RE: cyrus ACL and groups ...
That nearly what i am looking for !!! Where is the doc for pts ? and the LDAP part ? Thanks -Message d'origine- De : Patrick Radtke [mailto:[EMAIL PROTECTED] Envoyé : vendredi 2 juin 2006 16:54 À : Brasseur Valéry Cc : info-cyrus@lists.andrew.cmu.edu Objet : Re: cyrus ACL and groups ... Are your users stored in a LDAP server as well? If so, then you can have Cyrus speak LDAP and get the info. Plus it can do caching (ptscache_timeout) In Cyrus 2.3 you'd want to do something like #make the authz mechanism be pts auth_mech: pts #make pts talk to ldap pts_module: ldap ldap_base: dc=cc,dc=columbia,dc=edu ldap_group_base: ou=group,dc=cc,dc=columbia,dc=edu ldap_member_base: ou=group,dc=cc,dc=columbia,dc=edu ldap_member_method: filter ldap_member_filter:(memberuid=%U) ldap_member_attribute: cn ldap_size_limit: 100 ldap_sasl: 0 ldap_uri: ldap://ldapserver:prt ptloader_sock: /var/cyrus/socket/ptsock look for ldap_* options in `man imapd.conf` -Patrick On Jun 2, 2006, at 4:31 AM, Brasseur Valéry wrote: I have seen in the code that when you want to use groups in ACL for cyrus, the group is a UNIX one ... (calling setgrent, getpwnam ... ) Is there a a way to use LDAP groups instead ... Thanks Valery Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Problem with replication
Hi, I'm using sync_client to replicate mailboxes between two servers. Since I've switched from v2.3.3 to v2.3.6, new messages can't be read on the replica unless mailboxes are reconstructed on it. Has anyone seen this ? Thanks, -- Xtof smime.p7s Description: S/MIME Cryptographic Signature Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: v2.3.6 message delete causes signal 10
2006/6/1, Andrzej Kwiatkowski [EMAIL PROTECTED]: 2006/5/31, Rosenbaum, Larry M. [EMAIL PROTECTED]: I have just installed Cyrus IMAP v2.3.6 on a test system. Whenever I try to delete a message in my INBOX, the delete fails and I see the following message in the log file: May 26 11:41:01 master[10821]: [ID 970914 local6.error] process 10841 exited, signaled to death by 10 ... I've done some debug symbols for /usr/lib/libz.so.1 Reading symbols from /lib/tls/libpthread.so.0...done. Loaded symbols for /lib/tls/libpthread.so.0 Reading symbols from /lib/ld-linux.so.2...done. Loaded symbols for /lib/ld-linux.so.2 Reading symbols from /opt/proxy/sasl-2.1.22/lib/sasl2/libsasldb.so.2...done. Loaded symbols for /opt/proxy/sasl-2.1.22/lib/sasl2/libsasldb.so.2 Reading symbols from /opt/proxy/sasl-2.1.22/lib/sasl2/libdigestmd5.so.2...done. Loaded symbols for /opt/proxy/sasl-2.1.22/lib/sasl2/libdigestmd5.so.2 Reading symbols from /opt/proxy/sasl-2.1.22/lib/sasl2/liblogin.so.2...done. Loaded symbols for /opt/proxy/sasl-2.1.22/lib/sasl2/liblogin.so.2 Reading symbols from /lib/libcrypt.so.1...done. Loaded symbols for /lib/libcrypt.so.1 Reading symbols from /opt/proxy/sasl-2.1.22/lib/sasl2/libplain.so.2...done. Loaded symbols for /opt/proxy/sasl-2.1.22/lib/sasl2/libplain.so.2 Reading symbols from /lib/libnss_files.so.2...done. Loaded symbols for /lib/libnss_files.so.2 Reading symbols from /lib/libnss_dns.so.2...done. Loaded symbols for /lib/libnss_dns.so.2 #0 0x080945f4 in prot_printf (s=0x86df658, fmt=0x80aa539 %s ) at prot.c:960 960 prot_write(s, p, strlen(p)); (gdb) backtrace #0 0x080945f4 in prot_printf (s=0x86df658, fmt=0x80aa539 %s ) at prot.c:960 #1 0x08051233 in cmd_store (tag=0x86de598 A005, sequence=0x86de678 2, usinguid=1) at imapd.c:4168 #2 0x0805f507 in cmdloop () at imapd.c:1639 #3 0x08060653 in service_main (argc=3, argv=0x86d5008, envp=0xbfff5704) at imapd.c:789 #4 0x0804c52d in main (argc=3, argv=0xbfff56f4, envp=0xbfff5704) at service.c:532 I hope it helps with to relase patch ASAP. Just remembering ;-) Thanks AK Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Merging Cyrus installations
