From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on sa.int.altlinux.org X-Spam-Level: X-Spam-Status: No, score=-1.6 required=5.0 tests=AWL,BAYES_00 autolearn=ham version=3.2.5 Date: Mon, 20 Apr 2009 20:13:57 +0400 From: Timur Batyrshin To: ALT Linux sysadmin discuss Message-ID: <20090420201357.250a57d2@batyrshin.kzn.ieml.ru> Organization: IEML X-Mailer: Claws Mail 3.6.1cvs5 (GTK+ 2.10.14; i586-alt-linux-gnu) Mime-Version: 1.0 Content-Type: multipart/signed; boundary="Sig_/yqVNRSruE6q.j_1dnj6u5Dq"; protocol="application/pgp-signature"; micalg=PGP-SHA1 X-SpamTest-Version: SMTP-Filter Version 3.0.0 [0284], KAS30/Release X-SpamTest-Info: Not protected Subject: [Sysadmins] =?utf-8?q?realms_=D0=B8_cyrus-imapd_+_saslauthd?= X-BeenThere: sysadmins@lists.altlinux.org X-Mailman-Version: 2.1.12 Precedence: list Reply-To: ALT Linux sysadmin discuss List-Id: ALT Linux sysadmin discuss List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 20 Apr 2009 16:14:18 -0000 Archived-At: List-Archive: --Sig_/yqVNRSruE6q.j_1dnj6u5Dq Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable =D0=9D=D0=B0=D1=81=D1=82=D1=80=D0=B0=D0=B8=D0=B2=D0=B0=D1=8E =D1=81=D0=B5= =D1=80=D0=B2=D0=B5=D1=80 IMAP (cyrus-imapd), =D0=BA=D0=BE=D1=82=D0=BE=D1=80= =D1=8B=D0=B9 =D0=B4=D0=BE=D0=BB=D0=B6=D0=B5=D0=BD =D0=B1=D1=83=D0=B4=D0=B5= =D1=82 =D0=BE=D0=B1=D1=81=D0=BB=D1=83=D0=B6=D0=B8=D0=B2=D0=B0=D1=82=D1=8C =D0=BD=D0=B5=D1=81=D0=BA=D0=BE=D0=BB=D1=8C=D0=BA=D0=BE =D0=B4=D0=BE=D0=BC= =D0=B5=D0=BD=D0=BE=D0=B2. =D0=91=D0=B0=D0=B7=D0=B0 =D0=BF=D0=BE=D0=BB=D1=8C= =D0=B7=D0=BE=D0=B2=D0=B0=D1=82=D0=B5=D0=BB=D0=B5=D0=B9 =D1=85=D1=80=D0=B0= =D0=BD=D0=B8=D1=82=D1=81=D1=8F =D0=B2 LDAP, =D1=81=D1=82=D0=B0=D0=BB=D0=BE = =D0=B1=D1=8B=D1=82=D1=8C, sasl_pwcheck_method =D0=B8=D1=81=D0=BF=D0=BE=D0=BB=D1=8C=D0=B7=D1=83=D1=8E = saslauthd. =D0=92=D0=BE=D0=BF=D1=80=D0=BE=D1=81: =D1=83=D0=BC=D0=B5=D0=B5=D1=82 =D0=BB= =D0=B8 cyrus-imapd =D0=B8=D1=81=D0=BF=D0=BE=D0=BB=D1=8C=D0=B7=D0=BE=D0=B2= =D0=B0=D1=82=D1=8C