Re: cyradm : Auth problem..
Back after the weekend.. my admin/user account is saved in /etc/sasldb2 ? when i log into 'cyradm localhost --user jb --auth plain' i first get a 'password :', which it accepts, after that i get a IMAP password : is i type the same password or any other password i get this: Login failed: generic failure at /usr/lib/perl5/site_perl/5.8.0/i386-linux-thread-multi/Cyrus/IMAP/Admin.pm line 118 cyradm: cannot authenticate to server with plain as jb what the h**l wrong ? On Friday 25 July 2003 15:17, tsg wrote: 1. My congratulations. Now you have cyradm working. 2. Where do you keep your IMAP users: LDAP? SASLDB2? there you should test whether user exists 25 2003 12:59, jb : Hello ... .AGAIN .. Im following the install-instructions included in the source. now im stuck again.. i can't login via cyradm . When i try : cyradm localhost it whats a password, for some user, guess it's jb, because it returns this error message: Login failed: generic failure at /usr/lib/perl5/site_perl/5.8.0/i386-linux-thread-multi/Cyrus/IMAP/Admin.p m line 118 cyradm: cannot authenticate to server with as jb what did i miss now ?
Server Sizing for 50,000 mailboxes
Hello all, I have a basic question on sizing. How does one decide on the sizing Now My client wants a sizing for 50,000 mailboxes. Say I use Sendmail/Cyrus and expect 50 mails/s then What will be the server sizing? I have a three server architecture for 1 mailboxes one SMTP one IMAP and the third is a virus scanner and it runs fine So for 50,000 mailboxes will I require 5 x 3 = 15 servers Now that does not look sensible Thanks Ram NETCORE SOLUTIONS *** Ph: +91 22 5662 8000 Fax: +91 22 5662 8134 MailServ: Email, IM, Proxy, Firewall, Anti-Virus, LDAP Fleximail: Mail Storage, Management and Relaying http://www.netcore.co.in Emergic Freedom: Linux-based Thin Client-Thick Server Computing http://www.emergic.com BlogStreet: Top Blogs, Neighborhoods, Search and Utilities http://www.blogstreet.com Rajesh Jain's Weblog on Technology:http://www.emergic.org
Re: cyradm : Auth problem..
I keep my users, aliases, relocated users, and so on in ldap server and I do not have /etc/sasldb2 at all. I do not use Cyradm as well, I wrote my own script which help me to add user to ldap and create mailbox, quota acl using one simple comand, and I am sure that all my data in consistency and I have not forget to add something. You can have a look www.bugalux.com/mbman/ (last slash!). Acoording my opinion, cyradm is not the program I can use in production environment. Too many things should be done manually and, the posibility of admin's mistakes too big. Now I am working to make a bootable CD with everything needed to build secure mail server based on POSTFIX/CYRUS_IMAP/OPENLDAP. 28 2003 08:07, : Back after the weekend.. my admin/user account is saved in /etc/sasldb2 ? when i log into 'cyradm localhost --user jb --auth plain' i first get a 'password :', which it accepts, after that i get a IMAP password : is i type the same password or any other password i get this: Login failed: generic failure at /usr/lib/perl5/site_perl/5.8.0/i386-linux-thread-multi/Cyrus/IMAP/Admin.pm line 118 cyradm: cannot authenticate to server with plain as jb what the h**l wrong ? On Friday 25 July 2003 15:17, tsg wrote: 1. My congratulations. Now you have cyradm working. 2. Where do you keep your IMAP users: LDAP? SASLDB2? there you should test whether user exists 25 2003 12:59, jb : Hello ... .AGAIN .. Im following the install-instructions included in the source. now im stuck again.. i can't login via cyradm . When i try : cyradm localhost it whats a password, for some user, guess it's jb, because it returns this error message: Login failed: generic failure at /usr/lib/perl5/site_perl/5.8.0/i386-linux-thread-multi/Cyrus/IMAP/Admin .p m line 118 cyradm: cannot authenticate to server with as jb what did i miss now ?
