Re: Cyrus - can't create user mailbox
Stephen Liu wrote, at 06/09/2008 09:55 PM: > Jun 10 09:14:10 lampserver postfix/lmtp[4989]: 40275878215: > to=<[EMAIL PROTECTED]>, relay=none, delay=0, status=deferred > (connect to > /var/run/cyrus/socket/lmtp[/var/run/cyrus/socket/lmtp]: Permission > denied) > $ sudo ls -l /var/run/cyrus/socket > total 0 > srwxrwxrwx 1 root root 0 2008-06-10 06:55 lmtp > $ sudo ls -ld /var/run/cyrus/socket > drwxr-x--- 2 cyrus mail 80 2008-06-10 09:09 /var/run/cyrus/socket > $ id postfix > uid=107(postfix) gid=111(postfix) groups=111(postfix) Now just add the user postfix to the mail group. Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
--- Jens Hoffrichter <[EMAIL PROTECTED]> wrote: > > $ cat /etc/postfix/master.cf | grep smtp > > smtp inet n - - - - smtpd > > > > smtp unix - - - - - smtp > > relay unix - - - - - smtp > > # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5 > > bsmtp unix - n n - - pipe > > flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop > -f$sender > > $recipient > > * end * > > > > There are only 2 lines there with smtp in the beginning. > From this snippet you don't see if chroot is enabled by default - the > default is denoted by the -, and documented in the line directly > before the beginning of the transports. But as I know Debian and > Ubuntu, they have probably activated chroot. > > > $ sudo nano /etc/cyrus.conf > > > > change both lines. > > > > changing; > > lmtpunixcmd="lmtpd" listen="/var/run/cyrus/socket/lmtp" > > prefork=0 maxchild=20 > > > > as; > > lmtpunixcmd="lmtpd" > > listen="/var/spool/postfix/var/run/cyrus/socket/lmtp" prefork=0 > > maxchild=20 > > > > > > changing; > > notify cmd="notifyd" listen="/var/run/cyrus/socket/notify" > > proto="udp" prefork=1 > > > > as; > > notify cmd="notifyd" > > listen="/var/spool/postfix/var/run/cyrus/socket/notify" proto="udp" > > prefork=1 > I guess you won't need to change this line, as this is independent > from postfix. > > > Jun 10 00:36:30 lampserver postfix/smtpd[4955]: D21EA87820E: > > client=ti-out-0910.google.com[209.85.142.187] > > Jun 10 00:36:30 lampserver postfix/cleanup[4956]: D21EA87820E: > > > message-id=<[EMAIL PROTECTED]> > > Jun 10 00:36:30 lampserver postfix/qmgr[4188]: D21EA87820E: > > from=<[EMAIL PROTECTED]>, size=1842, nrcpt=1 (queue active) > > Jun 10 00:36:30 lampserver postfix/lmtp[4958]: D21EA87820E: > > to=<[EMAIL PROTECTED]>, relay=none, delay=0, status=deferred > > (connect to /var/run/lmtp[/var/run/lmtp]: No such file or > directory) > As you see here, it tries to connect to the socket "/var/run/lmtp", > but the cyrus default was /var/run/cyrus/socket/lmtp, or the postfix > chroot equivalent. > > So EITHER you change the delivery socket in postfix (which I > currently > don't know how to do, as I use a different delivery approach on my > postfix server - and a different IMAP server ;) ), or you try either > /var/run/postfix/var/run/lmtp or /var/run/lmtp in the lmtpunix line > in > cyrus.conf > > I hope that helps :) > > Regards, > Jens Hi Jens, Perform another test according to your advice. But it still fails. Mail can't be delivered to the Server. $ tail /var/log/mail.log Jun 10 09:09:14 lampserver cyrus/ctl_cyrusdb[4896]: done checkpointing cyrus databases Jun 10 09:09:14 lampserver cyrus/master[4892]: process 4896 exited, status 0 Jun 10 09:10:16 lampserver postfix/master[4733]: terminating on signal 15 Jun 10 09:10:16 lampserver postfix/master[4978]: daemon started -- version 2.2.10, configuration /etc/postfix Jun 10 09:14:10 lampserver postfix/smtpd[4982]: connect from ti-out-0910.google.com[209.85.142.184] Jun 10 09:14:10 lampserver postfix/smtpd[4982]: 40275878215: client=ti-out-0910.google.com[209.85.142.184] Jun 10 09:14:10 lampserver postfix/cleanup[4987]: 40275878215: message-id=<[EMAIL PROTECTED]> Jun 10 09:14:10 lampserver postfix/qmgr[4981]: 40275878215: from=<[EMAIL PROTECTED]>, size=1842, nrcpt=1 (queue active) Jun 10 09:14:10 lampserver postfix/lmtp[4989]: 40275878215: to=<[EMAIL PROTECTED]>, relay=none, delay=0, status=deferred (connect to /var/run/cyrus/socket/lmtp[/var/run/cyrus/socket/lmtp]: Permission denied) Jun 10 09:14:40 lampserver postfix/smtpd[4982]: disconnect from ti-out-0910.google.com[209.85.142.184] * end * However based on following complaint; Jun 10 09:14:10 lampserver postfix/lmtp[4989]: 40275878215: to=<[EMAIL PROTECTED]>, relay=none, delay=0, status=deferred (connect to /var/run/cyrus/socket/lmtp[/var/run/cyrus/socket/lmtp]: Permission denied) I found following thread on googling; postfix+cyrus21 http://unixadmintalk.com/f11/postfix-cyrus21-89421/ According to their suggest I found follows; $ sudo ls -l /var/run/cyrus/socket total 0 srwxrwxrwx 1 root root 0 2008-06-10 06:55 lmtp srwxrwxrwx 1 root root 0 2008-06-10 09:09 notify $ sudo ls -ld /var/run/cyrus/socket drwxr-x--- 2 cyrus mail 80 2008-06-10 09:09 /var/run/cyrus/socket $ id postfix uid=107(postfix) gid=111(postfix) groups=111(postfix) $ sudo adduser postfix lmtp adduser: The group `lmtp' does not exist. What shall I do? Creating the group 'lmtp' ? If YES, what specific command I have to run not to jeopardize other settings. If still fails how to revert back to its original state? TIA B.R. Stephen L Send instant messages to your online friends http://uk.messenger.yahoo.com Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web
Re: Cyrus - can't create user mailbox
Hi Alain,
> On Mon, Jun 9, 2008 at 7:42 PM, Jorey Bump <[EMAIL PROTECTED]>
> wrote:
> > Stephen Liu wrote, at 06/09/2008 01:19 PM:
> >
> > There's no need to run Postfix in a chroot jail. You are better off
> > disabling chroot entirely (explicitly with an 'n' in master.cf).
> >
> > Cyrus Home Page: http://cyrusimap.web.cmu.edu/
> > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
> > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
> >
>
> I agree. Make a copy of your master.cf and replace all '-' in the 5th
> column by 'n'
> Then the possible problem is that master.cf or main.cf could contains
> some configuration stuff to run
> in a chroot jail. run the folowing command and report the result
>
> # postconf -n
$ sudo cp -p /etc/postfix/main.cf /etc/postfix/main.cf.bak.20080610
$ sudo nano /etc/postfix/master.cf
On the 5th column changing all '-' to 'n'
$ sudo postconf -n
alias_database = hash:/etc/aliases
alias_maps = hash:/etc/aliases
append_dot_mydomain = no
biff = no
broken_sasl_auth_clients = yes
config_directory = /etc/postfix
inet_interfaces = all
inet_protocols = all
mailbox_size_limit = 0
mailbox_transport = lmtp:unix:/var/run/lmtp
mydestination = satimis.com, localhost.localdomain,
localhost.satimis.com
myhostname = lampserver
mynetworks = 127.0.0.0/8
myorigin = /etc/mailname
recipient_delimiter = +
relayhost =
smtp_tls_note_starttls_offer = yes
smtp_tls_session_cache_database = btree:${queue_directory}/smtp_scache
smtp_use_tls = yes
smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
smtpd_recipient_restrictions =
permit_sasl_authenticated,permit_mynetworks,reject_unauth_destination
smtpd_sasl_auth_enable = yes
smtpd_sasl_local_domain =
smtpd_sasl_security_options = noanonymous
smtpd_tls_CAfile = /etc/ssl/certs/cacert.pem
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /etc/ssl/certs/smtpd.crt
smtpd_tls_key_file = /etc/ssl/private/smtpd.key
smtpd_tls_loglevel = 1
smtpd_tls_received_header = yes
smtpd_tls_session_cache_database =
btree:${queue_directory}/smtpd_scache
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = yes
tls_random_source = dev:/dev/urandom
* end *
> Then in main.cf replace
>
> mailbox_transport = lmtp:unix:/var/run/lmtp
> by
> mailbox_transport = lmtp:unix:/var/run/cyrus/socket/lmtp
>
>
> Restart all, and try to send an email,
> look in the postfix log to see what is the next problem :-)
$ sudo cp -p /etc/postfix/main.cf /etc/postfix/main.cf.bak.20080610
$ sudo nano /etc/postfix/main.cf
Change;
mailbox_transport = lmtp:unix:/var/run/lmtp
to;
mailbox_transport = lmtp:unix:/var/run/cyrus/socket/lmtp
$ sudo /etc/init.d/postfix restart
* Stopping Postfix Mail Transport Agent postfix
[ ok ]
* Starting Postfix Mail Transport Agent postfix
[ ok ]
Send a webmail on GMail to satimiscyrus. It doesn't arrive.
$ sudo ls -la /var/spool/cyrus/mail/s/user/satimiscyrus
total 20
drwx-- 2 cyrus mail 4096 2008-06-09 16:35 .
drwx-- 3 cyrus mail 4096 2008-06-09 16:35 ..