Hello We are moving our current mail infra-structure to a storage system which will store all of our mailboxes. Currently we have around 10 servers, so their contents will have to be merged on the storage. My current plan is to dump mailboxes.db from each server and then regenerate it at the storage, after concatenating all the files, and to rsync the contents of /var/spool/imap and /var/lib/imap/{quota,sieve,users} over to the storage. Has anyone done some similar migration scheme and would like to share any hints? Is there anything obvious I'm missing with the plan above? Thanks in advance, Andre Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: strange delays in connecting to POP3 server
Igor Belikov wrote: Hello Daniel, In some strange reasons I don't receive your answer - only answer on answer... Sounds to me like a DNS timeout issue. You might want to check your resolver configuration. We have own DNS server on same computer, and I check logs carefully. I don't find any reason to suspect DNS. Moreover, I find following records in POP3 logs: badlogin: a.bbb.lan [192.168.cc.dd] plaintext e SASL(-13): authentication failure: checkpass failed and I think that delays occur during this unsuccessfull logins cyrus authorises users by MySQL database, and all works fine except irregular delays... Have you checked the number of concurrent SQL connections and compared it with the configured maximum of connections for SQL? Sandy Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: cyrus ACL and groups ...
I'm not sure if there is anything besides 'man imapd.conf' On Jun 5, 2006, at 3:28 AM, Brasseur Valéry wrote: That nearly what i am looking for !!! Where is the doc for pts ? and the LDAP part ? Thanks -Message d'origine- De : Patrick Radtke [mailto:[EMAIL PROTECTED] Envoyé : vendredi 2 juin 2006 16:54 À : Brasseur Valéry Cc : info-cyrus@lists.andrew.cmu.edu Objet : Re: cyrus ACL and groups ... Are your users stored in a LDAP server as well? If so, then you can have Cyrus speak LDAP and get the info. Plus it can do caching (ptscache_timeout) In Cyrus 2.3 you'd want to do something like #make the authz mechanism be pts auth_mech: pts #make pts talk to ldap pts_module: ldap ldap_base: dc=cc,dc=columbia,dc=edu ldap_group_base: ou=group,dc=cc,dc=columbia,dc=edu ldap_member_base: ou=group,dc=cc,dc=columbia,dc=edu ldap_member_method: filter ldap_member_filter:(memberuid=%U) ldap_member_attribute: cn ldap_size_limit: 100 ldap_sasl: 0 ldap_uri: ldap://ldapserver:prt ptloader_sock: /var/cyrus/socket/ptsock look for ldap_* options in `man imapd.conf` -Patrick On Jun 2, 2006, at 4:31 AM, Brasseur Valéry wrote: I have seen in the code that when you want to use groups in ACL for cyrus, the group is a UNIX one ... (calling setgrent, getpwnam ... ) Is there a a way to use LDAP groups instead ... Thanks Valery Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re[2]: strange delays in connecting to POP3 server
Hello Sandy, Monday, June 5, 2006, 5:19:20 PM, you wrote: badlogin: a.bbb.lan [192.168.cc.dd] plaintext e SASL(-13): authentication failure: checkpass failed and I think that delays occur during this unsuccessfull logins cyrus authorises users by MySQL database, and all works fine except irregular delays... SD Have you checked the number of concurrent SQL connections and compared it SD with the configured maximum of connections for SQL? No, because I don't find where I may configure maximum SQL connections for Cyrus-SASL. Please point me on corresponding man. -- Best regards, Igormailto:[EMAIL PROTECTED] Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Question about LSUB *% behavior in Cyrus v2.2.13 Murder...
