Hi
Please help me in a little PAM problem,with courier-authlib
The system is Centos 5.3 with courier-imap 4.10 and courier-authlib0.63
I want to filter pop3 access (authenticate with PAM) with
/etc/security/access.conf
After add in
/etc/pam.d/pop3 file account required pam_access.so
it is work corectly but use the IP valid address/mask in access.conf not work.
If relplace IP address with ALL it work corectly
Ex
- : gaby : 192.168.3.0/24 not restrict user gaby from 192.168.3.0 network,this
option is ignored
Any IP in this format is ignored
The secure log report:
Dec 6 13:13:48 mail authdaemond: pam_access(pop3:account): line 116: - :
gaby : 192.168.3.0/24
Dec 6 13:13:48 mail authdaemond: pam_access(pop3:account): user_match:
tok=gaby, item=gaby
Dec 6 13:13:48 mail authdaemond: pam_access(pop3:account): string_match:
tok=gaby, item=gaby
Dec 6 13:13:48 mail authdaemond: pam_access(pop3:account): user_match=1, "gaby"
Dec 6 13:13:48 mail authdaemond: pam_access(pop3:account): from_match:
tok=192.168.3.0/24, item=pop3
Dec 6 13:13:48 mail authdaemond: pam_access(pop3:account): string_match:
tok=192.168.3.0/24, item=pop3
Dec 6 13:13:48 mail authdaemond: pam_access(pop3:account):
network_netmask_match: tok=192.168.3.0/24, item=pop3
Dec 6 13:13:48 mail authdaemond: pam_access(pop3:account): from_match=0, "pop3"
If use ALL istead of IP,then restriction is functionaly
What is problem? CentOS,PAM settings,Coutre-authlib?
What is other simple method restrict user/IP for courier-imap services?
Please help me
Thanks Gaby
------------------------------------------------------------------------------
Sponsored by Intel(R) XDK
Develop, test and display web and hybrid apps with a single code base.
Download it for free now!
http://pubads.g.doubleclick.net/gampad/clk?id=111408631&iu=/4140/ostg.clktrk
_______________________________________________
courier-users mailing list
courier-users@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
