Date: Wed, 15 Jun 2022 11:54:53 -0400 From: Janos Dohanics <web@3dresearch.com> To: freebsd-questions@freebsd.org Subject: sieveshell authentication fails Message-ID: <20220615115453.57edea40499ffd89fed7151f@3dresearch.com>
next in thread | raw e-mail | index | archive | help
Hello, I have a couple of Cyrus servers (cyrus-imapd32 and cyrus-imapd34) on FreeBSD 13.1-STABLE. I cannot authenticate with sieveshell(1) on either one of these servers. I can telnet to the Sieve server: # telnet localhost sieve Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. "IMPLEMENTATION" "Cyrus timsieved 3.4.3" "VERSION" "1.0" "SASL" "PLAIN" "SIEVE" "encoded-character comparator-i;ascii-numeric fileinto reject ereject vacation vacation-seconds notify enotify include editheader vnd.cyrus.snooze envelope environment body imap4flags date ihave mailbox mboxmetadata servermetadata duplicate relational regex extlists subaddress copy index variables redirect-deliverby redirect-dsn special-use fcc mailboxid" "NOTIFY" "mailto" "EXTLISTS" "urn:ietf:params:sieve:addrbook" "STARTTLS" "UNAUTHENTICATE" OK However, can't authenticate with sieveshell(1): # sieveshell -a [user] localhost Empty compile time value given to use lib at /usr/local/bin/sieveshell line 60. Empty compile time value given to use lib at /usr/local/bin/sieveshell line 61. connecting to localhost Please enter your password: unable to connect to server at /usr/local/bin/sieveshell line 202, <STDIN> line 1. Authentication with imtest(1) works: # imtest -a [user] -p 1430 WARNING: no hostname supplied, assuming localhost S: * OK [CAPABILITY IMAP4rev1 LITERAL+ ID ENABLE STARTTLS AUTH=PLAIN SASL-IR] [server] Cyrus IMAP 3.4.3 server ready Please enter your password: C: A01 AUTHENTICATE PLAIN AGpzcHJvdXQAVXJhai1vdjI= S: A01 OK [CAPABILITY IMAP4rev1 LITERAL+ ID ENABLE ACL ANNOTATE-EXPERIMENT-1 BINARY CATENATE CHILDREN CONDSTORE CREATE-SPECIAL-USE ESEARCH ESORT LIST-EXTENDED LIST-MYRIGHTS LIST-STATUS MAILBOX-REFERRALS METADATA MOVE MULTIAPPEND NAMESPACE OBJECTID QRESYNC QUOTA RIGHTS=kxten SAVEDATE SEARCH=FUZZY SORT SORT=DISPLAY SPECIAL-USE STATUS=SIZE THREAD=ORDEREDSUBJECT THREAD=REFERENCES UIDPLUS UNSELECT URLAUTH URLAUTH=BINARY WITHIN DIGEST=SHA1 LIST-METADATA NO_ATOMIC_RENAME PREVIEW=FUZZY SCAN SORT=MODSEQ SORT=UID THREAD=REFS X-CREATEDMODSEQ X-REPLICATION XLIST XMOVE LOGINDISABLED COMPRESS=DEFLATE X-QUOTA=STORAGE X-QUOTA=MESSAGE X-QUOTA=X-ANNOTATION-STORAGE X-QUOTA=X-NUM-FOLDERS IDLE] Success (no protection) SESSIONID=<[SESSIONID]> Authenticated. Security strength factor: 0 ^CC: Q01 LOGOUT Connection closed. A kind person on the Cyrus list suggested that mail/cyrus-imapd34 should be compiled with Kerberos. Accordingly, I recompiled mail/cyrus-imapd34 with GSSAPI_MIT=on; however, changing that option did not resolve the problem. Could someone please point me in the right direction? -- Janos Dohanics
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20220615115453.57edea40499ffd89fed7151f>