I have been pulling my hair out on this for a few days.
I am setting up a fedora 6 box for use of receiving mail for a domain, and
providing pop3 and imap services. The catch is, I need to use RADIUS
(pam_radius_auth) to verify authentication on pop3/imap logins.
I already have SSHD working with radius and pam_pwdb, so I know the servers
are responding and doing the correct thing.
Whats weird is the way its set up now, it authenticates some people
perfectly fine, but others, it fails miserably.
In /etc/authlib/authdaemonrc, I have authmodulelist="authpam" set.
I have tried many variations of things for /etc/pam.d/pop3 and imap,
currently set to:
auth sufficient /lib/security/pam_radius_auth.so try_first_pass
account sufficient /lib/security/pam_radius_auth.so try_first_pass
session sufficient /lib/security/pam_radius_auth.so try_first_pass
Authtest comes back with the following:
[EMAIL PROTECTED] pam.d]# authtest -s pop3 user1 mypassowrd
Authentication succeeded.
Authenticated: user1 (system username: user1)
Home Directory: /var/mail/user1
Maildir: (none)
Quota: (none)
Encrypted Password: !!
Cleartext Password: mypassword
Options: (none)
[EMAIL PROTECTED] pam.d]# authtest -s pop3 user2 mypassword
Authentication FAILED: Operation not permitted
[EMAIL PROTECTED] pam.d]# authtest -s pop3 user2
Authentication succeeded.
Authenticated: user2 (system username: user2)
Home Directory: /var/mail/user2
Maildir: (none)
Quota: (none)
Encrypted Password: !!
Cleartext Password: (none)
Options: (none)
Basically it authenticates with no password, yet this account works
perfectly fine on the system this new setup will be replacing (running
openbsd)
Also, the users are listed in /etc/passwd, but both (and a few others) with
no passwords. I seem to get a mix of ones that do and ones that don't work.
Does anyone have any ideas, insight, or otherwise to get this to work
easily? I can provide as much debugging information as needed to get this
to work.
Your thanks appreciated in advance.
-----
Dan Delaney
DLS Internet Services
Network Engineer
[EMAIL PROTECTED]
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys-and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
courier-users mailing list
[email protected]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
