-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Christopher Huyler wrote: | Hi all, | | I've been trying to setup my Solaris 8 machine as a webmail server. I want to | use PAM authentication so that I can use user's smb passwords. | | I have built imapd w/o pam authentication and it works fine but when I try to | add pam authentication, it stops letting users connect. | | I compiled it using: | make gso PASSWDTYPE=pmb SSLTYPE=unix | (I also tried PASSWDTYPE=pam but saw no difference) | | I added the following to /etc/pam.conf | imap auth sufficient pam_unix_auth.so.1 | imap auth required pam_smb_auth.so use_first_pass | | Do I need to add anything else to pam.conf? | | Is there a way to debug? I can't seem to connect to imapd when I run it in | gdb. | I removed the imapd line from /etc/inetd.conf, restarted inetd, then started | up gdb with imapd and entered "run". I added break points to checkpw and | loginpw but when I try to connect I get "connection refused" as if imapd wasn't | running at all. Do I need to bind it to a port or something? Any help on | debugging would be great. | | -- | Christopher Huyler | [EMAIL PROTECTED] no, there is no way to debug pam but trial and error. You might see sothing in a debugger like ddd most likly just pam fails blah in syslog or somthing.
~From your information it would be hard to make a pam config that would work.
do you use NIS,NIS+,LDAP or somthing else to authenticate ?
If all fails.
"I removed the imapd line from /etc/inetd.conf, restarted inetd, then started | up gdb with imapd and entered "run"."
You need to start imapd out of inetd xinetd or how ever your going to start it, then attach to the PID with your gdb ( yuck ) "attach 1234" and debug that way. watch your syslog etc.
I dont think you can start imapd as a stand alone daemon ( I dont know how ). look for getpwnam() etc. Set your break point somewhere before the getpwuid()/getpwnam() so you can see whats going on in the authentication phase. In fact, set it after the username call and before the getpwbynam() call this way you can step through the authentication phase. ( I cant recall what imapd uses, been working on other stuff ). somthing like p->pw will be what it will return.
Try googling for you pam config I think yours looks like a non working config. I Dont have my solaris box here or id pull an example out for you.
Hopefully this has helped in the slightest.
I recomend for this that you use ddd or xxgdb so you can watch the code as it runs past if your running gnu stuff.
remember compile with -ggdb and no optimizations and dont strip your symbol table off :P
Take Care
Sincerely, Aaron Waller
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFAaFTz1ZLJ6yGmG48RAsmoAJ0fZctVS25m54AOzJO49TzLvMB9oQCeKt2V 8VUkzz7HMeIBFNozUhj1cwk= =Az1e -----END PGP SIGNATURE-----