-rw--- 1 cyrus mail4 2008-06-09 16:35 cyrus.cache
-rw--- 1 cyrus mail 158 2008-06-09 16:35 cyrus.header
-rw--- 1 cyrus mail 76 2008-06-09 16:35 cyrus.index
* end *
$ tail /var/log/mail.log
Jun 10 07:25:04 lampserver cyrus/ctl_cyrusdb[4652]: archiving log file:
/var/lib/cyrus/db/log.01
Jun 10 07:25:04 lampserver cyrus/ctl_cyrusdb[4652]: done checkpointing
cyrus databases
Jun 10 07:25:04 lampserver cyrus/master[3881]: process 4652 exited,
status 0
Jun 10 07:32:15 lampserver postfix/master[4183]: terminating on signal
15
Jun 10 07:32:16 lampserver postfix/master[4733]: daemon started --
version 2.2.10, configuration /etc/postfix
Jun 10 07:35:30 lampserver postfix/smtpd[4737]: connect from
ti-out-0910.google.com[209.85.142.191]
Jun 10 07:35:30 lampserver postfix/smtpd[4737]: 61C00878214:
client=ti-out-0910.google.com[209.85.142.191]
Jun 10 07:35:30 lampserver postfix/cleanup[4742]: 61C00878214:
message-id=
Jun 10 07:35:30 lampserver postfix/qmgr[4735]: 61C00878214:
from=<[EMAIL PROTECTED]>, size=1842, nrcpt=1 (qu
eue active)
Jun 10 07:35:30 lampserver postfix/lmtp[4744]: 61C00878214:
to=<[EMAIL PROTECTED]>, relay=none, delay=0,
status=deferred (connect to
/var/run/cyrus/socket/lmtp[/var/run/cyrus/socket/lmtp]: Permission
denied)
* end *
$ tail /var/log/mail.warn
Jun 10 00:59:52 lampserver cyrus/imap[31720]: Fatal error: invalid
option name on line 322 of configuration file /etc/imapd.conf
Jun 10 00:59:52 lampserver cyrus/master[4948]: service imap pid 31720
in READY state: terminated abnormally
Jun 10 00:59:52 lampserver cyrus/imap[31721]: Fatal error: invalid
option name on line 322 of configuration file /etc/imapd.conf
Jun 10 00:59:52 lampserver cyrus/master[4948]: service imap pid 31721
in READY state: terminated abnormally
Jun 10 00:59:52 lampserver cyrus/imap[31722]: Fatal error: invalid
option name on line 322 of conf
Re: Authentication problem
Hi Wesley, > On 09 Jun 2008, at 13:06, Stephen Liu wrote: > > S: L01 NO Login failed: generic failure > > These generic login failures typically produce a log message in your > > security logs. Here are the logs $ sudo ls -la /var/log/ total 48048 drwxr-xr-x 8 root root 4096 2008-06-10 06:55 . drwxr-xr-x 14 root root 4096 2008-04-18 07:27 .. drwxr-xr-x 2 root root 4096 2008-04-18 07:28 apache2 -rw-r--r-- 1 root root 2856 2008-04-18 07:27 aptitude -rw-r- 1 root adm 299868 2008-06-10 07:10 auth.log -rw-r- 1 root adm 48035 2008-05-04 06:47 auth.log.0 -rw-rw-r-- 1 root utmp 1920 2008-05-05 03:50 btmp drwxr-xr-x 2 root root 4096 2008-05-07 06:25 cups -rw-r- 1 root adm 710332 2008-06-10 06:55 daemon.log -rw-r- 1 root adm 69032 2008-05-04 06:03 daemon.log.0 -rw-r- 1 root adm 404471 2008-06-10 06:56 debug -rw-r- 1 root adm 76075 2008-05-04 05:59 debug.0 -rw-r--r-- 1 root root 19690 2008-06-10 06:54 dmesg -rw-r- 1 root adm 224936 2008-06-07 12:23 dpkg.log -rw-r--r-- 1 root root 15896 2008-06-09 23:16 evms-engine.1.log -rw-r--r-- 1 root root 15896 2008-06-09 21:26 evms-engine.2.log -rw-r--r-- 1 root root 15896 2008-06-09 16:11 evms-engine.3.log -rw-r--r-- 1 root root 15896 2008-06-09 14:10 evms-engine.4.log -rw-r--r-- 1 root root 15896 2008-06-09 08:10 evms-engine.5.log -rw-r--r-- 1 root root 15896 2008-06-08 22:08 evms-engine.6.log -rw-r--r-- 1 root root 15896 2008-06-08 17:57 evms-engine.7.log -rw-r--r-- 1 root root 15896 2008-06-07 23:39 evms-engine.8.log -rw-r--r-- 1 root root 15896 2008-06-07 22:13 evms-engine.9.log -rw-r--r-- 1 root root 15896 2008-06-10 06:54 evms-engine.log -rw-r--r-- 1 root root 32160 2008-06-10 01:22 faillog -rw-r--r-- 1 root root 681 2008-04-24 01:24 fontconfig.log drwxr-xr-x 3 root root 4096 2008-04-18 07:29 installer -rw-r- 1 root adm2000232 2008-06-10 06:55 kern.log -rw-r- 1 root adm 455682 2008-05-04 05:59 kern.log.0 -rw-rw-r-- 1 root utmp293460 2008-06-10 07:10 lastlog -rw-r--r-- 1 root root 0 2008-04-18 07:30 lpr.log -rw-r--r-- 1 root root 3437682 2008-06-10 00:59 mail.err -rw-r--r-- 1 root root 6462532 2008-06-10 06:55 mail.info -rw-r--r-- 1 root root 11019216 2008-06-10 06:55 mail.log -rw-r--r-- 1 root root 6322797 2008-06-10 00:59 mail.warn -rw-r- 1 root adm1698219 2008-06-10 06:55 messages -rw-r- 1 root adm 386020 2008-05-04 06:47 messages.0 drwxr-s--- 2 mysql adm 4096 2008-06-10 06:55 mysql -rw-r- 1 mysql adm 0 2008-05-06 01:32 mysql.err -rw-r- 1 mysql adm 0 2008-05-07 06:25 mysql.log -rw-r- 1 mysql adm 20 2008-05-06 01:32 mysql.log.1.gz drwxr-sr-x 2 news news 4096 2008-04-18 07:30 news drwxr-x--- 2 proxy proxy 4096 2008-05-07 06:25 squid -rw-r- 1 root adm 13395209 2008-06-10 07:09 syslog -rw-r- 1 root adm 424533 2008-05-07 06:25 syslog.0 -rw-r- 1 root adm 115845 2008-05-04 06:25 syslog.1.gz -rw-r--r-- 1 root root268321 2008-06-10 06:54 udev -rw-r- 1 root adm 5228 2008-06-10 01:22 user.log -rw-r- 1 root adm 5058 2008-05-04 06:03 user.log.0 -rw-r--r-- 1 root root 0 2008-04-18 07:30 uucp.log -rw-rw-r-- 1 root utmp939264 2008-06-10 07:10 wtmp * end * Which is the security log? Thanks $ tail /var/log/auth.log Jun 10 01:22:12 lampserver login[4403]: (pam_unix) session opened for user root by (ui d=0) Jun 10 01:22:12 lampserver login[31808]: ROOT LOGIN on `tty1' Jun 10 01:22:22 lampserver saslauthd[4198]: server_exit : master exited: 4198 Jun 10 01:22:22 lampserver sshd[4218]: Received signal 15; terminating. Jun 10 06:55:13 lampserver saslauthd[4197]: detach_tty : master pid is: 4197 Jun 10 06:55:13 lampserver saslauthd[4197]: ipc_init: listening on socket: /va r/spool/postfix/var/run/saslauthd/mux Jun 10 06:55:13 lampserver sshd[4224]: Server listening on :: port . Jun 10 06:56:26 lampserver sshd[4432]: Accepted password for satimis from 192.168.0.10 port 46317 ssh2 Jun 10 06:56:26 lampserver sshd[4434]: (pam_unix) session opened for user satimis by ( uid=0) Jun 10 07:07:33 lampserver sudo: satimis : TTY=pts/0 ; PWD=/home/satimis ; USER=root ; COMMAND=/bin/ls /var/log/ * end * B.R. Stephen Send instant messages to your online friends http://uk.messenger.yahoo.com Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
Hi Jorey,
- snip -
> All those dashes represent the specified defaults for that column.
>
> > No 'y' found.
>
> Stop guessing. Post your entire master.cf.
$ cat /etc/postfix/master.cf
#
# Postfix master process configuration file. For details on the format
# of the file, see the Postfix master(5) manual page.
#
#
==
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
#
==
smtp inet n - - - - smtpd
#submission inet n - - - - smtpd
# -o smtpd_etrn_restrictions=reject
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject
#smtpsinet n - - - - smtpd
# -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes
#submission inet n - - - - smtpd
# -o smtpd_etrn_restrictions=reject
# -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes
#628 inet n - - - - qmqpd
pickupfifo n - - 60 1 pickup
cleanup unix n - - - 0 cleanup
qmgr fifo n - n 300 1 qmgr
#qmgr fifo n - - 300 1 oqmgr
tlsmgrunix - - - 1000? 1 tlsmgr
rewrite unix - - - - - trivial-rewrite
bounceunix - - - - 0 bounce
defer unix - - - - 0 bounce
trace unix - - - - 0 bounce
verifyunix - - - - 1 verify
flush unix n - - 1000? 0 flush
proxymap unix - - n - - proxymap
smtp unix - - - - - smtp
# When relaying mail as backup MX, disable fallback_relay to avoid MX
loops
relay unix - - - - - smtp
-o fallback_relay=
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
showq unix n - - - - showq
error unix - - - - - error
discard unix - - - - - discard
local unix - n n - - local
virtual unix - n n - - virtual
lmtp unix - - n - - lmtp
anvil unix - - - - 1 anvil
scacheunix - - - - 1 scache
#
#
# Interfaces to non-Postfix software. Be sure to examine the manual
# pages of the non-Postfix software to find out what options it wants.
#
# Many of the following services use the Postfix pipe(8) delivery
# agent. See the pipe(8) man page for information about ${recipient}
# and other message envelope options.
#
#
# maildrop. See the Postfix MAILDROP_README file for details.
# Also specify in main.cf: maildrop_destination_recipient_limit=1
#
maildrop unix - n n - - pipe
flags=DRhu user=vmail argv=/usr/bin/maildrop -d ${recipient}
#
# See the Postfix UUCP_README file for configuration details.
#
uucp unix - n n - - pipe
flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail
($recipient)
#
# Other external delivery methods.
#
ifmailunix - n n - - pipe
flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
bsmtp unix - n n - - pipe
flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender
$recipient
scalemail-backend unix - n n - 2 pipe
flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store
${nexthop} ${user} ${extension}
mailman unix - n n - - pipe
flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
${nexthop} ${user}
# The Cyrus deliver program has changed incompatibly, multiple times.
cyrus unix - n n - - pipe
flags=R user=cyrus argv=/usr/sbin/cyrdeliver -e -m "${extension}"
${user}
* end *
Others noted with thanks
B.R.
Stephen
Send instant messages to your online friends http://uk.messenger.yahoo.com
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
On Mon, Jun 9, 2008 at 7:42 PM, Jorey Bump <[EMAIL PROTECTED]> wrote: > Stephen Liu wrote, at 06/09/2008 01:19 PM: > > There's no need to run Postfix in a chroot jail. You are better off > disabling chroot entirely (explicitly with an 'n' in master.cf). > > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > I agree. Make a copy of your master.cf and replace all '-' in the 5th column by 'n' Then the possible problem is that master.cf or main.cf could contains some configuration stuff to run in a chroot jail. run the folowing command and report the result # postconf -n Then in main.cf replace mailbox_transport = lmtp:unix:/var/run/lmtp by mailbox_transport = lmtp:unix:/var/run/cyrus/socket/lmtp Restart all, and try to send an email, look in the postfix log to see what is the next problem :-) -- Alain Spineux aspineux gmail com May the sources be with you Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Authentication problem
On 09 Jun 2008, at 13:06, Stephen Liu wrote: > S: L01 NO Login failed: generic failure These generic login failures typically produce a log message in your security logs. :wes Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
Stephen Liu wrote, at 06/09/2008 01:19 PM: > $ cat /etc/postfix/master.cf | grep y This is useless, because: > # service type private unpriv chroot wakeup maxproc command + args > # (yes) (yes) (yes) (never) (100) The chroot setting defaults to yes, so a 'y' does not need to be explicitly set. > # -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes > # -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes > verifyunix - - - - 1 verify > proxymap unix - - n - - proxymap > # When relaying mail as backup MX, disable fallback_relay to avoid MX > loops > relay unix - - - - - smtp > -o fallback_relay= All those dashes represent the specified defaults for that column. > No 'y' found. Stop guessing. Post your entire master.cf. >> - change the path in cyrus.conf to move the socket somewhere bellow >> the >> postfix chroot jail. Be carefull cyrus must have enough right in the >> postfix directory to create the socket. > > > Could you please explain in more detail how to make it? TIA There's no need to run Postfix in a chroot jail. You are better off disabling chroot entirely (explicitly with an 'n' in master.cf). Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
Hi Stephen, 2008/6/9 Stephen Liu <[EMAIL PROTECTED]>: > Thanks for your advice. No problem - we all struggled at some point and were glad for help :) > $ cat /etc/postfix/master.cf | grep smtp > smtp inet n - - - - smtpd > > smtp unix - - - - - smtp > relay unix - - - - - smtp > # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5 > bsmtp unix - n n - - pipe > flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender > $recipient > * end * > > There are only 2 lines there with smtp in the beginning. >From this snippet you don't see if chroot is enabled by default - the default is denoted by the -, and documented in the line directly before the beginning of the transports. But as I know Debian and Ubuntu, they have probably activated chroot. > $ sudo nano /etc/cyrus.conf > > change both lines. > > changing; > lmtpunixcmd="lmtpd" listen="/var/run/cyrus/socket/lmtp" > prefork=0 maxchild=20 > > as; > lmtpunixcmd="lmtpd" > listen="/var/spool/postfix/var/run/cyrus/socket/lmtp" prefork=0 > maxchild=20 > > > changing; > notify cmd="notifyd" listen="/var/run/cyrus/socket/notify" > proto="udp" prefork=1 > > as; > notify cmd="notifyd" > listen="/var/spool/postfix/var/run/cyrus/socket/notify" proto="udp" > prefork=1 I guess you won't need to change this line, as this is independent from postfix. > Jun 10 00:36:30 lampserver postfix/smtpd[4955]: D21EA87820E: > client=ti-out-0910.google.com[209.85.142.187] > Jun 10 00:36:30 lampserver postfix/cleanup[4956]: D21EA87820E: > message-id=<[EMAIL PROTECTED]> > Jun 10 00:36:30 lampserver postfix/qmgr[4188]: D21EA87820E: > from=<[EMAIL PROTECTED]>, size=1842, nrcpt=1 (queue active) > Jun 10 00:36:30 lampserver postfix/lmtp[4958]: D21EA87820E: > to=<[EMAIL PROTECTED]>, relay=none, delay=0, status=deferred > (connect to /var/run/lmtp[/var/run/lmtp]: No such file or directory) As you see here, it tries to connect to the socket "/var/run/lmtp", but the cyrus default was /var/run/cyrus/socket/lmtp, or the postfix chroot equivalent. So EITHER you change the delivery socket in postfix (which I currently don't know how to do, as I use a different delivery approach on my postfix server - and a different IMAP server ;) ), or you try either /var/run/postfix/var/run/lmtp or /var/run/lmtp in the lmtpunix line in cyrus.conf I hope that helps :) Regards, Jens Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
Hi Alain,
- snip -
> > Would it be /var/run/cyrus/socket/lmtp ?
>
> You have somewhere int your postfix main.cf "/var/run/lmtp",
> probably
> a mailbox_transport=... or a local_transport=
> You must replace it by the cyrus path : /var/run/cyrus/socket/lmtp
$ cat /etc/postfix/main.cf | grep /var/run/lmtp
mailbox_transport = lmtp:unix:/var/run/lmtp
I suppose you meant this line?