realms =D0=BF=D1=80=D0=B8 =D0=B0=D1=83=D1=82=D0=B5=D0=BD= =D1=82=D0=B8=D1=84=D0=B8=D0=BA=D0=B0=D1=86=D0=B8=D0=B8 =D0=BF=D1=80=D0=B8 =D0=BF=D0=BE=D0=BC=D0=BE=D1=89=D0=B8 saslauthd ? =D0=95=D1=81=D0=BB=D0=B8 =D1=83=D0=BC=D0=B5=D0=B5=D1=82, =D1=82=D0=BE =D1= =87=D1=82=D0=BE =D1=83 =D0=BC=D0=B5=D0=BD=D1=8F =D0=BD=D0=B5 =D1=82=D0=B0= =D0=BA? (=D0=BF=D0=BE=D0=B4=D1=80=D0=BE=D0=B1=D0=BD=D1=8B=D0=B9 =D1=80=D0= =B0=D0=B7=D0=B1=D0=BE=D1=80 =D0=BF=D0=BE=D0=BB=D0=B5=D1=82=D0=BE=D0=B2 =D1= =81=D0=BC. =D0=B2 =D0=BA=D0=BE=D0=BD=D1=86=D0=B5 =D0=BF=D0=B8=D1=81=D1=8C= =D0=BC=D0=B0) =D0=98=D0=BB=D0=B8 =D0=BC=D0=BE=D0=B6=D0=B5=D1=82 =D0=B1=D1=8B=D1=82=D1=8C,= =D0=BC=D0=BE=D0=B6=D0=BD=D0=BE =D0=BA=D0=B0=D0=BA-=D1=82=D0=BE =D0=BE=D0= =B1=D0=BE=D0=B9=D1=82=D0=B8=D1=81=D1=8C =D0=B1=D0=B5=D0=B7 =D0=B8=D1=81=D0= =BF=D0=BE=D0=BB=D1=8C=D0=B7=D0=BE=D0=B2=D0=B0=D0=BD=D0=B8=D1=8F saslauthd? =D0=91=D0=B0=D0=B7=D0=B0 =D0=BF=D0=BE=D0=BB=D1=8C=D0=B7=D0=BE=D0=B2=D0=B0= =D1=82=D0=B5=D0=BB=D0=B5=D0=B9 =D1=82=D0=B5=D0=BC =D0=BD=D0=B5 =D0=BC=D0=B5= =D0=BD=D0=B5=D0=B5 =D0=B4=D0=BE=D0=BB=D0=B6=D0=BD=D0=B0 =D0=B1=D1=8B=D1=82= =D1=8C =D0=B2 LDAP. =D0=95=D1=81=D0=BB=D0=B8 =D0=B4=D0=B0, =D1=82=D0=BE =D0=BA=D0=B0=D0=BA =D1= =8D=D1=82=D0=BE =D0=BD=D0=B0=D1=81=D1=82=D1=80=D0=B0=D0=B8=D0=B2=D0=B0=D0= =B5=D1=82=D1=81=D1=8F? =D0=9E=D0=B1=D0=B5=D1=89=D0=B0=D0=BD=D0=BD=D1=8B=D0=B9 =D1=80=D0=B0=D0=B7= =D0=B1=D0=BE=D1=80 =D0=BF=D0=BE=D0=BB=D0=B5=D1=82=D0=BE=D0=B2: [root@imap sasl2]# rpm -qa | egrep '(cyrus|sasl)' cyrus-imapd-2.2.13-alt1.1 cyrus-sasl2-2.1.22-alt1.1.0 libsasl2-2.1.22-alt1.1.0 Saslauthd =D0=BD=D0=B0=D1=81=D1=82=D1=80=D0=BE=D0=B5=D0=BD =D0=BD=D0=BE=D1= =80=D0=BC=D0=B0=D0=BB=D1=8C=D0=BD=D0=BE: [root@imap ~]# testsaslauthd -u testuser -p secret -r domain.ru 0: OK "Success." Cyrus-imapd =D0=BD=D0=B0=D1=81=D1=82=D1=80=D0=BE=D0=B5=D0=BD =D0=BD=D0=B0 = =D0=B8=D1=81=D0=BF=D0=BE=D0=BB=D1=8C=D0=B7=D0=BE=D0=B2=D0=B0=D0=BD=D0=B8=D0= =B5 saslauthd =D1=81 =D0=B8=D1=81=D0=BF=D0=BE=D0=BB=D1=8C=D0=B7=D0=BE=D0=B2= =D0=B0=D0=BD=D0=B8=D0=B5=D0=BC =D0=BC=D0=B5=D1=82=D0=BE=D0=B4=D0=B0 PLAIN (=D1=82.