Gaby L writes:
Hi Please help me in a little PAM problem,with courier-authlib The system is Centos 5.3 with courier-imap 4.10 and courier-authlib0.63I want to filter pop3 access (authenticate with PAM) with /etc/security/access.confAfter add in /etc/pam.d/pop3 file account required pam_access.soit is work corectly but use the IP valid address/mask in access.conf not work.If relplace IP address with ALL it work corectly
authdaemond is a persistent process, that's not tied to any network connections. As such, PAM has no means of determining the IP address for any given authentication request. A new IMAP process does not execute PAM directly, but via authdaemond.
What is problem? CentOS,PAM settings,Coutre-authlib? What is other simple method restrict user/IP for courier-imap services?
You can borrow some scripts from the Courier package and create an access file for IMAP's couriertcpd, if you want. But what exactly is the problem you're trying to solve. Blocking access by IP address is not a problem to solve, it's a proposed solution to some problem. IMAP is not a completely unauthenticated process, it requires authentication, so blocking access by IP address serves no useful purpose whatsoever.
pgpfzhx6lDbgL.pgp
Description: PGP signature
------------------------------------------------------------------------------ Sponsored by Intel(R) XDK Develop, test and display web and hybrid apps with a single code base. Download it for free now! http://pubads.g.doubleclick.net/gampad/clk?id=111408631&iu=/4140/ostg.clktrk
_______________________________________________ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