> If smtpd daemon is chrooted this become more difficult !
> You have 2 possibilities
> - just try to replace the 'y' in master.cf by a 'n' to make smtpd not
> chrooted
$ cat /etc/postfix/master.cf | grep y
# service type private unpriv chroot wakeup maxproc command + args
# (yes) (yes) (yes) (never) (100)
# -o smtpd_tls_wrappermode=yes -o smtpd_sasl_auth_enable=yes
# -o smtpd_enforce_tls=yes -o smtpd_sasl_auth_enable=yes
verifyunix - - - - 1 verify
proxymap unix - - n - - proxymap
# When relaying mail as backup MX, disable fallback_relay to avoid MX
loops
relay unix - - - - - smtp
-o fallback_relay=
# Many of the following services use the Postfix pipe(8) delivery
# Also specify in main.cf: maildrop_destination_recipient_limit=1
# Other external delivery methods.
flags=FR user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
# The Cyrus deliver program has changed incompatibly, multiple times.
cyrus unix - n n - - pipe
flags=R user=cyrus argv=/usr/sbin/cyrdeliver -e -m "${extension}"
${user}
* end *
No 'y' found.
> - change the path in cyrus.conf to move the socket somewhere bellow
> the
> postfix chroot jail. Be carefull cyrus must have enough right in the
> postfix directory to create the socket.
Could you please explain in more detail how to make it? TIA
B.R.
Stephen
Send instant messages to your online friends http://uk.messenger.yahoo.com
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Authentication problem
Hi Michael,
> > I have the feeling you should add this to your imapd.conf:
> >
> > sasl_mech_list: PLAIN
> >
> I miss AUTH=LOGIN and AUTH=PLAIN
> so "sasl_mech_list: PLAIN" will only cause that no auth mech
> will be available.
Performed following test;
$ sudo nano /etc/imapd.conf
adding;
AUTH=LOGIN
AUTH=PLAIN
at the bottom.
$ imtest -m login -p imap -u satimiscyrus localhost
just hanging there.
Also tried uncomment the line;
sasl_mech_list: PLAIN
$ imtest -m login -p imap -u satimiscyrus localhost
S: * OK lampserver Cyrus IMAP4 v2.2.12-Debian-2.2.12-4ubuntu1 server
ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN satimis {12}
S: + go ahead
C:
S: L01 NO Login failed: generic failure
Authentication failed. generic failure
Security strength factor: 0
Still the same result.
> Maybe a sasl package is not installed/found
> ll /usr/lib/sasl2/ show for me
>
> lrwxrwxrwx 1 root root22 2006-09-04 16:18 libanonymous.so ->
> libanonymous.so.2.0.21*
> lrwxrwxrwx 1 root root22 2006-09-04 16:18 libanonymous.so.2 ->
> libanonymous.so.2.0.21*
> -rwxr-xr-x 1 root root 13216 2006-06-16 16:40
> libanonymous.so.2.0.21*
> lrwxrwxrwx 1 root root18 2006-09-04 16:18 liblogin.so ->
> liblogin.so.2.0.21*
> lrwxrwxrwx 1 root root18 2006-09-04 16:18 liblogin.so.2 ->
> liblogin.so.2.0.21*
> -rwxr-xr-x 1 root root 13724 2006-06-16 16:41 liblogin.so.2.0.21*
> lrwxrwxrwx 1 root root18 2006-09-04 16:21 libplain.so ->
> libplain.so.2.0.21*
> lrwxrwxrwx 1 root root18 2006-09-04 16:21 libplain.so.2 ->
> libplain.so.2.0.21*
> -rwxr-xr-x 1 root root 14268 2006-06-16 16:40 libplain.so.2.0.21*
> lrwxrwxrwx 1 root root19 2006-09-04 16:18 libsasldb.so ->
> libsasldb.so.2.0.21*
> lrwxrwxrwx 1 root root19 2006-09-04 16:18 libsasldb.so.2 ->
> libsasldb.so.2.0.21*
> -rwxr-xr-x 1 root root 18316 2006-06-16 16:40 libsasldb.so.2.0.21*
$ ls -l /usr/lib/sasl2/
total 500
-rw-r--r-- 1 root root 19036 2006-04-24 19:38 libanonymous.a
-rw-r--r-- 1 root root 855 2006-04-24 19:38 libanonymous.la
lrwxrwxrwx 1 root root22 2008-04-18 07:24 libanonymous.so ->
libanonymous.so.2.0.19
lrwxrwxrwx 1 root root22 2008-04-18 07:24 libanonymous.so.2 ->
libanonymous.so.2.0.19
-rw-r--r-- 1 root root 15712 2006-04-24 19:38 libanonymous.so.2.0.19
-rw-r--r-- 1 root root 21802 2006-04-24 19:38 libcrammd5.a
-rw-r--r-- 1 root root 841 2006-04-24 19:38 libcrammd5.la
lrwxrwxrwx 1 root root20 2008-04-18 07:24 libcrammd5.so ->
libcrammd5.so.2.0.19
lrwxrwxrwx 1 root root20 2008-04-18 07:24 libcrammd5.so.2 ->
libcrammd5.so.2.0.19
-rw-r--r-- 1 root root 19104 2006-04-24 19:38 libcrammd5.so.2.0.19
-rw-r--r-- 1 root root 59792 2006-04-24 19:38 libdigestmd5.a
-rw-r--r-- 1 root root 864 2006-04-24 19:38 libdigestmd5.la
lrwxrwxrwx 1 root root22 2008-04-18 07:24 libdigestmd5.so ->
libdigestmd5.so.2.0.19
lrwxrwxrwx 1 root root22 2008-04-18 07:24 libdigestmd5.so.2 ->
libdigestmd5.so.2.0.19
-rw-r--r-- 1 root root 46336 2006-04-24 19:38 libdigestmd5.so.2.0.19
-rw-r--r-- 1 root root 19262 2006-04-24 19:38 liblogin.a
-rw-r--r-- 1 root root 835 2006-04-24 19:38 liblogin.la
lrwxrwxrwx 1 root root18 2008-04-18 07:24 liblogin.so ->
liblogin.so.2.0.19
lrwxrwxrwx 1 root root18 2008-04-18 07:24 liblogin.so.2 ->
liblogin.so.2.0.19
-rw-r--r-- 1 root root 16352 2006-04-24 19:38 liblogin.so.2.0.19
-rw-r--r-- 1 root root 38724 2006-04-24 19:38 libntlm.a
-rw-r--r-- 1 root root 829 2006-04-24 19:38 libntlm.la
lrwxrwxrwx 1 root root17 2008-04-18 07:24 libntlm.so ->
libntlm.so.2.0.19
lrwxrwxrwx 1 root root17 2008-04-18 07:24 libntlm.so.2 ->
libntlm.so.2.0.19
-rw-r--r-- 1 root root 32264 2006-04-24 19:38 libntlm.so.2.0.19
-rw-r--r-- 1 root root 27142 2006-04-24 19:38 libotp.a
-rw-r--r-- 1 root root 829 2006-04-24 19:38 libotp.la
lrwxrwxrwx 1 root root16 2008-04-18 07:24 libotp.so ->
libotp.so.2.0.19
lrwxrwxrwx 1 root root16 2008-04-18 07:24 libotp.so.2 ->
libotp.so.2.0.19
-rw-r--r-- 1 root root 48856 2006-04-24 19:38 libotp.so.2.0.19
-rw-r--r-- 1 root root 19342 2006-04-24 19:38 libplain.a
-rw-r--r-- 1 root root 835 2006-04-24 19:38 libplain.la
lrwxrwxrwx 1 root root18 2008-04-18 07:24 libplain.so ->
libplain.so.2.0.19
lrwxrwxrwx 1 root root18 2008-04-18 07:24 libplain.so.2 ->
libplain.so.2.0.19
-rw-r--r-- 1 root root 16384 2006-04-24 19:38 libplain.so.2.0.19
-rw-r--r-- 1 root root 29164 2006-04-24 19:38 libsasldb.a
-rw-r--r-- 1 root root 856 2006-04-24 19:38 libsasldb.la
lrwxrwxrwx 1 root root19 2008-04-18 07:24 libsasldb.so ->
libsasldb.so.2.0.19
lrwxrwxrwx 1 root root19 2008-04-18 07:24 libsasldb.so.2 ->
libsasldb.so.2.0.19
-rw-r--r-- 1 root root 21288 2006-04-24 19:38 libsasldb.so.2.0.19
* end *
B.R.
Stephen
Send
Re: Cyrus - can't create user mailbox
On Mon, Jun 9, 2008 at 4:07 PM, Stephen Liu <[EMAIL PROTECTED]> wrote: > Hi Simon, > > >> > Whether I have to run the command as root? >> >> NO, you shouldn't run this as root! >> If you want to delete a cyrus mailbox you have to give the cyrus >> admin >> user the rights to do so (as someone else already stated). > > > Noted with thanks. > > >> ^^ >> >> Try to find out where you cyrus creates it's lmtp socket and point >> your >> postfix config to it. >> >> I don't know Debian but I think it should come with some docs to get >> things to work. (Ubuntu ins mainly a copy of Debian so the same >> should >> apply there as well). Maybe some Debian/Ubuntu user can point you to >> the >> right docs. > > > $ cat /etc/cyrus.conf | grep socket > # UNIX sockets start with a slash and are absolute paths ># (you must keep the Unix socket name in sync with imap.conf) >lmtpunixcmd="lmtpd" listen="/var/run/cyrus/socket/lmtp" > prefork=0 maxchild=20 >notify cmd="notifyd" > listen="/var/run/cyrus/socket/notify" proto="udp" prefork=1 > * end * > > > Would it be /var/run/cyrus/socket/lmtp ? You have somewhere int your postfix main.cf "/var/run/lmtp", probably a mailbox_transport=... or a local_transport= You must replace it by the cyrus path : /var/run/cyrus/socket/lmtp If smtpd daemon is chrooted this become more difficult ! You have 2 possibilities - just try to replace the 'y' in master.cf by a 'n' to make smtpd not chrooted - change the path in cyrus.conf to move the socket somewhere bellow the postfix chroot jail. Be carefull cyrus must have enough right in the postfix directory to create the socket. > > > $ sudo ls -la /var/run/cyrus/socket | grep lmtp > srwxrwxrwx 1 root root 0 2008-06-09 21:26 lmtp > > > $ sudo ls -la /var/run/cyrus/socket/ > total 0 > drwxr-x--- 2 cyrus mail 80 2008-06-09 21:26 . > drwxr-xr-x 3 cyrus mail 60 2008-06-09 21:26 .. > srwxrwxrwx 1 root root 0 2008-06-09 21:26 lmtp > srwxrwxrwx 1 root root 0 2008-06-09 21:26 notify > * end * > > > How to link it to postfix config? Thanks > > > > B.R. > Stephen > > > Send instant messages to your online friends http://uk.messenger.yahoo.com > > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > -- Alain Spineux aspineux gmail com May the sources be with you Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
Hi Jens, Thanks for your advice. - snip - > > Would it be /var/run/cyrus/socket/lmtp ? > Yep, it would be it. > > But please note that the postfix smtpd under Debian (and probably > Ubuntu as well) runs in a chroot environment. You can see this by > looking in your /etc/postfix/master.cf file, look at the line with > smtp in the beginning and look in the right column for the chroot. > Which one that is should be documented in the top of the file. $ cat /etc/postfix/master.cf | grep smtp smtp inet n - - - - smtpd smtp unix - - - - - smtp relay unix - - - - - smtp # -o smtp_helo_timeout=5 -o smtp_connect_timeout=5 bsmtp unix - n n - - pipe flags=Fq. user=bsmtp argv=/usr/lib/bsmtp/bsmtp -t$nexthop -f$sender $recipient * end * There are only 2 lines there with smtp in the beginning. > If the smtpd runs in a chroot environment, it will expect the lmtp > socket relative to the chroot path, normally /var/spool/postfix, so > the correct complete path for the socket would be > /var/spool/postfix/var/run/cyrus/socket/notify ;) This created a lot > of headache for me when configuring sasl, until I figured it out. $ sudo nano /etc/cyrus.conf change both lines. changing; lmtpunixcmd="lmtpd" listen="/var/run/cyrus/socket/lmtp" prefork=0 maxchild=20 as; lmtpunixcmd="lmtpd" listen="/var/spool/postfix/var/run/cyrus/socket/lmtp" prefork=0 maxchild=20 changing; notify cmd="notifyd" listen="/var/run/cyrus/socket/notify" proto="udp" prefork=1 as; notify cmd="notifyd" listen="/var/spool/postfix/var/run/cyrus/socket/notify" proto="udp" prefork=1 Still can't receive mails. $ sudo ls -la /var/spool/cyrus/mail/s/user/satimiscyrus Password: total 20 drwx-- 2 cyrus mail 4096 2008-06-09 16:35 . drwx-- 3 cyrus mail 4096 2008-06-09 16:35 .. -rw--- 1 cyrus mail4 2008-06-09 16:35 cyrus.cache -rw--- 1 cyrus mail 158 2008-06-09 16:35 cyrus.header -rw--- 1 cyrus mail 76 2008-06-09 16:35 cyrus.index * end * $ tail /var/log/mail.log Jun 10 00:35:41 lampserver cyrus/ctl_cyrusdb[4952]: archiving log file: /var/lib/cyrus/db/log.01 Jun 10 00:35:41 lampserver cyrus/ctl_cyrusdb[4952]: archiving database file: /var/lib/cyrus/mailboxes.db Jun 10 00:35:41 lampserver cyrus/ctl_cyrusdb[4952]: archiving log file: /var/lib/cyrus/db/log.01 Jun 10 00:35:41 lampserver cyrus/ctl_cyrusdb[4952]: done checkpointing cyrus databases Jun 10 00:35:41 lampserver cyrus/master[4948]: process 4952 exited, status 0 Jun 10 00:36:30 lampserver postfix/smtpd[4955]: connect from ti-out-0910.google.com[209.85.142.187] Jun 10 00:36:30 lampserver postfix/smtpd[4955]: D21EA87820E: client=ti-out-0910.google.com[209.85.142.187] Jun 10 00:36:30 lampserver postfix/cleanup[4956]: D21EA87820E: message-id=<[EMAIL PROTECTED]> Jun 10 00:36:30 lampserver postfix/qmgr[4188]: D21EA87820E: from=<[EMAIL PROTECTED]>, size=1842, nrcpt=1 (queue active) Jun 10 00:36:30 lampserver postfix/lmtp[4958]: D21EA87820E: to=<[EMAIL PROTECTED]>, relay=none, delay=0, status=deferred (connect to /var/run/lmtp[/var/run/lmtp]: No such file or directory) * end * $ tail /var/log/mail.warn Jun 6 18:47:50 lampserver cyrus/master[3881]: WARNING: cannot find executable for service 'nntp' -- ignored Jun 9 18:15:12 lampserver cyrus/imap[4675]: idle for too long, closing connection Jun 9 23:48:17 lampserver cyrus/master[4594]: unable to create notify listener socket: No such file or directory Jun 10 00:08:08 lampserver cyrus/master[4745]: unable to create lmtpunix listener socket: No such file or directory Jun 10 00:08:08 lampserver cyrus/master[4745]: unable to create notify listener socket: No such file or directory Jun 10 00:12:38 lampserver cyrus/master[4805]: unable to create lmtpunix listener socket: No such file or directory Jun 10 00:12:39 lampserver cyrus/master[4805]: unable to create notify listener socket: No such file or directory Jun 10 00:32:46 lampserver cyrus/master[4902]: unable to create notify listener socket: No such file or directory Jun 10 00:35:41 lampserver cyrus/master[4948]: unable to create lmtpunix listener socket: No such file or directory Jun 10 00:35:41 lampserver cyrus/master[4948]: unable to create notify listener socket: No such file or directory * end * B.R. Stephen Send instant messages to your online friends http://uk.messenger.yahoo.com Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Authentication problem
$ imtest -m login -p imap -u satimiscyrus localhost
S: * OK lampserver Cyrus IMAP4 v2.2.12-Debian-2.2.12-4ubuntu1 server
ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE
AUTH=NTLM AUTH=ANONYMOUS AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN satimis {12}
S: + go ahead
C:
S: L01 NO Login failed: generic failure
Authentication failed. generic failure
Security strength factor: 0
(it is hanging here)
I have the feeling you should add this to your imapd.conf:
sasl_mech_list: PLAIN
I miss AUTH=LOGIN and AUTH=PLAIN
so "sasl_mech_list: PLAIN" will only cause that no auth mech
will be available.
