or LMTP for mailbox delivery, or are you
> using maildrop, local or other direct-delivery service service?

> The '/b/' directory is part of the mailbox hashing, which is normal if
> configured as such with Cyrus.  The problem your pop3 client is having
> is (probably) not related to that.
>
> Wil

You were absolutely correct about the imap.conf option hashimapspool when I 
changed its value to false the pop complaints stopped and mail was delivered.

To be honest, as I struggled to configure the services for postfix, at some 
point ALL of the above delivery methods were tried: cyrus, LMTP, maildrop, 
local or other direct-delivery. 

At that time, my goal was to use cyrus . 

thanks again,
flash


Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Create virtual domain user complaint: createmailbox: Invalid mailbox name

[Flash Love]

I am running FC4+SASL+TLS+Postfix+Cyrus-imap+Cyrus-sasl+web-cyradm on two 
hosts. HostA allows the creation of vitrual domain users as 
user/[EMAIL PROTECTED], however, when using the same cm syntax for a user on 
HostB cryadm complains "createmailbox: Invalid mailbox name" . HostB will 
accept cm user. + u.. + .domain.com.

HostA and HostB /etc/imapd.conf configurations are identical with the 
exceptiion of host names and both reports:  

name   : Cyrus IMAPD
version: v2.2.12-Invoca-RPM-2.2.12-6.fc4 2005/02/14 16:43:51
vendor : Project Cyrus
support-url: http://asg.web.cmu.edu/cyrus
os : Linux
os-version : 2.6.14-1.1656_FC4
environment: Built w/Cyrus SASL 2.1.20
 Running w/Cyrus SASL 2.1.20
 Built w/Sleepycat Software: Berkeley DB 4.3.27: (April 25, 2005)
 Running w/Sleepycat Software: Berkeley DB 4.3.27: (April 25, 
2005)
 Built w/OpenSSL 0.9.7f 22 Mar 2005
 Running w/OpenSSL 0.9.7f 22 Mar 2005
 CMU Sieve 2.2
 TCP Wrappers
 mmap = shared
 lock = fcntl
 nonblock = fcntl
 auth = unix
 idle = idled

What could possibly be different in HostB's environment that would require  
different virtual domain creation separators? i.e.  (HostA) cm 
user/[EMAIL PROTECTED] vs (HostB) cm user. + u.. + .domain.com.
Note: The '+' signs are used only to show that periods are required on HostB.

Regards,

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html

Re: Create virtual domain user complaint: createmailbox: Invalid mailbox name

[Flash Love]

On Friday 03 February 2006 13:10, Alexander Dalloz wrote:
> Am Fr, den 03.02.2006 schrieb Flash Love um 14:47:
> > I am running FC4+SASL+TLS+Postfix+Cyrus-imap+Cyrus-sasl+web-cyradm on two
> > hosts. HostA allows the creation of vitrual domain users as
> > user/[EMAIL PROTECTED], however, when using the same cm syntax for a user
> > on HostB cryadm complains "createmailbox: Invalid mailbox name" . HostB
> > will accept cm user. + u.. + .domain.com.
> >
> > HostA and HostB /etc/imapd.conf configurations are identical with the
> > exceptiion of host names and both reports:
> >
> > What could possibly be different in HostB's environment that would
> > require different virtual domain creation separators? i.e.  (HostA) cm
> > user/[EMAIL PROTECTED] vs (HostB) cm user. + u.. + .domain.com.
> > Note: The '+' signs are used only to show that periods are required on
> > HostB.
>
> unixhierarchysep: yes
>
> That option isn't set properly inside imapd.conf on HostB.
>

I have verified that there are no extra spaces orr other extraneous characters 
in HostB's imapd.conf and compared HostB's imapd.con to HostA's imapd.conff 
with sdiff -s.  The only lines that are printed contains hostname related 
information. 

I removed the unixhierarchysep line and re-entered the line. Everything remain 
the same.  Below is a copy, maybe there is something else going on.


Thanks for responding,

===
HostB imapd.conf
===
postmaster: post-master
admins: cyrus
configdirectory: /var/lib/imap
partition-default: /var/spool/imap
allowanonymouslogin: no
allowplaintext: yes
allowusermoves: yes
autocreatequota: -1
autocreateinboxfolders: Sent | Drafts | Spam | Templates | Trash
autosubscribeinboxfolders: Sent | Drafts | Spam
anysievefolder: yes
defaultdomain: domain.net
drachost: localhost
dracinterval: 0
generate_compiled_sieve_script: yes
hashimapspool: true
poptimeout: 10
quotawarn: 90
reject8bit: no
sendmail: /usr/sbin/sendmail
servername: HostB.domain.net
sievedir: /var/lib/imap/sieve
sieve_maxscripts: 5
sieve_maxscriptsize: 32
timeout: 30

lmtp_admins: otheradmin
lmtp_allowplaintext: no
lmtp_downcase_rcpt: yes

sasl_pwcheck_method: auxprop
sasl_auxprop_plugin: sql
sasl_mech_list: PLAIN LOGIN
sasl_sql_engine: mysql
sasl_sql_user: mail
sasl_sql_passwd: password
sasl_sql_hostnames: HostB.domain.net
sasl_sql_database: mail
sasl_sql_select: SELECT password FROM accountuser WHERE username = '[EMAIL 
PROTECTED]' OR 
(username ='%u' AND domain_name = '')
sasl_sql_verbose: yes
sasl_saslauthd_path: /var/run/saslauthd/mux

unixhierarchysep: yes
virtdomains: userid
altnamespace: yes

tls_ca_file: /etc/postfix/ssl/HostB_ca.pem
tls_cert_file: /etc/postfix/ssl/HostB_imap_key_cert.pem
tls_key_file: /etc/postfix/ssl/HostB_imap_key_cert.pem

Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html