Date: Wed, 16 Mar 2005 09:17:07 +0100 From: "Daniel S. Haischt" <me@daniel.stefan.haischt.name> To: freebsd-questions@freebsd.org Subject: Re: Mysql postfix SASL cyrus imap problem Message-ID: <4237EB83.4040202@daniel.stefan.haischt.name> In-Reply-To: <f325996d05031516593e799b58@mail.gmail.com> References: <f325996d05031516593e799b58@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
As a short note - Try adding something like the following to
your imapd.conf if you you want that Cyrus authenticates against
your RDBMS as well ...
#sasl_auxprop_plugin: sql
#sasl_sql_engine: pgsql
#sasl_sql_hostnames: postgresql.abyssworld.de
#sasl_sql_user: haischt
#sasl_sql_passwd: access4odin
#sasl_sql_database: sasl2_auxprop
#sasl_sql_select: SELECT %p FROM user_table WHERE username = '%u' and
realm = '%r'
... and as a 2nd note - Make sure that the directory where the
lmtp socket etc. should be created exists and is readable by
the cyrus user account.
Jason M aka Talon schrieb:
> Sorry if this was a double post my subscribe was not working :(
> Im not sure if the original mail went through.
>
> Hi All
> I have a problem with my cyrus imap / mysql install
> after 3 days on google looking around i am ripping my hair out
> I have tried everything i have found in the faq's / howto's
> but just cant seem to get it to work.
>
> Postfix works nicely and delivers to maildir etc
> when i use the sasldb for cyrus i have no problems users can log in
> auxprop has not been nice to me grrrr.
>
> If any one has the time could they have a look at my configuration and
> give me a pointer on what I am doing wrong.
>
> Any help would be greatly appreciated
>
> Regards Jason M aka Talon (talonz[at]gmail.com)
>
> #######################################################################################################################################
> ## version information
>
> OS FreeBSD 5.3-RELEASE-p5
> Postfix Version postfix 2.1.5
> MySQL server version: 5.0.0-alpha
> Cyrus Version cyrus-imapd 2.2.10
> SASL Version cyrus-sasl 2.1.20
>
> All installed from ports
>
> #######################################################################################################################################
>
> ## /var/log/messages :: Errors when imapd is started
>
> forsaken master[60842]: process started
> forsaken ctl_cyrusdb[60843]: recovering cyrus databases
> forsaken ctl_cyrusdb[60843]: skiplist: recovered
> /var/imap/mailboxes.db (3 records, 584 bytes) in 0 seconds
> forsaken ctl_cyrusdb[60843]: skiplist: recovered
> /var/imap/annotations.db (0 records, 144 bytes) in 0 seconds
> forsaken ctl_cyrusdb[60843]: done recovering cyrus databases
> forsaken master[60842]: unable to create lmtpunix listener socket: No
> such file or directory
> forsaken master[60842]: ready for work
> forsaken ctl_cyrusdb[60844]: checkpointing cyrus databases
> forsaken ctl_cyrusdb[60844]: DBERROR: error listing log files:
> DB_NOTFOUND: No matching key/data pair found
> forsaken ctl_cyrusdb[60844]: DBERROR: archive /var/imap/db: cyrusdb error
> forsaken ctl_cyrusdb[60844]: DBERROR: error listing log files:
> DB_NOTFOUND: No matching key/data pair found
> forsaken ctl_cyrusdb[60844]: DBERROR: archive /var/imap/db: cyrusdb error
> forsaken ctl_cyrusdb[60844]: done checkpointing cyrus databases
>
> #######################################################################################################################################
> ## Login errors (after telnet localhost imap // o login test test)
> ## this is the bit that has me stumped
>
> forsaken imap[60846]: sql_select option missing
> forsaken imap[60846]: auxpropfunc error no mechanism available
> forsaken imap[60846]: no user in db
> forsaken imap[60846]: no user in db
> forsaken imap[60846]: badlogin: localhost [127.0.0.1] plaintext test
> SASL(-13): user not found: checkpass failed
>
> #######################################################################################################################################
> ## Start Configuration
>
> #######################################################################################################################################
> ## postfix main.cf