Maybe a sasl package is not installed/found
ll /usr/lib/sasl2/ show for me
lrwxrwxrwx 1 root root22 2006-09-04 16:18 libanonymous.so ->
libanonymous.so.2.0.21*
lrwxrwxrwx 1 root root22 2006-09-04 16:18 libanonymous.so.2 ->
libanonymous.so.2.0.21*
-rwxr-xr-x 1 root root 13216 2006-06-16 16:40 libanonymous.so.2.0.21*
lrwxrwxrwx 1 root root18 2006-09-04 16:18 liblogin.so ->
liblogin.so.2.0.21*
lrwxrwxrwx 1 root root18 2006-09-04 16:18 liblogin.so.2 ->
liblogin.so.2.0.21*
-rwxr-xr-x 1 root root 13724 2006-06-16 16:41 liblogin.so.2.0.21*
lrwxrwxrwx 1 root root18 2006-09-04 16:21 libplain.so ->
libplain.so.2.0.21*
lrwxrwxrwx 1 root root18 2006-09-04 16:21 libplain.so.2 ->
libplain.so.2.0.21*
-rwxr-xr-x 1 root root 14268 2006-06-16 16:40 libplain.so.2.0.21*
lrwxrwxrwx 1 root root19 2006-09-04 16:18 libsasldb.so ->
libsasldb.so.2.0.21*
lrwxrwxrwx 1 root root19 2006-09-04 16:18 libsasldb.so.2 ->
libsasldb.so.2.0.21*
-rwxr-xr-x 1 root root 18316 2006-06-16 16:40 libsasldb.so.2.0.21*
M.Menge Tel.: (49) 7071/29-70316
Universitaet Tuebingen Fax.: (49) 7071/29-5912
Zentrum fuer Datenverarbeitung mail:
[EMAIL PROTECTED]
Waechterstrasse 76
72074 Tuebingen
smime.p7s
Description: S/MIME krytographische Unterschrift
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Cyrus - can't create user mailbox
This mail accidently went off-listSo here a resend -- Forwarded message -- From: Jens Hoffrichter <[EMAIL PROTECTED]> Date: 2008/6/9 Subject: Re: Cyrus - can't create user mailbox To: Stephen Liu <[EMAIL PROTECTED]> Hi Stephen, 2008/6/9 Stephen Liu <[EMAIL PROTECTED]>: >> Try to find out where you cyrus creates it's lmtp socket and point >> your >> postfix config to it. >> >> I don't know Debian but I think it should come with some docs to get >> things to work. (Ubuntu ins mainly a copy of Debian so the same >> should >> apply there as well). Maybe some Debian/Ubuntu user can point you to >> the >> right docs. > > > $ cat /etc/cyrus.conf | grep socket > # UNIX sockets start with a slash and are absolute paths ># (you must keep the Unix socket name in sync with imap.conf) >lmtpunixcmd="lmtpd" listen="/var/run/cyrus/socket/lmtp" > prefork=0 maxchild=20 >notify cmd="notifyd" > listen="/var/run/cyrus/socket/notify" proto="udp" prefork=1 > * end * > > > Would it be /var/run/cyrus/socket/lmtp ? Yep, it would be it. But please note that the postfix smtpd under Debian (and probably Ubuntu as well) runs in a chroot environment. You can see this by looking in your /etc/postfix/master.cf file, look at the line with smtp in the beginning and look in the right column for the chroot. Which one that is should be documented in the top of the file. If the smtpd runs in a chroot environment, it will expect the lmtp socket relative to the chroot path, normally /var/spool/postfix, so the correct complete path for the socket would be /var/spool/postfix/var/run/cyrus/socket/notify ;) This created a lot of headache for me when configuring sasl, until I figured it out. Regards, Jens Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Authentication problem
Hi Simon,
- snip -
> > $ cat /etc/pam.d/imap
> > @include common-auth
> > @include common-account
>
> Well, now you should provide us the common-auth and common-account
> configs.
$ locate common-auth
/etc/pam.d/common-auth
/usr/share/pam/common-auth
/usr/share/pam/common-auth.md5sums
$ cat /etc/pam.d/common-auth
authrequiredpam_unix.so nullok_secure
$ cat /usr/share/pam/common-auth
authrequiredpam_unix.so nullok_secure
$ sudo find / -name common-account
/etc/pam.d/common-account
/usr/share/pam/common-account
$ cat /etc/pam.d/common-account
- snip-
account requiredpam_unix.so
$ cat /usr/share/pam/common-account
- snip -
account requiredpam_unix.so
- snip -
> I have the feeling you should add this to your imapd.conf:
>
> sasl_mech_list: PLAIN
$ cat /etc/imapd.conf | grep sasl_mech_list
#sasl_mech_list: PLAIN
to uncomment this line? Thanks
B.R.
Stephen
> > then pressing [Ctrl]+c
> > [EMAIL PROTECTED]: Q01 LOGOUT
> > Connection closed.
> >
> >
> >
> > B.R.
> > Stephen
> >
> >
> >> >
> >> > $ cat /etc/pam.conf
> >> > #
> >> >
> >>
> >
>
---#
> >> > # /etc/pam.conf
> >> > #
> >> > #
> >> >
> >>
> >
>
---#
> >> > #
> >> > # NOTE
> >> > #
> >> > #
> >> > # NOTE: Most program use a file under the /etc/pam.d/ directory
> to
> >> > setup their
> >> > # PAM service modules. This file is used only if that directory
> >> does
> >> > not exist.
> >> > #
> >> >
> >>
> >
>
---#
> >> >
> >> > # Format:
> >> > # serv. module ctrl module [path] ...[args..]
> >> > #
> >> > # name type flag
> >> > #
> >> > * end *
> >> >
> >> >
> >> > What other file/files I have to check ? Thanks.
> >> >
> >> >
> >> >
> >> > B.R.
> >> > Stephen
> >> >
> >> >
> >> >
> >> >
> >> >
> >> >
> >> >
> >> >> > $ cat /etc/cyrus.conf
> >> >> > # Debian defaults for Cyrus IMAP server/cluster
> implementation
> >> >> > # see cyrus.conf(5) for more information
> >> >> > #
> >> >> > # All the tcp services are tcpd-wrapped. see hosts_access(5)
> >> >> > # $Id: cyrus.conf 120 2005-05-01 03:23:18Z sven $
> >> >> >
> >> >> > START {
> >> >> > # do not delete this entry!
