Your message dated Wed, 14 Nov 2007 21:02:02 +0000
with message-id <[EMAIL PROTECTED]>
and subject line Bug#446555: fixed in dovecot 1:1.0.7-3
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: dovecot
Version: 1.0.5-1
Severity: wishlist
Hi there,
I have an (admittedly baroque) authentication mechanism for LDAP, with
some users being system users and some being in LDAP, although in many
possible trees. In order to handle this reasonably smoothly, I've
written an auth helper script.
I am trying to transition to SSL based auth for at least the system
users, but I've found this to be impossible for now. There is currently
a mechanism to fail authentication for users that prevent an invalid
client cert, which is good, but too strong for my needs. I'd like to
just allow verified clients to log in without sending a password if they
have a working cert.
Ideally, I'd like to do this by checking an environment variable in the
script (SSL_CLIENT_VERIFIED ?) and proceeding without an auth check.
Admittedly, the client will still need to send something to proceed from
the master to the auth process, but I could at least get down to sending
USER '' and PASS '', and just get the CN out the cert.
Perhaps this is just a crazy idea, but it seems reasonable at the
moment.
Thanks,
-- System Information:
Debian Release: 4.0
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-4-xen-amd64
Locale: LANG=en_US.utf8, LC_CTYPE=en_US.utf8 (charmap=UTF-8) (ignored: LC_ALL
set to en_US.utf8)
--- End Message ---
--- Begin Message ---
Source: dovecot
Source-Version: 1:1.0.7-3
We believe that the bug you reported is fixed in the latest version of
dovecot, which is due to be installed in the Debian FTP archive:
dovecot-common_1.0.7-3_amd64.deb
to pool/main/d/dovecot/dovecot-common_1.0.7-3_amd64.deb
dovecot-imapd_1.0.7-3_amd64.deb
to pool/main/d/dovecot/dovecot-imapd_1.0.7-3_amd64.deb
dovecot-pop3d_1.0.7-3_amd64.deb
to pool/main/d/dovecot/dovecot-pop3d_1.0.7-3_amd64.deb
dovecot_1.0.7-3.diff.gz
to pool/main/d/dovecot/dovecot_1.0.7-3.diff.gz
dovecot_1.0.7-3.dsc
to pool/main/d/dovecot/dovecot_1.0.7-3.dsc
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [EMAIL PROTECTED],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Fabio Tranchitella <[EMAIL PROTECTED]> (supplier of updated dovecot package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [EMAIL PROTECTED])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 14 Nov 2007 21:33:55 +0100
Source: dovecot
Binary: dovecot-common dovecot-pop3d dovecot-imapd
Architecture: source amd64
Version: 1:1.0.7-3
Distribution: unstable
Urgency: low
Maintainer: Dovecot Maintainers <[EMAIL PROTECTED]>
Changed-By: Fabio Tranchitella <[EMAIL PROTECTED]>
Description:
dovecot-common - secure mail server that supports mbox and maildir mailboxes
dovecot-imapd - secure IMAP server that supports mbox and maildir mailboxes
dovecot-pop3d - secure POP3 server that supports mbox and maildir mailboxes
Closes: 439246 446555 449324
Changes:
dovecot (1:1.0.7-3) unstable; urgency=low
.
* debian/patches/dovecot-ssl.dpatch: provide mechanism to discover if ssl
client certificate is verified, patch from Stephen Gran. (Closes: #446555)
* debian/patches/pam-error-information.dpatch: fill auth information in pam
error, patch backported from upstream RCS . (Closes: #439246)
* debian/patches/unsupported-sasl-mech.dpatch: should use NO (not BAD) for
unsupported SASL mech, patch backported from upstream RCS. (Closes:
#449324)
Files:
48bbd67b61b8f1361ff0595c769adae4 1013 mail optional dovecot_1.0.7-3.dsc
e898a53bb3e7eabc7e165e45975fc915 104337 mail optional dovecot_1.0.7-3.diff.gz
86ee66cf4b7e73e00767079e8bc24e6d 1800056 mail optional
dovecot-common_1.0.7-3_amd64.deb
87ff936abb9538f0f97a538f29c52188 651304 mail optional
dovecot-imapd_1.0.7-3_amd64.deb
cf7ed8e5cbaf1ac738853764b5214bb1 614774 mail optional
dovecot-pop3d_1.0.7-3_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFHO176K/juK3+WFWQRAj5AAJ9MxRPsZ12efZm6Wt5f7mcPTTnRbgCgjira
O2OkwERabRS7Rm9NGuJcbX8=
=Lui9
-----END PGP SIGNATURE-----
--- End Message ---