> queue_directory = /var/spool/postfix
> command_directory = /usr/local/sbin
> daemon_directory = /usr/local/libexec/postfix
> mail_owner = postfix
> myhostname = forsaken.unix.org.au
> mydomain = unix.org.au
> inet_interfaces = all
> mydestination = $myhostname, localhost.$mydomain, localhost
> unknown_local_recipient_reject_code = 550
> relay_domains = $mydestination
>
> debug_peer_level = 2
> debugger_command =
> PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
> xxgdb $daemon_directory/$process_name $process_id & sleep 5
>
> sendmail_path = /usr/local/sbin/sendmail
> newaliases_path = /usr/local/bin/newaliases
> mailq_path = /usr/local/bin/mailq
> setgid_group = maildrop
> html_directory = no
> manpage_directory = /usr/local/man
> sample_directory = /usr/local/etc/postfix
> readme_directory = no
>
> # header/body checking
> header_checks = regexp:/usr/local/etc/postfix/header_checks
> body_checks = regexp:/usr/local/etc/postfix/body_checks
>
> # use cyrus or virtual
> mailbox_transport = cyrus
>
> virtual_alias_maps = mysql:/usr/local/etc/postfix/mysql_virtual_alias_maps.cf
> virtual_gid_maps = static:125
> virtual_mailbox_base = /usr/local/virtual
> virtual_mailbox_domains =
> mysql:/usr/local/etc/postfix/mysql_virtual_domains_maps.cf
> virtual_mailbox_limit = 51200000
> virtual_mailbox_maps =
> mysql:/usr/local/etc/postfix/mysql_virtual_mailbox_maps.cf
> virtual_minimum_uid = 125
>
> # use cyrus or virtual
> virtual_transport = virtual
> virtual_uid_maps = static:125
> virtual_create_maildirsize = yes
> virtual_mailbox_extended = yes
> virtual_mailbox_limit_maps =
> mysql:/usr/local/etc/postfix/mysql_virtual_mailbox_limit_maps.cf
> virtual_mailbox_limit_override = yes
> virtual_maildir_limit_message = Sorry, Account Is Suspended. (This
> User Has Exeeded There Quota Limit).
> virtual_overquota_bounce = yes
>
> # sasl settings for cyrus
> broken_sasl_auth_clients = yes
> smtpd_recipient_restrictions =
> permit_mynetworks,
> permit_sasl_authenticated,
> reject_non_fqdn_hostname,
> reject_non_fqdn_sender,
> reject_non_fqdn_recipient,
> reject_unauth_destination,
> reject_unauth_pipelining,
> reject_invalid_hostname,
> reject_rbl_client opm.blitzed.org,
> reject_rbl_client list.dsbl.org,
> reject_rbl_client bl.spamcop.net,
> reject_rbl_client sbl-xbl.spamhaus.org
>
> smtpd_sasl_auth_enable = yes
> smtpd_sasl_local_domain =
> smtpd_sasl_security_options = noanonymous
>
> #######################################################################################################################################
> ## cyrus.conf
>
> START {
> recover cmd="ctl_cyrusdb -r"
> }
>
> SERVICES {
> # add or remove based on preferences
> imap cmd="imapd" listen="imap" prefork=0
> pop3 cmd="pop3d" listen="pop3" prefork=0
>
> lmtpunix cmd="lmtpd" listen="/var/imap/socket/lmtp" prefork=0
> }
>
> EVENTS {
> checkpoint cmd="ctl_cyrusdb -c" period=30
> delprune cmd="cyr_expire -E 3" at=0400
> tlsprune cmd="tls_prune" at=0400
> }
>
> #######################################################################################################################################
> ## imapd.conf
>
> configdirectory: /var/imap
> partition-default: /var/spool/imap
>
> servername: forsaken.unix.org.au
> allowanonymouslogin: no
> allowplaintext: yes
>
> admins: cyrus root
> sieveusehomedir: false
> sievedir: /var/imap/sieve
>
> sasl_pwcheck_method: auxprop
> sasl_mech_list: plain cram-md5 digest-md5
>
> lmtpsocket: /var/imap/socket/lmtp
>
> #######################################################################################################################################
> ## smtpd.conf
> sasl_pwcheck_method: auxprop
> sasl_auxprop_plugin: sql
> sasl_sql_engine: mysql
> sasl_mech_list: PLAIN LOGIN DIGEST-MD5 CRAM-MD5
> sasl_sql_hostnames: localhost
> sasl_sql_user: postfix
> sasl_sql_passwd: postfix_password
> sasl_sql_database: postfix
> sasl_sql_verbose: yes
>
> sasl_sql_select: SELECT password FROM mailbox WHERE username = '%u'
>
> #######################################################################################################################################
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?4237EB83.4040202>