> >> >> > recover cmd="/usr/sbin/ctl_cyrusdb -r"
> >> >> >
> >> >> > # this is only necessary if using idled for IMAP IDLE
> >> >> > # this is NOT to be enabled right now in Debian
> builds
> >> >> > #idled cmd="idled"
> >> >> >
> >> >> > # this is useful on backend nodes of a Murder cluster
> >> >> > # it causes the backend to syncronize its mailbox
> list
> >> with
> >> >> > # the mupdate master upon startup
> >> >> > #mupdatepush cmd="/usr/sbin/ctl_mboxlist -m"
> >> >> >
> >> >> > # this is recommended if using duplicate delivery
> >> >> suppression
> >> >> > delprunecmd="/usr/sbin/ctl_deliver -E 3"
> >> >> > # this is recommended if caching TLS sessions
> >> >> > tlsprunecmd="/usr/sbin/tls_prune"
> >> >> > }
> >> >> >
> >> >> > # UNIX sockets start with a slash and are absolute paths
> >> >> > # you can use a maxchild=# to limit the maximum number of
> forks
> >> of
> >> >> a
> >> >> > service
> >> >> > # you can use babysit=true and maxforkrate=# to keep tight
> tabs
> >> on
> >> >> the
> >> >> > service
> >> >> > # most services also accept -U (limit number of reuses) and
> -T
> >> >> > (timeout)
> >> >> > SERVICES {
> >> >> > # --- Normal cyrus spool, or Murder backends ---
> >> >> > # add or remove based on preferences
> >> >> > imapcmd="imapd -U 30" listen="imap"
> >> prefork=0
> >> >> > maxchild=100
> >> >> > imaps cmd="imapd -s -U 30" listen="imaps"
> >> >> prefork=0
> >> >> > maxchild=100
> >> >> > #pop3 cmd="pop3d -U 30" listen="pop3"
> >> prefork=0
> >> >> > maxchild=50
> >> >> > #pop3s cmd="pop3d -s -U 30" listen="pop3s"
> >> >> prefork=0
> >> >> > maxchild=50
> >> >> >
> >> >> >
> >> >> > #nntp cmd="nntpd -U 30" listen="nntp"
> >> prefork=0
> >> >> > maxchild=100
> >> >> > #nntps cmd="nntpd -s -U 30" listen="nntps"
> >> >> prefork=0
> >> >> > maxchild=100
> >> >> >
> >> >> > # At least one form of LMTP is required for delivery
> >> >> > # (you must keep the Unix socket name in sync with
> >> >> imap.conf)
> >> >> > #lmtp cmd="lmtpd" listen="localhost:lmtp"
> >> >> prefork=0
> >> >> > maxchild=20
> >> >> > lmtpunixcmd="lmtpd"
> >> >> listen="/var/run/cyrus/socket/lmtp"
> >> >> > prefork=0 maxchild=20
> >> >> > # --
> >> >> >
> >> >> > # useful if you need to give users remote access to
> >>
unsubscribe
unsubscribe Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
Quoting Stephen Liu <[EMAIL PROTECTED]>: $ tail /var/log/mail.info Jun 9 21:26:25 lampserver postfix/qmgr[4188]: C18198781EC: from=<[EMAIL PROTECTED]>, s ize=1834, nrcpt=1 (queue active) Jun 9 21:26:25 lampserver postfix/lmtp[4196]: C18198781EC: to=<[EMAIL PROTECTED]>, relay=none, delay=14763, status=deferred (connect to /var/run/lmtp[/var/run/lmtp]: No such file or directory) here is the problem, postfix and cyrus must be configured to use the same socket and it must exist and have the correct permissions $ sudo ls /var/log/ | grep cyrus No printout the maillogs show that syslogd/syslog-ng is configured that cyruslogs are written to mail.* M.Menge Tel.: (49) 7071/29-70316 Universitaet Tuebingen Fax.: (49) 7071/29-5912 Zentrum fuer Datenverarbeitung mail: [EMAIL PROTECTED] Waechterstrasse 76 72074 Tuebingen smime.p7s Description: S/MIME krytographische Unterschrift Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
Hi Joseph, > > Whether I have to run the command as root? > > Root doesn't matter. The cyrus user needs permission to delete. > This is a safety feature. sam user.satimiscyrus cyrus all Noted with thanks. > >> > localhost> cm user/satimiscyrus > >> > localhost> lm > >> > user.groupware (\HasNoChildren) > >> > user/satimiscyrus (\HasNoChildren) > >> > user.satimiscyrus (\HasNoChildren) > >> > > >> > Still can't create the subdirectory. > > It did what you asked, but I don't think you asked for what > you wanted. Noted. > > $ sudo find / -name "*satimiscyrus*" > > Password: > > /var/spool/cyrus/mail/s/user/satimiscyrus > > /var/spool/cyrus/mail/u/user^satimiscyrus > > /home/satimiscyrus > > This looks correct. Note: > (1) Cyrus user.satimiscyrus = filesystem user/satimiscyrus > (2) Cyrus user/satimiscyrus = filesystem user^satimiscyrus > (3) is not a Cyrus mailbox > > I would expect mail addressed to satimiscyrus to end up in (1). > > (2) is not a user mailbox. It could work as a bboard mailbox but > that's not what you want in this case. What is a bboard mailbox? Thanks B.R. Stephen Send instant messages to your online friends http://uk.messenger.yahoo.com Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
Hi Simon, > > Whether I have to run the command as root? > > NO, you shouldn't run this as root! > If you want to delete a cyrus mailbox you have to give the cyrus > admin > user the rights to do so (as someone else already stated). Noted with thanks. > ^^ > > Try to find out where you cyrus creates it's lmtp socket and point > your > postfix config to it. > > I don't know Debian but I think it should come with some docs to get > things to work. (Ubuntu ins mainly a copy of Debian so the same > should > apply there as well). Maybe some Debian/Ubuntu user can point you to > the > right docs. $ cat /etc/cyrus.conf | grep socket # UNIX sockets start with a slash and are absolute paths # (you must keep the Unix socket name in sync with imap.conf) lmtpunixcmd="lmtpd" listen="/var/run/cyrus/socket/lmtp" prefork=0 maxchild=20 notify cmd="notifyd" listen="/var/run/cyrus/socket/notify" proto="udp" prefork=1 * end * Would it be /var/run/cyrus/socket/lmtp ? $ sudo ls -la /var/run/cyrus/socket | grep lmtp srwxrwxrwx 1 root root 0 2008-06-09 21:26 lmtp $ sudo ls -la /var/run/cyrus/socket/ total 0 drwxr-x--- 2 cyrus mail 80 2008-06-09 21:26 . drwxr-xr-x 3 cyrus mail 60 2008-06-09 21:26 .. srwxrwxrwx 1 root root 0 2008-06-09 21:26 lmtp srwxrwxrwx 1 root root 0 2008-06-09 21:26 notify * end * How to link it to postfix config? Thanks B.R. Stephen Send instant messages to your online friends http://uk.messenger.yahoo.com Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
Hi Michael, > > $ cat /etc/imapd.conf | grep unixhierarchysep > > unixhierarchysep: yes > > > > > > It is set as "yes" > > yes and 1 mean the same, unixhierarchsep is used. Noted with thanks. > > I can't delete the mailbox created previously. > > as stated from cyradm the user cyrus does not have the permission to > delete > the mailbox. Use "sam user.satimiscyrus cyrus c" or > "sam user.satimiscyrus cyrus all" the first will only set the > permission to create subfolders and to delete the folder, the seconds > > gives cyrus all permissions Performed following steps; $ cyradm -u cyrus localhost Password: localhost> sam user.satimiscyrus cyrus c localhost> dm user.satimiscyrus localhost> lm user.groupware (\HasNoChildren) user/satimiscyrus (\HasNoChildren) localhost> quit Done. > Did you recieve a bounce or is the message still queued? The mail sent from Yahoo several hours ago has already been returned to the sender. I think the second mail sent from Gmail is still bouncing on Internet. > Are there > related entries in you maillogs and cyruslogs? $ sudo ls /var/log/ | grep mail Password: mail.err mail.info mail.log mail.warn $ tail /var/log/mail.err No printout $ tail /var/log/mail.info Jun 9 21:26:17 lampserver cyrus/tls_prune[3887]: tls_prune: purged 0 out of 0 entries Jun 9 21:26:17 lampserver cyrus/master[3881]: ready for work Jun 9 21:26:17 lampserver cyrus/ctl_cyrusdb[3888]: checkpointing cyrus databases Jun 9 21:26:17 lampserver cyrus/ctl_cyrusdb[3888]: done checkpointing cyrus databases Jun 9 21:26:25 lampserver postfix/master[4183]: daemon started -- version 2.2.10, configu ration /etc/postfix Jun 9 21:26:25 lampserver postfix/qmgr[4188]: C18198781EC: from=<[EMAIL PROTECTED]>, s ize=1834, nrcpt=1 (queue active) Jun 9 21:26:25 lampserver postfix/lmtp[4196]: C18198781EC: to=<[EMAIL PROTECTED]>, relay=none, delay=14763, status=deferred (connect to /var/run/lmtp[/var/run/lmtp]: No suc h file or directory) Jun 9 21:34:17 lampserver cyrus/imap[4447]: badlogin: localhost [127.0.0.1] DIGEST-MD5 [S ASL(-13): user not found: no secret in database] Jun 9 21:34:20 lampserver cyrus/imap[4447]: login: localhost [127.0.0.1] anonymous ANONYM OUS User logged in Jun 9 21:37:31 lampserver cyrus/imap[4447]: login: localhost [127.0.0.1] cyrus DIGEST-MD5 User logged in * end * $ tail /var/log/mail.warn Jun 2 18:32:06 lampserver cyrus/master[3881]: WARNING: cannot find executable for service 'imap' -- ignored Jun 2 18:32:06 lampserver cyrus/master[3881]: WARNING: cannot find executable for service 'pop3' -- ignored Jun 2 18:32:06 lampserver cyrus/master[3881]: WARNING: cannot find executable for service 'nntp' -- ignored Jun 3 22:35:08 lampserver cyrus/master[3881]: WARNING: cannot find executable for service 'imap' -- ignored Jun 3 22:35:08 lampserver cyrus/master[3881]: WARNING: cannot find executable for service 'pop3' -- ignored Jun 3 22:35:08 lampserver cyrus/master[3881]: WARNING: cannot find executable for service 'nntp' -- ignored Jun 6 18:47:50 lampserver cyrus/master[3881]: WARNING: cannot find executable for service 'imap' -- ignored Jun 6 18:47:50 lampserver cyrus/master[3881]: WARNING: cannot find executable for service 'pop3' -- ignored Jun 6 18:47:50 lampserver cyrus/master[3881]: WARNING: cannot find executable for service 'nntp' -- ignored Jun 9 18:15:12 lampserver cyrus/imap[4675]: idle for too long, closing connection * end * $ sudo ls /var/log/ | grep cyrus No printout B.R. Stephen Send instant messages to your online friends http://uk.messenger.yahoo.com Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
>> > $ cyradm -u cyrus localhost >> > Password: >> > localhost> dm user.satimiscyrus >> > deletemailbox: Permission denied >> > >> > I can't delete the mailbox created previously. >> >> Because you need to give yourself the right before > > Whether I have to run the command as root? Root doesn't matter. The cyrus user needs permission to delete. This is a safety feature. sam user.satimiscyrus cyrus all >> > localhost> cm user/satimiscyrus >> > localhost> lm >> > user.groupware (\HasNoChildren) >> > user/satimiscyrus (\HasNoChildren) >> > user.satimiscyrus (\HasNoChildren) >> > >> > Still can't create the subdirectory. It did what you asked, but I don't think you asked for what you wanted. > $ sudo find / -name "*satimiscyrus*" > Password: > /var/spool/cyrus/mail/s/user/satimiscyrus > /var/spool/cyrus/mail/u/user^satimiscyrus > /home/satimiscyrus This looks correct. Note: (1) Cyrus user.satimiscyrus = filesystem user/satimiscyrus (2) Cyrus user/satimiscyrus = filesystem user^satimiscyrus (3) is not a Cyrus mailbox I would expect mail addressed to satimiscyrus to end up in (1). (2) is not a user mailbox. It could work as a bboard mailbox but that's not what you want in this case. Joseph Brennan Columbia University Information Technology Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
> Hi Alain, > > > Thanks for your advice. > > >> > $ cyradm -u cyrus localhost >> > Password: >> > localhost> dm user.satimiscyrus >> > deletemailbox: Permission denied >> > >> > I can't delete the mailbox created previously. >> >> Because you need to give yourself the right before > > > Whether I have to run the command as root? NO, you shouldn't run this as root! If you want to delete a cyrus mailbox you have to give the cyrus admin user the rights to do so (as someone else already stated). > > >> > localhost> cm user/satimiscyrus >> > localhost> lm >> > user.groupware (\HasNoChildren) user/satimiscyrus >> (\HasNoChildren) >> > >> > user.satimiscyrus (\HasNoChildren) >> > >> > Still can't create the subdirectory. >> >> I dont understand ! > > > The maildir and subdir haven't been created. (\HasNoChildren) > > >> > $ sudo updatedb >> >> in this case 'find' is more appropriate than locate >> >> > >> > $ locate satimiscyrus >> >> find / -iname "*satimiscyrus*" > > > $ sudo find / -name "*satimiscyrus*" > Password: > /var/spool/cyrus/mail/s/user/satimiscyrus > /var/spool/cyrus/mail/u/user^satimiscyrus > /home/satimiscyrus > > > >> > Send a webmail to satimiscyrus on Gmail. The mail never arrives. >> >> Is your MX pointers configured ? Is your SMTP reachable from outside >> ? >> Did you look in postfix log ? > > > Yes. > > $ tail /var/log/mail.log > Jun 9 19:11:28 lampserver cyrus/ctl_cyrusdb[4753]: archiving log file: > /var/lib/cyrus/db/log.00 > 0001 > Jun 9 19:11:28 lampserver cyrus/ctl_cyrusdb[4753]: done checkpointing > cyrus databases > Jun 9 19:11:28 lampserver cyrus/master[3881]: process 4753 exited, > status 0 > Jun 9 19:18:53 lampserver cyrus/master[4798]: about to exec > /usr/lib/cyrus/bin/imapd > Jun 9 19:18:53 lampserver cyrus/imap[4798]: executed > Jun 9 19:18:53 lampserver cyrus/imap[4798]: accepted connection > Jun 9 19:19:42 lampserver cyrus/imap[4798]: badlogin: localhost > [127.0.0.1] plaintext satimis SASL( > -1): generic failure: checkpass failed > Jun 9 19:21:53 lampserver cyrus/master[3881]: process 4798 exited, > status 0 > Jun 9 19:31:36 lampserver postfix/qmgr[4188]: C18198781EC: > from=<[EMAIL PROTECTED]>, size=1834, > nrcpt=1 (queue active) > Jun 9 19:31:36 lampserver postfix/lmtp[4835]: C18198781EC: > to=<[EMAIL PROTECTED]>, relay=non > e, delay=7874, status=deferred (connect to > /var/run/lmtp[/var/run/lmtp]: No such file or directory) ^^ Try to find out where you cyrus creates it's lmtp socket and point your postfix config to it. I don't know Debian but I think it should come with some docs to get things to work. (Ubuntu ins mainly a copy of Debian so the same should apply there as well). Maybe some Debian/Ubuntu user can point you to the right docs. Simon > * end * > > > B.R. > satimis > > Send instant messages to your online friends http://uk.messenger.yahoo.com > > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Authentication problem
>
> --- Simon Matter <[EMAIL PROTECTED]> wrote:
>
>
> Sorry previously I made a mistake on posting /etc/default/saslauthd
>
>
> It should read as;
>
> $ cat /etc/default/saslauthd
> # This needs to be uncommented before saslauthd will be run
> automatically
> START=yes
> PARAMS="-m /var/spool/postfix/var/run/saslauthd -r"
> # You must specify the authentication mechanisms you wish to use.