Imap Authentication Failure
Hello Everybody , I am using sasldb for authentcation of user from Outlook Express. I am using PAM for authentication From Web (PHP) . Problem is that , before configuaration of sasldb , all was working fine . But when i configured Sasldb then it is not authenticating through PAM for Web. It is going to check it from sasldb database . It does not get related entry , So it is unable to login from Web (Using Php). But When I delete sasldb [/etc/sasldb] then it going to check it from PAM . I have configured Cyrus-imapd with Following options ./configure --with-sasldir=/usr/local/sasl --with-auth=unix --without-krb --with-perl --with-pwcheck=pam I have configured Cyrus-sasl with Following Options ./configure --with-sasldir=/usr/local/sasl --with-auth=unix --without-krb --with-perl --enable-login [/etc/imapd.conf] allowanonymouslogin: noallowplaintext: yessasl_mech_list: PLAINconfigdirectory: /var/imappartition-default: /var/spool/imapadmins: sr_imapadminsasl_pwcheck_method: PAMsievedir: /usr/sieveservername: mail.mydream.com [/usr/lib/sasl/smtp.conf] pwcheck_method: sasldb mech_list: PLAIN [/var/log/imapd.log] Jul 26 21:03:51 localhost imapd[24895]: badlogin: localhost.localdomain[127.0.0.1] CRAM-MD5 user not foundJul 26 21:03:51 localhost imapd[24895]: badlogin: localhost.localdomain[127.0.0.1] CRAM-MD5 no secret in database So How to go upto the Solution .?? Any Help will be appreciated ... Regards Rahul ..
db4 Errors
Hi All - I am getting tons of the classic DB4 Locker errors, I did some searching on this, and it seems like several people have had success switching from db4 to skiplist. I just wanted to check and see if this would indeed fix my problem, or if it is a waste of time? Thanks, Andrew Brink
popminpoll: question
Is there a way to make popminpoll use seconds instead of minutes (or can i use fractional minutes)? I would like to limit connects to once every 30 seconds Thanks, Andrew Brink
Re: flock vs fnctl
Rob Siemborski wrote: However, in Scott's case, he's not renaming the user, he's just moving it between partitions. I don't think we should be iterating across the list to fix the username in this case (so we should fix this ;)... Scott, Try this (untested) patch which I just applied to CVS: http://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/cyrus/imap/imapd.c.diff?r1=1.398.2.88r2=1.398.2.89f=u -- Kenneth Murchison Oceana Matrix Ltd. Software Engineer 21 Princeton Place 716-662-8973 x26 Orchard Park, NY 14127 --PGP Public Key--http://www.oceana.com/~ken/ksm.pgp
Re: popminpoll: question
On Mon, 28 Jul 2003, Andrew Brink wrote: Is there a way to make popminpoll use seconds instead of minutes (or can i use fractional minutes)? Not without a source code modification. -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
Re: Imap Authentication Failure
On Mon, Jul 28, 2003 at 04:08:34PM -0700, rahul wrote: I don't use PAM, however I think this should be: [/etc/imapd.conf] allowanonymouslogin: no allowplaintext: yes sasl_mech_list: PLAIN configdirectory: /var/imap partition-default: /var/spool/imap admins: sr_imapadmin sasl_pwcheck_method: PAM sasl_pwcheck_method: saslauthd sievedir: /usr/sieve servername: mail.mydream.com [/usr/lib/sasl/smtp.conf] pwcheck_method: sasldb pwcheck_method: auxprop mech_list: PLAIN and I think the connection with pam is saslauthd -a pam HTH, Patrick
Problems with postfix/cyrus/mysql
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hello, I am trying to set up a mail system that should store all informations in a MySQL Database. postfix etc. is set up and seems to work just fine, also cyrus seems to be configured correctly and a database has been created etc. My system is a debian woody installation, with the cyrus, postfix packages / everything needed to set up this system. I have set up a domain, and a user account for testing (server0001) in the first place. Sending mails itself works - what does not work is receiving mails in this system. The point of failure seems to be cyrdeliver. As soon as postfix receives a message following is printed in syslog: ### Jul 