Hi (hope this is the right place), Apologies in advance if this is easily answered; I'm setting up a Cyrus Murder configuration for work, and am admittedly new to such things, so my problem may be pure idiocy on my part. Basically, I'm having a problem with LSUB *% reporting on the front proxy layers when altnamespace is enabled. In short, the query doesn't grab the prefix for users and shared folders (Other Users and Shared Folders) which squirrelmail (why I'm even looking into this) uses to build a list of mailboxes (and appropriate hierarchy); the end result is mostly a cosmetic problem as near as I can tell, but people seem to be tied to such thing so it is unfortunately something I have to look into. Making the same query directly on the backend machines directly results in the answer squirrelmail is expecting. In any case, I was wondering if this is expected behavior or a configuration error on my part, or even if anyone else has run into this and can lend a hand. Again, apologies if my answer is located somewhere, I tried to find information but just haven't had much luck. Details below, more available upon request: Non-authentication related configs are: (frontends) unix_group_enable: true altnamespace: true allowusermoves: true allowallsubscribe: true (backends) altnamespace: true unix_group_enable: true hashimapspool: true allowusermoves: true fulldirhash:true allowallsubscribe: true The query/response: * OK frontend1 Cyrus IMAP4 Murder v2.2.13 server ready a OK User logged in a LSUB *% * LSUB () . Drafts * LSUB () . Sent * LSUB () . Spam * LSUB () . Trash * LSUB (\Noselect \HasChildren) . testfolder * LSUB () . testfolder.testnest * LSUB () . Shared Folders.shared_test a OK Completed * OK backend2 Cyrus IMAP4 v2.2.13 server ready a OK User logged in a LSUB *% * LSUB () . Drafts * LSUB () . Sent * LSUB () . Spam * LSUB () . Trash * LSUB (\Noselect \HasChildren) . testfolder * LSUB () . testfolder.testnest * LSUB (\Noselect \HasChildren) . Shared Folders * LSUB () . Shared Folders.shared_test Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Db corruption error
Hi all!My company is dealing with a big problem of db corruption that happens randomly every 1-2 days in correspondence to ctl_cyrusdb launch in order to checkpoint the db.Here is an extract of the log file: error startcheckpointing cyrus databasesarchiving database file: /var/mail/imap_config/annotations.dbDBERROR db4: DB_LOGC-get: LSN 1/1083033: invalid log record headerDBERROR: error listing log files: DB_NOTFOUND: No matching key/data DBERROR: archive /var/mail/imap_config/db: cyrusdb errorarchiving database file: /var/mail/imap_config/mailboxes.dbDBERROR db4: DB_LOGC-get: LSN 1/1083033: invalid log record headerts 2 timesDBERROR db4: DB_LOGC-get: LSN 1/1083303: invalid log record header done checkpointing cyrus databasesDBERROR db4: DB_LOGC-get: LSN 1/1083303: invalid log record header--- error endHere is reassumed our setup:Sendmail/Cyrus Imap server are installed on an HP-UX V. 11 Itanium server Sendmail version is 8.11 and Cyrus-imap/Cyrus-sasl come from Iexpress depot in version 2.2.12.We use saslauthd to autenticate via pam imap/pop3 users over a distributed directory service based on a Linux Openldap Server. Pam_ldap and hpldapux client are used with success also to authenticate samba-cifs users.Thanks you! Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Merging Cyrus installations
On 6/5/06, Andre Nathan [EMAIL PROTECTED] wrote: Has anyone done some similar migration scheme and would like to share any hints? Is there anything obvious I'm missing with the plan above? If you have a lot of POP users who like to leave their mail on the server (for backup purposes or reading mail from multiple machines), they'll download duplicate copies of their mail from the new server that was already downloaded from the old server. Other than that, your plan is fine and should be much much faster than using imapsync. -- Huaqing Zheng Beer and Code Wrangler at Large Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html