> # This defaults to "pam" for PAM support, but may also include
> # "shadow" or "sasldb", like this:
> # MECHANISMS="pam shadow"
>
> MECHANISMS="pam"
> * end *
>
>
>> > $ locate pam
>> > /etc/pam.conf
>> > /etc/pam.d
>> > /etc/pam.d/atd
>> > /etc/pam.d/chage
>> > /etc/pam.d/chfn
>> > /etc/pam.d/chsh
>> > /etc/pam.d/common-account
>> > /etc/pam.d/common-auth
>> > /etc/pam.d/common-password
>> > /etc/pam.d/common-session
>> > /etc/pam.d/cron
>> > /etc/pam.d/cupsys
>> > /etc/pam.d/cvs
>> > /etc/pam.d/dovecot
>> > /etc/pam.d/groupadd
>> > /etc/pam.d/groupdel
>> > /etc/pam.d/groupmod
>> > /etc/pam.d/imap
>> > /etc/pam.d/lmtp
>> > /etc/pam.d/login
>> > /etc/pam.d/newusers
>> > /etc/pam.d/other
>> > /etc/pam.d/passwd
>> > /etc/pam.d/pop
>> > /etc/pam.d/ppp
>> > /etc/pam.d/sieve
>> > /etc/pam.d/ssh
>> > /etc/pam.d/su
>> > /etc/pam.d/sudo
>> > /etc/pam.d/useradd
>> > /etc/pam.d/userdel
>> > /etc/pam.d/usermod
>> > /etc/pam.d/vsftpd
>>
>> For example /etc/pam.d/imap, /etc/pam.d/lmtp, /etc/pam.d/pop and
>> /etc/pam.d/sieve. How are they configured?
>
>
> $ cat /etc/pam.d/imap
> @include common-auth
> @include common-account
Well, now you should provide us the common-auth and common-account configs.
>
>
> $ cat /etc/pam.d/lmtp
> @include common-auth
> @include common-account
>
>
> $ cat /etc/pam.d/pop
> @include common-auth
> @include common-account
>
>
> $ cat /etc/pam.d/sieve
> @include common-auth
> @include common-account
>
>
>
>> There is one more thing. You tried 'imtest -m login -p imap
>> localhost' as
>> root which means per default it tries to authenticate as user root.
>> Maybe you want to try
>>
>> imtest -m login -p imap -u satimiscyrus localhost
>
>
> $ imtest -m login -p imap -u satimiscyrus localhost
> S: * OK lampserver Cyrus IMAP4 v2.2.12-Debian-2.2.12-4ubuntu1 server
> ready
> C: C01 CAPABILITY
> S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
> BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE
> AUTH=NTLM AUTH=ANONYMOUS AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR
> S: C01 OK Completed
> Please enter your password:
> C: L01 LOGIN satimis {12}
> S: + go ahead
> C:
> S: L01 NO Login failed: generic failure
> Authentication failed. generic failure
> Security strength factor: 0
> (it is hanging here)
I have the feeling you should add this to your imapd.conf:
sasl_mech_list: PLAIN
Regards,
Simon
> then pressing [Ctrl]+c
> [EMAIL PROTECTED]: Q01 LOGOUT
> Connection closed.
>
>
>
> B.R.
> Stephen
>
>
>> >
>> > $ cat /etc/pam.conf
>> > #
>> >
>>
> ---#
>> > # /etc/pam.conf
>> > #
>> > #
>> >
>>
> ---#
>> > #
>> > # NOTE
>> > #
>> > #
>> > # NOTE: Most program use a file under the /etc/pam.d/ directory to
>> > setup their
>> > # PAM service modules. This file is used only if that directory
>> does
>> > not exist.
>> > #
>> >
>>
> ---#
>> >
>> > # Format:
>> > # serv. module ctrl module [path] ...[args..]
>> > #
>> > # name type flag
>> > #
>> > * end *
>> >
>> >
>> > What other file/files I have to check ? Thanks.
>> >
>> >
>> >
>> > B.R.
>> > Stephen
>> >
>> >
>> >
>> >
>> >
>> >
>> >
>> >> > $ cat /etc/cyrus.conf
>> >> > # Debian defaults for Cyrus IMAP server/cluster implementation
>> >> > # see cyrus.conf(5) for more information
>> >> > #
>> >> > # All the tcp services are tcpd-wrapped. see hosts_access(5)
>> >> > # $Id: cyrus.conf 120 2005-05-01 03:23:18Z sven $
>> >> >
>> >> > START {
>> >> > # do not delete this entry!
>> >> > recover cmd="/usr/sbin/ctl_cyrusdb -r"
>> >> >
>> >> > # this is only necessary if using idled for IMAP IDLE
>> >> > # this is NOT to be enabled right now in Debian builds
>> >> > #idled cmd="idled"
>> >> >
>> >> > # this is useful on backend nodes of a Murder cluster
>> >> > # it causes the backend to syncronize its mailbox list
>> with
>> >> > # the mupdate master upon startup
>> >> > #mupdatepush cmd="/usr/sbin/ctl_mboxlist -m"
>> >> >
>> >> > # this is recommended if using duplicate delivery
>> >> suppression
>> >> > delprunecmd="/usr/sbin/ctl_deliver -E 3"
>> >> > # this is recommended if caching TLS sessions
>> >> > tlsprunecmd="/usr/sbin/tls_prune"
>> >> > }
>> >> >
>> >> > # UNIX socke
bug in the proxy module ...
Hi,
I am using cyrus 2.3.11 in a murder setup... from time to time have got an hang
from the pop3 proxyd ...
I nail it donw to the following portion of code :
in imap/proxy.c near line 266 :
if (pout) {
const char *err;
char buf[4096];
int c;
do {
c = prot_read(pin, buf, sizeof(buf));
if (c == 0 || c < 0) break;
prot_write(pout, buf, c);
} while (c == sizeof(buf));
if ((err = prot_error(pin)) != NULL) {
from time to time, the prot_read return exactly 4096 bytes, but it's the end of
the message...
so backend seat and wait for next command, and proxy seat and wait for the next
buffer ...
forever !
for me it's seems that the condition " c == sizeof(buf)" is not enough in that
case.
have someone else already encoutered this ?
thanks
valery
Ce message et les pi?ces jointes sont confidentiels et r?serv?s ? l'usage
exclusif de ses destinataires. Il peut ?galement ?tre prot?g? par le secret
professionnel. Si vous recevez ce message par erreur, merci d'en avertir
imm?diatement l'exp?diteur et de le d?truire. L'int?grit? du message ne pouvant
?tre assur?e sur Internet, la responsabilit? du groupe Atos Origin ne pourra
?tre recherch?e quant au contenu de ce message. Bien que les meilleurs efforts
soient faits pour maintenir cette transmission exempte de tout virus,
l'exp?diteur ne donne aucune garantie ? cet ?gard et sa responsabilit? ne
saurait ?tre recherch?e pour tout dommage r?sultant d'un virus transmis.
This e-mail and the documents attached are confidential and intended solely for
the addressee; it may also be privileged. If you receive this e-mail in error,
please notify the sender immediately and destroy it. As its integrity cannot be
secured on the Internet, the Atos Origin group liability cannot be triggered
for the message content. Although the sender endeavours to maintain a computer
virus-free network, the sender does not warrant that this transmission is
virus-free and will not be liable for any damages resulting from any virus
transmitted.
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
Hi Alain, Thanks for your advice. > > $ cyradm -u cyrus localhost > > Password: > > localhost> dm user.satimiscyrus > > deletemailbox: Permission denied > > > > I can't delete the mailbox created previously. > > Because you need to give yourself the right before Whether I have to run the command as root? > > localhost> cm user/satimiscyrus > > localhost> lm > > user.groupware (\HasNoChildren) user/satimiscyrus > (\HasNoChildren) > > > > user.satimiscyrus (\HasNoChildren) > > > > Still can't create the subdirectory. > > I dont understand ! The maildir and subdir haven't been created. (\HasNoChildren) > > $ sudo updatedb > > in this case 'find' is more appropriate than locate > > > > > $ locate satimiscyrus > > find / -iname "*satimiscyrus*" $ sudo find / -name "*satimiscyrus*" Password: /var/spool/cyrus/mail/s/user/satimiscyrus /var/spool/cyrus/mail/u/user^satimiscyrus /home/satimiscyrus > > Send a webmail to satimiscyrus on Gmail. The mail never arrives. > > Is your MX pointers configured ? Is your SMTP reachable from outside > ? > Did you look in postfix log ? Yes. $ tail /var/log/mail.log Jun 9 19:11:28 lampserver cyrus/ctl_cyrusdb[4753]: archiving log file: /var/lib/cyrus/db/log.00 0001 Jun 9 19:11:28 lampserver cyrus/ctl_cyrusdb[4753]: done checkpointing cyrus databases Jun 9 19:11:28 lampserver cyrus/master[3881]: process 4753 exited, status 0 Jun 9 19:18:53 lampserver cyrus/master[4798]: about to exec /usr/lib/cyrus/bin/imapd Jun 9 19:18:53 lampserver cyrus/imap[4798]: executed Jun 9 19:18:53 lampserver cyrus/imap[4798]: accepted connection Jun 9 19:19:42 lampserver cyrus/imap[4798]: badlogin: localhost [127.0.0.1] plaintext satimis SASL( -1): generic failure: checkpass failed Jun 9 19:21:53 lampserver cyrus/master[3881]: process 4798 exited, status 0 Jun 9 19:31:36 lampserver postfix/qmgr[4188]: C18198781EC: from=<[EMAIL PROTECTED]>, size=1834, nrcpt=1 (queue active) Jun 9 19:31:36 lampserver postfix/lmtp[4835]: C18198781EC: to=<[EMAIL PROTECTED]>, relay=non e, delay=7874, status=deferred (connect to /var/run/lmtp[/var/run/lmtp]: No such file or directory) * end * B.R. satimis Send instant messages to your online friends http://uk.messenger.yahoo.com Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Authentication problem
--- Simon Matter <[EMAIL PROTECTED]> wrote:
Sorry previously I made a mistake on posting /etc/default/saslauthd
It should read as;
$ cat /etc/default/saslauthd
# This needs to be uncommented before saslauthd will be run
automatically
START=yes
PARAMS="-m /var/spool/postfix/var/run/saslauthd -r"
# You must specify the authentication mechanisms you wish to use.
# This defaults to "pam" for PAM support, but may also include
# "shadow" or "sasldb", like this:
# MECHANISMS="pam shadow"
MECHANISMS="pam"
* end *
> > $ locate pam
> > /etc/pam.conf
> > /etc/pam.d
> > /etc/pam.d/atd
> > /etc/pam.d/chage
> > /etc/pam.d/chfn
> > /etc/pam.d/chsh
> > /etc/pam.d/common-account
> > /etc/pam.d/common-auth
> > /etc/pam.d/common-password
> > /etc/pam.d/common-session
> > /etc/pam.d/cron
> > /etc/pam.d/cupsys
> > /etc/pam.d/cvs
> > /etc/pam.d/dovecot
> > /etc/pam.d/groupadd
> > /etc/pam.d/groupdel
> > /etc/pam.d/groupmod
> > /etc/pam.d/imap
> > /etc/pam.d/lmtp
> > /etc/pam.d/login
> > /etc/pam.d/newusers
> > /etc/pam.d/other
> > /etc/pam.d/passwd
> > /etc/pam.d/pop
> > /etc/pam.d/ppp
> > /etc/pam.d/sieve
> > /etc/pam.d/ssh
> > /etc/pam.d/su
> > /etc/pam.d/sudo
> > /etc/pam.d/useradd
> > /etc/pam.d/userdel
> > /etc/pam.d/usermod
> > /etc/pam.d/vsftpd
>
> For example /etc/pam.d/imap, /etc/pam.d/lmtp, /etc/pam.d/pop and
> /etc/pam.d/sieve. How are they configured?
$ cat /etc/pam.d/imap
@include common-auth
@include common-account
$ cat /etc/pam.d/lmtp
@include common-auth
@include common-account
$ cat /etc/pam.d/pop
@include common-auth
@include common-account
$ cat /etc/pam.d/sieve
@include common-auth
@include common-account
> There is one more thing. You tried 'imtest -m login -p imap
> localhost' as
> root which means per default it tries to authenticate as user root.
> Maybe you want to try
>
> imtest -m login -p imap -u satimiscyrus localhost
$ imtest -m login -p imap -u satimiscyrus localhost
S: * OK lampserver Cyrus IMAP4 v2.2.12-Debian-2.2.12-4ubuntu1 server
ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE
AUTH=NTLM AUTH=ANONYMOUS AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN satimis {12}
S: + go ahead
C:
S: L01 NO Login failed: generic failure
Authentication failed. generic failure
Security strength factor: 0
(it is hanging here)
then pressing [Ctrl]+c
[EMAIL PROTECTED]: Q01 LOGOUT
Connection closed.
B.R.