28 01:06:34 server postfix/smtpd[7201]: connect from bender.bawue.de[193.197.13.1] Jul 28 01:06:34 server postfix/smtpd[7201]: CB3BC4500BD: client=bender.bawue.de[193.197.13.1] Jul 28 01:06:34 server postfix/cleanup[7202]: CB3BC4500BD: message-id=[EMAIL PROTECTED] Jul 28 01:06:34 server postfix/smtpd[7201]: disconnect from bender.bawue.de[193.197.13.1] Jul 28 01:06:34 server postfix/qmgr[7199]: CB3BC4500BD: from=[EMAIL PROTECTED], size=898, nrcpt=1 (queue active) Jul 28 01:06:34 server deliver[7212]: checkdelivered: Unable to open delivered db: [EMAIL PROTECTED]: No such file or directory Jul 28 01:06:34 server postfix/pipe[7211]: CB3BC4500BD: to=[EMAIL PROTECTED], relay=cyrus, delay=0, status=bounced (user unknown. Command output: server0001: Mailbox does not exist _ ) Jul 28 01:06:34 server postfix/cleanup[7202]: EEAE04500BE: message-id=[EMAIL PROTECTED] Jul 28 01:06:34 server postfix/qmgr[7199]: EEAE04500BE: from=, size=2637, nrcpt=1 (queue active) Jul 28 01:06:35 server postfix/smtp[7216]: EEAE04500BE: to=[EMAIL PROTECTED], relay=mail.bawue.de[193.197.13.1], delay=1, status=sent (250 Ok: queued as 14D361B684) I have tried to figure out what the problem was, but could not find any answers. I have followed the debian tutorial very closely, the one you can find at http://www.web-cyradm.org/debian/ but no success so far. I have never heard of anything special you have to do to the deliver or, under debian cyrdeliver part. If I understand this system correctly, the deliver *should* consult the mysql database about whether a mailbox exists or not. This is the bounce I received: # This is the Postfix program at host server.lost-servers.net. I'm sorry to have to inform you that the message returned below could not be delivered to one or more destinations. For further assistance, please send mail to postmaster If you do so, please include this problem report. You can delete your own text from the message returned below. The Postfix program [EMAIL PROTECTED]: user unknown. Command output: server0001: Mailbox does not exist _ Any clue on what could have been done wrong is greatly appreciated. - -- - Thilo Schulz My public GnuPG key is available at http://home.bawue.de/~arny/public_key.asc -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQE/JVdiZx4hBtWQhl4RArUSAJ9bl7x0K4hb6Qm1YWPTYlLUyyKB9gCgql0g 83sEPitGDtH4bTBn1kwGkBA= =Tj0r -END PGP SIGNATURE-
Authentication by IP question
Hi, Does anyone have a mechanism for cyrus whereby certain user-id's can be limited by IP address? For example; UserA - local network only UserB - specific IP only UserC - any location on the Internet ? tia Gareth. -- Gareth Bult Tel: 01443 205756 Fax: 01443 205756 Email: [EMAIL PROTECTED] Web: www.bult.co.uk
Re: flock vs fnctl
--On Monday, July 28, 2003 10:26 AM -0400 Ken Murchison [EMAIL PROTECTED] wrote: Rob Siemborski wrote: However, in Scott's case, he's not renaming the user, he's just moving it between partitions. I don't think we should be iterating across the list to fix the username in this case (so we should fix this ;)... Scott, Try this (untested) patch which I just applied to CVS: http://bugzilla.andrew.cmu.edu/cgi-bin/cvsweb.cgi/src/cyrus/imap/imapd.c. diff?r1=1.398.2.88r2=1.398.2.89f=u I can confirm that this patch works as expected! The rename of a user from one partition to another without changing the name of the user now takes 16 seconds (on the user we tried) to complete. This is the same amount of time it took to rename the same user under the 2.0.16 code. Thanks! Scott -- +---+ Scott W. Adkinshttp://www.cns.ohiou.edu/~sadkins/ UNIX Systems Engineer mailto:[EMAIL PROTECTED] ICQ 7626282 Work (740)593-9478 Fax (740)593-1944 +---+ PGP Public Key available at http://www.cns.ohiou.edu/~sadkins/pgp/ pgp0.pgp Description: PGP signature
@ in mailbox names
