Hi,
I have been stuck for a few days on this. I can't figure out what I'm
doing wrong. It would be really nice if someone could give me a few
clues...
I'm trying to install Cyrus imapd-2.1.3/sasl-2.1.1 on a default redhat
7.2 server install.
Here is what it says when I do:
imtest -t "" localhost
C: C01 CAPABILITY
S: * OK chicken.canram.com Cyrus IMAP4 v2.1.3 server ready
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ NAMESPACE UIDPLUS ID
NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT
THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS
S: C01 OK Completed
S01 OK Begin TLS negotiation now
verify error:num=18:self signed certificate
TLS connection established: TLSv1 with cipher DES-CBC3-SHA (168/168
bits)
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ NAMESPACE UIDPLUS ID
NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND SORT
THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS
S: C01 OK Completed
Password:
C: L01 LOGIN root {5}
+ go ahead
C: <omitted>
L01 NO Login failed: generic failure
Authentication failed. generic failure
Security strength factor: 168
It should display the available AUTH but it doesn't...any idea why?
Here is more information:
This is what it says in the imapd.log
Mar 26 12:18:20 chicken imapd[769]: starttls: TLSv1 with cipher
DES-CBC3-SHA (168/168 bits new) no authentication
Mar 26 12:18:22 chicken imapd[769]: badlogin:
localhost.localdomain[127.0.0.1] plaintext root SASL(-1): generic
failure: checkpass failed
And in the auth.log it says nothing
I tried different pwcheck methods and none work.
Here is my imapd.conf file:
configdirectory: /var/imap
partition-default: /var/spool/imap
admins: cyrus root
allowanonymouslogin: no
sasl_pwcheck_method: sasldb
tls_cert_file: /var/imap/imap-server.pem
tls_key_file: /var/imap/imap-server.pem
tls_cert_file: /var/imap/pop3-server.pem
tls_key_file: /var/imap/pop3-server.pem
Here are the steps I go through. (I did try a few variations with no
success)
cd cyrus-sasl
./configure --disable-krb4 --with-pwcheck --enable-login
make
make install
ln -s /usr/lib/sasl12 /usr/local/lib/sasl12
cd cryus-imap
./configure --with-auth=unix --with-openssl=/usr/local/ssl
--with-sasl=/usr/local
make depend
make all CFLAGS=-O
useradd -g mail cyrus
make install
vi /etc/syslog.conf
(insert at the end)
local6.debug /var/log/imapd.log
auth.debug /var/log/auth.log
touch /var/log/imapd.log /var/log/auth.log
vi /etc/imapd.conf
configdirectory: /var/imap
partition-default: /var/spool/imap
admins: cyrus root
srvtab: /var/imap/srvtab
allowanonymouslogin: no
sasl_passwd_check: shadow
tls_cert_file: /var/imap/imap-server.pem
tls_key_file: /var/imap/imap-server.pem
tls_cert_file: /var/pop/pop-server.pem
tls_key_file: /var/pop/pop-server.pem
cd /var
mkdir imap
chown cyrus imap
chgrp mail imap
chmod 750 imap
cd /var/spool
mkdir imap
chown cyrus imap
chgrp mail imap
chmod 750 imap
cd /usr
mkdir sieve
chown cyrus sieve
chgrp mail sieve
chmod 750 sieve
su cyrus
tools/mkimap
exit
chattr +S /var/spool/mqueue
openssl req -new -x509 -nodes -out /var/imap/imap-server.pem -keyout
/var/imap/imap-server.pem -days 1200
openssl req -new -x509 -nodes -out /var/imap/pop3-server.pem -keyout
/var/imap/pop3-server.pem -days 1200
chown cyrus /var/imap/pop3-server.pem
chown cyrus /var/imap/imap-server.pem
vi /etc/services
pop3 110/tcp
imap 143/tcp
imsp 406/tcp
acap 674/tcp
imaps 993/tcp
pop3s 995/tcp
kpop 1109/tcp
sieve 2000/tcp
lmtp 2003/tcp
fud 4201/udp
remove from xinetd.d
imap,imaps,pop3,pop3s,kpop,lmtp,sieve
cp master/conf/normal.conf /etc/cyrus.conf
Thanks!
Maxime Couillard
[EMAIL PROTECTED]