Stephen
> >
> > $ cat /etc/pam.conf
> > #
> >
>
---#
> > # /etc/pam.conf
> > #
> > #
> >
>
---#
> > #
> > # NOTE
> > #
> > #
> > # NOTE: Most program use a file under the /etc/pam.d/ directory to
> > setup their
> > # PAM service modules. This file is used only if that directory
> does
> > not exist.
> > #
> >
>
---#
> >
> > # Format:
> > # serv. module ctrl module [path] ...[args..]
> > #
> > # name type flag
> > #
> > * end *
> >
> >
> > What other file/files I have to check ? Thanks.
> >
> >
> >
> > B.R.
> > Stephen
> >
> >
> >
> >
> >
> >
> >
> >> > $ cat /etc/cyrus.conf
> >> > # Debian defaults for Cyrus IMAP server/cluster implementation
> >> > # see cyrus.conf(5) for more information
> >> > #
> >> > # All the tcp services are tcpd-wrapped. see hosts_access(5)
> >> > # $Id: cyrus.conf 120 2005-05-01 03:23:18Z sven $
> >> >
> >> > START {
> >> > # do not delete this entry!
> >> > recover cmd="/usr/sbin/ctl_cyrusdb -r"
> >> >
> >> > # this is only necessary if using idled for IMAP IDLE
> >> > # this is NOT to be enabled right now in Debian builds
> >> > #idled cmd="idled"
> >> >
> >> > # this is useful on backend nodes of a Murder cluster
> >> > # it causes the backend to syncronize its mailbox list
> with
> >> > # the mupdate master upon startup
> >> > #mupdatepush cmd="/usr/sbin/ctl_mboxlist -m"
> >> >
> >> > # this is recommended if using duplicate delivery
> >> suppression
> >> > delprunecmd="/usr/sbin/ctl_deliver -E 3"
> >> > # this is recommended if caching TLS sessions
> >> > tlsprunecmd="/usr/sbin/tls_prune"
> >> > }
> >> >
> >> > # UNIX sockets start with a slash and are absolute paths
> >> > # you can use a maxchild=# to limit the maximum number of forks
> of
> >> a
> >> > service
> >> > # you can use babysit=true and maxforkrate=# to keep tight tabs
> on
> >> the
> >> > service
> >> > # most services also accept -U (limit number of reuses) and -T
> >> > (timeout)
> >> > SERVICES {
> >> > # --- Normal cyrus spool, or Murder backends ---
> >
Re: Cyrus - can't create user mailbox
Quoting Stephen Liu <[EMAIL PROTECTED]>: $ cat /etc/imapd.conf | grep unixhierarchysep unixhierarchysep: yes It is set as "yes" yes and 1 mean the same, unixhierarchsep is used. To create a Inbox for the user satimiscyrus you have to use cm user/satimiscyrus The ^ is the reperentation of the . on filesystem. Tried to delete the mailbox without success. Performed following steps; $ su - cyrus Password: $ cyradm -u cyrus localhost Password: localhost> dm user.satimiscyrus deletemailbox: Permission denied I can't delete the mailbox created previously. as stated from cyradm the user cyrus does not have the permission to delete the mailbox. Use "sam user.satimiscyrus cyrus c" or "sam user.satimiscyrus cyrus all" the first will only set the permission to create subfolders and to delete the folder, the seconds gives cyrus all permissions Continued localhost> cm user/satimiscyrus localhost> lm user.groupware (\HasNoChildren) user/satimiscyrus (\HasNoChildren) user.satimiscyrus (\HasNoChildren) Still can't create the subdirectory. which subdirectory? user/satimiscyrus has been created (second solder on first line) Continued localhost> quit $ exit logout $ sudo updatedb $ locate satimiscyrus /home/satimiscyrus /home/satimiscyrus/.bash_history /home/satimiscyrus/.bash_logout /home/satimiscyrus/.bash_profile /home/satimiscyrus/.bashrc /var/spool/cyrus/mail/s/user/satimiscyrus /var/spool/cyrus/mail/s/user/satimiscyrus/cyrus.cache /var/spool/cyrus/mail/s/user/satimiscyrus/cyrus.header /var/spool/cyrus/mail/s/user/satimiscyrus/cyrus.index /var/spool/cyrus/mail/u/user^satimiscyrus /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.cache /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.header /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.index * end * Send a webmail to satimiscyrus on Gmail. The mail never arrives. Did you recieve a bounce or is the message still queued? Are there related entries in you maillogs and cyruslogs? M.Menge Tel.: (49) 7071/29-70316 Universitaet Tuebingen Fax.: (49) 7071/29-5912 Zentrum fuer Datenverarbeitung mail: [EMAIL PROTECTED] Waechterstrasse 76 72074 Tuebingen smime.p7s Description: S/MIME krytographische Unterschrift Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Cyrus - can't create user mailbox
On Mon, Jun 9, 2008 at 11:36 AM, Stephen Liu <[EMAIL PROTECTED]> wrote: > Hi Michael, > > > Thanks for your advice. > > >> Quoting Stephen Liu <[EMAIL PROTECTED]>: >> >> > >> >> > $ cyradm -u cyrus localhost >> >> > Password: >> >> > localhost> cm user.satimiscyrus >> >> > localhost> quit >> >> > >> >> > it works. But I can't find this new user NOR its mailbox. >> >> >> > $ locate satimiscyrus >> > /var/spool/cyrus/mail/u/user^satimiscyrus >> > /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.cache >> > /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.header >> > /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.index >> > >> > >> > The mailbox is there. What is user^ for? >> >> This indicates that you have set unixhierarchysep: 1 in >> /etc/imapd.conf > > > $ cat /etc/imapd.conf | grep unixhierarchysep > unixhierarchysep: yes > > > It is set as "yes" > > >> To create a Inbox for the user satimiscyrus you have to use >> cm user/satimiscyrus >> >> The ^ is the reperentation of the . on filesystem. > > > Tried to delete the mailbox without success. Performed following > steps; > > > $ su - cyrus > Password: > > $ cyradm -u cyrus localhost > Password: > localhost> dm user.satimiscyrus > deletemailbox: Permission denied > > I can't delete the mailbox created previously. Because you need to give yourself the right before > sam user.satimiscyrus manager x or maybe > sam user.satimiscyrus manager c then > dm user.satimiscyrus > > > Continued > > localhost> cm user/satimiscyrus > localhost> lm > user.groupware (\HasNoChildren) user/satimiscyrus (\HasNoChildren) > > user.satimiscyrus (\HasNoChildren) > > Still can't create the subdirectory. I dont understand ! > > > Continued > localhost> quit > $ exit > logout > > > $ sudo updatedb in this case 'find' is more appropriate than locate > > > $ locate satimiscyrus find / -iname "*satimiscyrus*" > /home/satimiscyrus > /home/satimiscyrus/.bash_history > /home/satimiscyrus/.bash_logout > /home/satimiscyrus/.bash_profile > /home/satimiscyrus/.bashrc > /var/spool/cyrus/mail/s/user/satimiscyrus > /var/spool/cyrus/mail/s/user/satimiscyrus/cyrus.cache > /var/spool/cyrus/mail/s/user/satimiscyrus/cyrus.header > /var/spool/cyrus/mail/s/user/satimiscyrus/cyrus.index > /var/spool/cyrus/mail/u/user^satimiscyrus > /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.cache > /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.header > /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.index > * end * > > > Send a webmail to satimiscyrus on Gmail. The mail never arrives. Is your MX pointers configured ? Is your SMTP reachable from outside ? Did you look in postfix log ? > > > > B.R. > Stephen L > > Send instant messages to your online friends http://uk.messenger.yahoo.com > > Cyrus Home Page: http://cyrusimap.web.cmu.edu/ > Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki > List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html > -- Alain Spineux aspineux gmail com May the sources be with you Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Authentication problem
>
> --- Simon Matter <[EMAIL PROTECTED]> wrote:
>
> - snip -
>
>
>> > cyrus.conf and imapd.conf are as follows. Those lines, commented
>> out,
>> > have been deleted to shorten the length of this posting.
>>
>> OK, since you are using saslauthd you should also post the saslauthd
>> and
>> related configs (PAM or whatever mech you are using).
>
>
> $ cat /etc/default/saslauthd
> #
> # Settings for saslauthd daemon
> #
>
> # Should saslauthd run automatically on startup? (default: no)
> START=yes
>
> # Which authentication mechanisms should saslauthd use? (default: pam)
> #
> # Available options in this Debian package:
> # getpwent -- use the getpwent() library function
> # kerberos5 -- use Kerberos 5
> # pam -- use PAM
> # rimap -- use a remote IMAP server
> # shadow-- use the local shadow password file
> # sasldb-- use the local sasldb database file
> # ldap -- use LDAP (configuration is in /etc/saslauthd.conf)
> #
> # Only one option may be used at a time. See the saslauthd man page
> # for more information.
> #
> # Example: MECHANISMS="pam"
> MECHANISMS="pam"
>
> # Additional options for this mechanism. (default: none)
> # See the saslauthd man page for information about mech-specific
> options.
> MECH_OPTIONS=""
>
> # How many saslauthd processes should we run? (default: 5)
> # A value of 0 will fork a new process for each connection.
> THREADS=5
>
> # Other options (default: -c)
> # See the saslauthd man page for information about these options.
> #
> # Example for postfix users: "-c -m
> /var/spool/postfix/var/run/saslauthd"
> # Note: See /usr/share/doc/sasl2-bin/README.Debian
> OPTIONS="-c -m /var/spool/postfix/var/run/saslauthd -r"
> * end *
>
>
> $ locate pam
> /etc/pam.conf
> /etc/pam.d
> /etc/pam.d/atd
> /etc/pam.d/chage
> /etc/pam.d/chfn
> /etc/pam.d/chsh
> /etc/pam.d/common-account
> /etc/pam.d/common-auth
> /etc/pam.d/common-password
> /etc/pam.d/common-session
> /etc/pam.d/cron
> /etc/pam.d/cupsys
> /etc/pam.d/cvs
> /etc/pam.d/dovecot
> /etc/pam.d/groupadd
> /etc/pam.d/groupdel
> /etc/pam.d/groupmod
> /etc/pam.d/imap
> /etc/pam.d/lmtp
> /etc/pam.d/login
> /etc/pam.d/newusers
> /etc/pam.d/other
> /etc/pam.d/passwd
> /etc/pam.d/pop
> /etc/pam.d/ppp
> /etc/pam.d/sieve
> /etc/pam.d/ssh
> /etc/pam.d/su
> /etc/pam.d/sudo
> /etc/pam.d/useradd
> /etc/pam.d/userdel
> /etc/pam.d/usermod
> /etc/pam.d/vsftpd
For example /etc/pam.d/imap, /etc/pam.d/lmtp, /etc/pam.d/pop and
/etc/pam.d/sieve. How are they configured?
There is one more thing. You tried 'imtest -m login -p imap localhost' as
root which means per default it tries to authenticate as user root.
Maybe you want to try
imtest -m login -p imap -u satimiscyrus localhost
Simon
>
> .
> * end *
>
>
> $ cat /etc/pam.conf
> #
> ---#
> # /etc/pam.conf
> #
> #
> ---#
> #
> # NOTE
> #
> #
> # NOTE: Most program use a file under the /etc/pam.d/ directory to
> setup their
> # PAM service modules. This file is used only if that directory does
> not exist.
> #
> ---#
>
> # Format:
> # serv. module ctrl module [path] ...[args..]
> #
> # name type flag
> #
> * end *
>
>
> What other file/files I have to check ? Thanks.
>
>
>
> B.R.
> Stephen
>
>
>
>
>
>
>
>> > $ cat /etc/cyrus.conf
>> > # Debian defaults for Cyrus IMAP server/cluster implementation
>> > # see cyrus.conf(5) for more information
>> > #
>> > # All the tcp services are tcpd-wrapped. see hosts_access(5)
>> > # $Id: cyrus.conf 120 2005-05-01 03:23:18Z sven $
>> >
>> > START {
>> > # do not delete this entry!
>> > recover cmd="/usr/sbin/ctl_cyrusdb -r"
>> >
>> > # this is only necessary if using idled for IMAP IDLE
>> > # this is NOT to be enabled right now in Debian builds
>> > #idled cmd="idled"
>> >
>> > # this is useful on backend nodes of a Murder cluster
>> > # it causes the backend to syncronize its mailbox list with
>> > # the mupdate master upon startup
>> > #mupdatepush cmd="/usr/sbin/ctl_mboxlist -m"
>> >
>> > # this is recommended if using duplicate delivery
>> suppression
>> > delprunecmd="/usr/sbin/ctl_deliver -E 3"
>> > # this is recommended if caching TLS sessions
>> > tlsprunecmd="/usr/sbin/tls_prune"
>> > }
>> >
>> > # UNIX sockets start with a slash and are absolute paths
>> > # you can use a maxchild=# to limit the maximum number of forks of
>> a
>> > service
>> > # you can use babysit=true and maxforkrate=# to keep tight tabs on
>> the
>> > service
>> > # most services also accept -U (limit number of reuses) and -T
>> > (timeout)
>> > SERVICES {
>> > # --- Normal cyrus spool, or Murder backends ---
>> > # add or remove based on preference
Re: Authentication problem
> --- Simon Matter <[EMAIL PROTECTED]> wrote:
>
> - snip -
>
>> > Please advise where shall I check and how to fix the problem. TIA
>>
>> You should post your configs (/etc/cyrus.conf and /etc/imapd.conf)
>> which
>> will make it easier for someone to help you.