I want to use the @ character in a mailbox name in cyrus 2.1.x I have a virtual domain setup, using LDAP as the backend, and exim as the MTA. Everything works fine if I use usernames of the format user__domain_part1_part2, however that isn't very nice for end users. I'd much prefer to use '[EMAIL PROTECTED]' as the username. Using unixhierarchysep I can use '.' in the username, which is the first step, but it appears to choke on having an '@' in the username. Delivery to 'daniel_test4.mydomain.com' works just fine. Is there any particular reason that Cyrus doesn't allow delivery to an address with an '@' in it? I've tried googling for this, but its tricky doing a search for '@' on mailing lists... :) About the only thing I can think off of the top of my head is that Kerberos principals have an @ in them. Thanks, Daniel Below are some notes on my setup Runnig cyrus 2.1.13 (from debian unstable, backported to debian woody). #cyrdeliver [EMAIL PROTECTED] [EMAIL PROTECTED]: Mailbox does not exist #cyrdeliver -l 220 smog LMTP Cyrus v2.1.13-IPv6-Debian-2.1.13-0woody.4.0 ready LHLO smog 250-smog 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-PIPELINING 250-SIZE 250-AUTH EXTERNAL 250 IGNOREQUOTA RSET 250 2.0.0 ok MAIL FROM:root AUTH= 250 2.1.0 ok RCPT TO:[EMAIL PROTECTED] 550-Mailbox unknown. Either there is no mailbox associated with this 550-name or you do not have authorization to see it. 550 5.1.1 User unknown (cyradm output) localhost lam user/[EMAIL PROTECTED] mail lrswipcda anyone lrswipcda [EMAIL PROTECTED] lrswipcda mailadmin lrswipcda strace'ing cyrdeliver gives basically the same as the output from cyrdeliver -l above - i copied the commands send via lmtp as read from the strace.
Re: @ in mailbox names
you need to store the username map in the LDAP as [EMAIL PROTECTED] the @ needs to be escaped.. On Mon, 2003-07-28 at 21:56, Daniel Lawson wrote: I want to use the @ character in a mailbox name in cyrus 2.1.x I have a virtual domain setup, using LDAP as the backend, and exim as the MTA. Everything works fine if I use usernames of the format user__domain_part1_part2, however that isn't very nice for end users. I'd much prefer to use '[EMAIL PROTECTED]' as the username. Using unixhierarchysep I can use '.' in the username, which is the first step, but it appears to choke on having an '@' in the username. Delivery to 'daniel_test4.mydomain.com' works just fine. Is there any particular reason that Cyrus doesn't allow delivery to an address with an '@' in it? I've tried googling for this, but its tricky doing a search for '@' on mailing lists... :) About the only thing I can think off of the top of my head is that Kerberos principals have an @ in them. Thanks, Daniel Below are some notes on my setup Runnig cyrus 2.1.13 (from debian unstable, backported to debian woody). #cyrdeliver [EMAIL PROTECTED] [EMAIL PROTECTED]: Mailbox does not exist #cyrdeliver -l 220 smog LMTP Cyrus v2.1.13-IPv6-Debian-2.1.13-0woody.4.0 ready LHLO smog 250-smog 250-8BITMIME 250-ENHANCEDSTATUSCODES 250-PIPELINING 250-SIZE 250-AUTH EXTERNAL 250 IGNOREQUOTA RSET 250 2.0.0 ok MAIL FROM:root AUTH= 250 2.1.0 ok RCPT TO:[EMAIL PROTECTED] 550-Mailbox unknown. Either there is no mailbox associated with this 550-name or you do not have authorization to see it. 550 5.1.1 User unknown (cyradm output) localhost lam user/[EMAIL PROTECTED] mail lrswipcda anyone lrswipcda [EMAIL PROTECTED] lrswipcda mailadmin lrswipcda strace'ing cyrdeliver gives basically the same as the output from cyrdeliver -l above - i copied the commands send via lmtp as read from the strace. -- Edward Rudd [EMAIL PROTECTED] Home Page http://urkle.drip.ws/
upgrading BerkeleyDB
I'm sure this has been asked and answered, but the archives seem to be very slow tonight. I have a machine running Cyrus 2.1.13 and Berkeley 3.3 (used only for mailboxes.db and duplicate suppression). Is it possible to stop the server, install BDB 4.x, compile Cyrus 2.1.14 (with the BDB 4.x libraries), and restart Cyrus? Obviously, the Cyrus upgrade is very minor and won't present any problems. The Berkeley DB upgrade I'm not so sure about. Will the 4.x libraries be able to use a 3.3 database? Will it upgrade the database? Is it easier (safer?) to do a dump/load of the database? If so, how and why? I did a quick test and it seems to work, but I'm reluctant to put it into production until I hear from some other sysadmins. --Robert