=D0=BA. DIGEST-MD5 =D0=B8 CRAM-MD5 =D1=80=D0=B0=D0=B1=D0=BE= =D1=82=D0=B0=D1=8E=D1=82 =D1=82=D0=BE=D0=BB=D1=8C=D0=BA=D0=BE =D0=B2=D0=BC= =D0=B5=D1=81=D1=82=D0=B5 =D1=81 auxprop): [root@imap ~]# grep sasl /etc/imapd.conf | egrep -v '^#' sasl_pwcheck_method: saslauthd sasl_mech_list: PLAIN =D0=9F=D1=80=D0=B8 =D0=BF=D1=80=D0=BE=D0=B2=D0=B5=D1=80=D0=BA=D0=B5 =D1=81= =D0=B5=D1=80=D0=B2=D0=B5=D1=80=D0=B0 IMAPD =D0=BF=D1=80=D0=B8 =D0=BF=D0=BE= =D0=BC=D0=BE=D1=89=D0=B8 imtest =D1=82=D0=B0=D0=BA=D0=BE=D0=B5 =D0=B2=D0=BF= =D0=B5=D1=87=D0=B0=D1=82=D0=BB=D0=B5=D0=BD=D0=B8=D0=B5, =D1=87=D1=82=D0=BE = =D0=BE=D0=BD =D0=B8=D0=B3=D0=BD=D0=BE=D1=80=D0=B8=D1=80=D1=83=D0=B5=D1=82 realm, =D0=BD= =D0=B5 =D0=BF=D0=B5=D1=80=D0=B5=D0=B4=D0=B0=D0=B5=D1=82 =D0=B5=D0=B3=D0=BE = =D0=BA saslauthd, =D0=B2 =D1=80=D0=B5=D0=B7=D1=83=D0=BB=D1=8C=D1=82=D0=B0= =D1=82=D0=B5 =D1=87=D0=B5=D0=B3=D0=BE =D0=B0=D1=83=D1=82=D0=B5=D0=BD=D1=82=D0=B8=D1=84=D0=B8=D0=BA=D0=B0=D1=86=D0= =B8=D1=8F =D0=BD=D0=B5 =D0=BF=D1=80=D0=BE=D1=85=D0=BE=D0=B4=D0=B8=D1=82: $ imtest -a testuser -w secret -r domain.ru web =D0=92 =D0=BB=D0=BE=D0=B3=D0=B0=D1=85: Apr 20 19:47:55 imap imap[20079]: accepted connection Apr 20 19:47:55 imap saslauthd[23775]: Domain/Realm not available. Apr 20 19:47:55 imap saslauthd[23775]: Entry not found ((&(mail=3Dtestuser@= )(myorgUserEnabled=3DTRUE))). Apr 20 19:47:55 imap saslauthd[23775]: Authentication failed for testuser: = User not found (-6) Apr 20 19:47:55 imap saslauthd[23775]: do_auth : auth failure: [use= r=3Dtestuser] [service=3Dimap] [realm=3D] [mech=3Dldap] [reason=3DUnknown] Apr 20 19:47:55 imap imap[20079]: badlogin: [194.85.246.67] plaintext testu= ser SASL(-13): authentication failure: checkpass failed =D0=9E=D0=B1=D1=80=D0=B0=D1=82=D0=B8=D1=82=D0=B5 =D0=B2=D0=BD=D0=B8=D0=BC= =D0=B0=D0=BD=D0=B8=D0=B5 =D0=BD=D0=B0 =D1=81=D1=82=D1=80=D0=BE=D1=87=D0=BA= =D1=83 