On Sat, 23 Feb 2008, Andreas Matthus wrote:
Feb 23 12:36:01 r2 imapd[3473]: Failed uwmaster override of user=pro1
host=r22.j.de [xx.xx.55.22]
This means that one of the following happened:
. Group mailadm does not exist: getgrnam("mailadm") call failed.
. gr_mem member in returned getgrnam() structure is null.
. uwmaster is not in gr_mem
. login procedure -- setgid()/initgroups()/setuid() -- failed for pro1
The routine which does all of this is pw_login() in env_unix.c. At this
point, uwmaster has already been authenticated, so it's not a password
issue.
I recommend that you start by isolating the problem. Change the lines:
if ((gr = getgrnam (ADMINGROUP)) && (t = gr->gr_mem)) while (*t && !ret)
if (!compare_cstring (auser,*t++))
ret = pw_login (pw,NIL,user,home,argc,argv);
to something like:
if ((gr = getgrnam (ADMINGROUP)) && (t = gr->gr_mem)) while (*t && !ret)
if (!compare_cstring (auser,*t++)) {
syslog (LOG_NOTICE|LOG_AUTH,"Admin override %.80s valid",uwmaster);
ret = pw_login (pw,NIL,user,home,argc,argv);
}
And then repeat your test. If you see
Admin override uwmaster valid
in your syslog, then that means that the problem is in the login procedure
for pro1.
If you do not see that message (which is my guess), then the problem is
somewhere in the mailadm group validation:
if ((gr = getgrnam (ADMINGROUP)) && (t = gr->gr_mem)) while (*t && !ret)
if (!compare_cstring (auser,*t++)) {
and you can proceed to set up tests/debug from there.
-- Mark --
http://panda.com/mrc
Democracy is two wolves and a sheep deciding what to eat for lunch.
Liberty is a well-armed sheep contesting the vote.
_______________________________________________
Imap-uw mailing list
[email protected]
https://mailman1.u.washington.edu/mailman/listinfo/imap-uw