do_auth, =D0=B0 =D1=82=D0=BE=D1=87=D0=BD=D0=B5=D0=B5 =D0=BD=D0=B0 = =D0=B5=D0=B5 =D1=87=D0=B0=D1=81=D1=82=D1=8C [realm=3D] =D0=95=D1=81=D0=BB=D0=B8 =D0=B1=D1=8B realm =D0=BF=D0=B5=D1=80=D0=B5=D0=B4= =D0=B0=D0=B2=D0=B0=D0=BB=D1=81=D1=8F =D0=BA saslauthd, =D1=83=D1=81=D0=BB= =D0=BE=D0=B2=D0=B8=D0=B5 =D0=BF=D0=BE=D0=B8=D1=81=D0=BA=D0=B0 =D0=B1=D1=8B= =D0=BB=D0=BE =D0=B1=D1=8B =D1=82=D0=B0=D0=BA=D0=BE=D0=B5: ((&(mail=3Dtestuser@domain.ru)(myorgUserEnabled=3DTRUE))) =D0=B8 =D0=B0=D1=83=D1=82=D0=B5=D0=BD=D1=82=D0=B8=D1=84=D0=B8=D0=BA=D0=B0= =D1=86=D0=B8=D1=8F =D0=BF=D1=80=D0=BE=D1=88=D0=BB=D0=B0 =D0=B1=D1=8B =D1=83= =D1=81=D0=BF=D0=B5=D1=88=D0=BD=D0=BE. =D0=A2=D0=BE=D1=87=D0=BD=D0=BE =D1=82=D0=B0=D0=BA=D0=B8=D0=B5 =D0=B6=D0=B5 = =D0=B7=D0=B0=D0=BF=D0=B8=D1=81=D0=B8 =D0=B2 =D0=BB=D0=BE=D0=B3=D0=B0=D1=85 = =D0=B2=D0=B8=D0=B6=D1=83 =D0=B8 =D0=BF=D1=80=D0=B8 virtdomains =D0=B2 /etc/= imapd.conf =D0=B2=D1=8B=D1=81=D1=82=D0=B0=D0=B2=D0=BB=D0=B5=D0=BD=D0=BD=D0=BE=D0=BC = =D0=B2 off, userid =D0=B8 on, =D1=82=D0=B0=D0=BA =D0=B6=D0=B5 =D0=BA=D0=B0= =D0=BA =D0=B8 =D0=B2 =D1=81=D0=BB=D0=B5=D0=B4=D1=83=D1=8E=D1=89=D0=B8=D1=85= =D0=B2=D0=B0=D1=80=D0=B8=D0=B0=D0=BD=D1=82=D0=B0=D1=85 =D0=BA=D0=BE=D0=BC=D0=B0=D0=BD=D0=B4=D1=8B: $ imtest -a testuser@domain.ru -w secret -r domain.ru web $ imtest -a testuser -w secret web $ imtest -a testuser@domain.ru -w secret -r domain.ru web =D0=92 =D1=87=D0=B5=D0=BC =D0=BF=D1=80=D0=BE=D0=B1=D0=BB=D0=B5=D0=BC=D0=B0? =D0=95=D1=81=D0=BB=D0=B8 =D0=BA=D0=B0=D0=BA=D0=B8=D0=B5-=D1=82=D0=BE =D0=BA= =D0=BE=D0=BD=D1=84=D0=B8=D0=B3=D0=B8 =D0=BF=D0=BE=D0=BC=D0=BE=D0=B3=D1=83= =D1=82 -- =D1=81=D0=BA=D0=B0=D0=B6=D0=B8=D1=82=D0=B5, =D0=B2=D1=8B=D1=88=D0= =BB=D1=8E. --Sig_/yqVNRSruE6q.j_1dnj6u5Dq Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.8 (GNU/Linux) iEYEARECAAYFAknsn0gACgkQBMbamSk3PiQxVACeK51LJCJo7NZkHy/Qt55wz4Mz 3FcAoKyWjkf/XLBTa6ReVF/3iMNv6mtg =1d4R -----END PGP SIGNATURE----- --Sig_/yqVNRSruE6q.j_1dnj6u5Dq--