>
>
> Hi Simon,
>
>
> cyrus.conf and imapd.conf are as follows. Those lines, commented out,
> have been deleted to shorten the length of this posting.
OK, since you are using saslauthd you should also post the saslauthd and
related configs (PAM or whatever mech you are using).
Simon
>
>
> $ cat /etc/cyrus.conf
> # Debian defaults for Cyrus IMAP server/cluster implementation
> # see cyrus.conf(5) for more information
> #
> # All the tcp services are tcpd-wrapped. see hosts_access(5)
> # $Id: cyrus.conf 120 2005-05-01 03:23:18Z sven $
>
> START {
> # do not delete this entry!
> recover cmd="/usr/sbin/ctl_cyrusdb -r"
>
> # this is only necessary if using idled for IMAP IDLE
> # this is NOT to be enabled right now in Debian builds
> #idled cmd="idled"
>
> # this is useful on backend nodes of a Murder cluster
> # it causes the backend to syncronize its mailbox list with
> # the mupdate master upon startup
> #mupdatepush cmd="/usr/sbin/ctl_mboxlist -m"
>
> # this is recommended if using duplicate delivery suppression
> delprunecmd="/usr/sbin/ctl_deliver -E 3"
> # this is recommended if caching TLS sessions
> tlsprunecmd="/usr/sbin/tls_prune"
> }
>
> # UNIX sockets start with a slash and are absolute paths
> # you can use a maxchild=# to limit the maximum number of forks of a
> service
> # you can use babysit=true and maxforkrate=# to keep tight tabs on the
> service
> # most services also accept -U (limit number of reuses) and -T
> (timeout)
> SERVICES {
> # --- Normal cyrus spool, or Murder backends ---
> # add or remove based on preferences
> imapcmd="imapd -U 30" listen="imap" prefork=0
> maxchild=100
> imaps cmd="imapd -s -U 30" listen="imaps" prefork=0
> maxchild=100
> #pop3 cmd="pop3d -U 30" listen="pop3" prefork=0
> maxchild=50
> #pop3s cmd="pop3d -s -U 30" listen="pop3s" prefork=0
> maxchild=50
>
>
> #nntp cmd="nntpd -U 30" listen="nntp" prefork=0
> maxchild=100
> #nntps cmd="nntpd -s -U 30" listen="nntps" prefork=0
> maxchild=100
>
> # At least one form of LMTP is required for delivery
> # (you must keep the Unix socket name in sync with imap.conf)
> #lmtp cmd="lmtpd" listen="localhost:lmtp" prefork=0
> maxchild=20
> lmtpunixcmd="lmtpd" listen="/var/run/cyrus/socket/lmtp"
> prefork=0 maxchild=20
> # --
>
> # useful if you need to give users remote access to sieve
> # by default, we limit this to localhost in Debian
> sieve cmd="timsieved" listen="localhost:sieve"
> prefork=0 maxchild=100
>
> # this one is needed for the notification services
> notify cmd="notifyd"
> listen="/var/run/cyrus/socket/notify" proto="udp" prefork=1
>
> # --- Murder frontends -
>
> - snip -
>
>
> # --
> }
>
> EVENTS {
> # this is required
> checkpoint cmd="/usr/sbin/ctl_cyrusdb -c" period=30
>
> # this is only necessary if using duplicate delivery
> suppression
>
>
> delprunecmd="/usr/sbin/ctl_deliver -E 3" at=0401
>
> # this is only necessary if caching TLS sessions
> tlsprunecmd="/usr/sbin/tls_prune" at=0401
> }
>
> admins: cyrus
> unixhierarchysep: 1
> * end *
>
>
>
> $ cat /etc/imapd.conf
> # Debian Cyrus imapd.conf
> # $Id: imapd.conf 229 2005-12-08 23:26:29Z astronut $
> # See imapd.conf(5) for more information and more options
>
> # Configuration directory
> configdirectory: /var/lib/cyrus
>
> # Which partition to use for default mailboxes
> defaultpartition: default
> partition-default: /var/spool/cyrus/mail
>
> # News setup
> partition-news: /var/spool/cyrus/news
> newsspool: /var/spool/news
>
> # Alternate namespace
> # If enabled, activate the alternate namespace as documented in
> # /usr/share/doc/cyrus-doc-2.2/html/altnamespace.html, where an user's
> # subfolders are in the same level as the INBOX
> # See also userprefix and sharedprefix on imapd.conf(5)
> altnamespace: no
>
> # UNIX Hierarchy Convention
> # Set to yes, and cyrus will accept dots in names, and use the forward
> # slash "/" to delimit levels of the hierarchy. This is done by
> converting
> # internally all dots to "^", and all "/" to dots. So the
> "rabbit.holes"
> # mailbox of user "helmer.fudd" is stored in
> "user.elmer^fud.rabbit^holes"
> unixhierarchysep: yes
>
>
> - snip -
>
>
> # Uncomment the following and add th
Re: Authentication problem
--- Simon Matter <[EMAIL PROTECTED]> wrote:
- snip -
> > cyrus.conf and imapd.conf are as follows. Those lines, commented
> out,
> > have been deleted to shorten the length of this posting.
>
> OK, since you are using saslauthd you should also post the saslauthd
> and
> related configs (PAM or whatever mech you are using).
$ cat /etc/default/saslauthd
#
# Settings for saslauthd daemon
#
# Should saslauthd run automatically on startup? (default: no)
START=yes
# Which authentication mechanisms should saslauthd use? (default: pam)
#
# Available options in this Debian package:
# getpwent -- use the getpwent() library function
# kerberos5 -- use Kerberos 5
# pam -- use PAM
# rimap -- use a remote IMAP server
# shadow-- use the local shadow password file
# sasldb-- use the local sasldb database file
# ldap -- use LDAP (configuration is in /etc/saslauthd.conf)
#
# Only one option may be used at a time. See the saslauthd man page
# for more information.
#
# Example: MECHANISMS="pam"
MECHANISMS="pam"
# Additional options for this mechanism. (default: none)
# See the saslauthd man page for information about mech-specific
options.
MECH_OPTIONS=""
# How many saslauthd processes should we run? (default: 5)
# A value of 0 will fork a new process for each connection.
THREADS=5
# Other options (default: -c)
# See the saslauthd man page for information about these options.
#
# Example for postfix users: "-c -m
/var/spool/postfix/var/run/saslauthd"
# Note: See /usr/share/doc/sasl2-bin/README.Debian
OPTIONS="-c -m /var/spool/postfix/var/run/saslauthd -r"
* end *
$ locate pam
/etc/pam.conf
/etc/pam.d
/etc/pam.d/atd
/etc/pam.d/chage
/etc/pam.d/chfn
/etc/pam.d/chsh
/etc/pam.d/common-account
/etc/pam.d/common-auth
/etc/pam.d/common-password
/etc/pam.d/common-session
/etc/pam.d/cron
/etc/pam.d/cupsys
/etc/pam.d/cvs
/etc/pam.d/dovecot
/etc/pam.d/groupadd
/etc/pam.d/groupdel
/etc/pam.d/groupmod
/etc/pam.d/imap
/etc/pam.d/lmtp
/etc/pam.d/login
/etc/pam.d/newusers
/etc/pam.d/other
/etc/pam.d/passwd
/etc/pam.d/pop
/etc/pam.d/ppp
/etc/pam.d/sieve
/etc/pam.d/ssh
/etc/pam.d/su
/etc/pam.d/sudo
/etc/pam.d/useradd
/etc/pam.d/userdel
/etc/pam.d/usermod
/etc/pam.d/vsftpd
.
* end *
$ cat /etc/pam.conf
#
---#
# /etc/pam.conf
#
#
---#
#
# NOTE
#
#
# NOTE: Most program use a file under the /etc/pam.d/ directory to
setup their
# PAM service modules. This file is used only if that directory does
not exist.
#
---#
# Format:
# serv. module ctrl module [path] ...[args..]
#
# name type flag
#
* end *
What other file/files I have to check ? Thanks.
B.R.
Stephen
> > $ cat /etc/cyrus.conf
> > # Debian defaults for Cyrus IMAP server/cluster implementation
> > # see cyrus.conf(5) for more information
> > #
> > # All the tcp services are tcpd-wrapped. see hosts_access(5)
> > # $Id: cyrus.conf 120 2005-05-01 03:23:18Z sven $
> >
> > START {
> > # do not delete this entry!
> > recover cmd="/usr/sbin/ctl_cyrusdb -r"
> >
> > # this is only necessary if using idled for IMAP IDLE
> > # this is NOT to be enabled right now in Debian builds
> > #idled cmd="idled"
> >
> > # this is useful on backend nodes of a Murder cluster
> > # it causes the backend to syncronize its mailbox list with
> > # the mupdate master upon startup
> > #mupdatepush cmd="/usr/sbin/ctl_mboxlist -m"
> >
> > # this is recommended if using duplicate delivery
> suppression
> > delprunecmd="/usr/sbin/ctl_deliver -E 3"
> > # this is recommended if caching TLS sessions
> > tlsprunecmd="/usr/sbin/tls_prune"
> > }
> >
> > # UNIX sockets start with a slash and are absolute paths
> > # you can use a maxchild=# to limit the maximum number of forks of
> a
> > service
> > # you can use babysit=true and maxforkrate=# to keep tight tabs on
> the
> > service
> > # most services also accept -U (limit number of reuses) and -T
> > (timeout)
> > SERVICES {
> > # --- Normal cyrus spool, or Murder backends ---
> > # add or remove based on preferences
> > imapcmd="imapd -U 30" listen="imap" prefork=0
> > maxchild=100
> > imaps cmd="imapd -s -U 30" listen="imaps"
> prefork=0
> > maxchild=100
> > #pop3 cmd="pop3d -U 30" listen="pop3" prefork=0
> > maxchild=50
> > #pop3s cmd="pop3d -s -U 30" listen="pop3s"
> prefork=0
> > maxchild=50
> >
> >
> > #nntp cmd="nntpd -U 30" listen="nntp" prefork=0
> > maxchild=100
> > #nntps cmd="nntp
Re: Cyrus - can't create user mailbox
Hi Michael, Thanks for your advice. > Quoting Stephen Liu <[EMAIL PROTECTED]>: > > > > >> > $ cyradm -u cyrus localhost > >> > Password: > >> > localhost> cm user.satimiscyrus > >> > localhost> quit > >> > > >> > it works. But I can't find this new user NOR its mailbox. > >> > > $ locate satimiscyrus > > /var/spool/cyrus/mail/u/user^satimiscyrus > > /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.cache > > /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.header > > /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.index > > > > > > The mailbox is there. What is user^ for? > > This indicates that you have set unixhierarchysep: 1 in > /etc/imapd.conf $ cat /etc/imapd.conf | grep unixhierarchysep unixhierarchysep: yes It is set as "yes" > To create a Inbox for the user satimiscyrus you have to use > cm user/satimiscyrus > > The ^ is the reperentation of the . on filesystem. Tried to delete the mailbox without success. Performed following steps; $ su - cyrus Password: $ cyradm -u cyrus localhost Password: localhost> dm user.satimiscyrus deletemailbox: Permission denied I can't delete the mailbox created previously. Continued localhost> cm user/satimiscyrus localhost> lm user.groupware (\HasNoChildren) user/satimiscyrus (\HasNoChildren) user.satimiscyrus (\HasNoChildren) Still can't create the subdirectory. Continued localhost> quit $ exit logout $ sudo updatedb $ locate satimiscyrus /home/satimiscyrus /home/satimiscyrus/.bash_history /home/satimiscyrus/.bash_logout /home/satimiscyrus/.bash_profile /home/satimiscyrus/.bashrc /var/spool/cyrus/mail/s/user/satimiscyrus /var/spool/cyrus/mail/s/user/satimiscyrus/cyrus.cache /var/spool/cyrus/mail/s/user/satimiscyrus/cyrus.header /var/spool/cyrus/mail/s/user/satimiscyrus/cyrus.index /var/spool/cyrus/mail/u/user^satimiscyrus /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.cache /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.header /var/spool/cyrus/mail/u/user^satimiscyrus/cyrus.index * end * Send a webmail to satimiscyrus on Gmail. The mail never arrives. B.R. Stephen L Send instant messages to your online friends http://uk.messenger.yahoo.com Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Authentication problem
--- Simon Matter <[EMAIL PROTECTED]> wrote:
- snip -
> > Please advise where shall I check and how to fix the problem. TIA
>
> You should post your configs (/etc/cyrus.conf and /etc/imapd.conf)
> which
> will make it easier for someone to help you.
Hi Simon,
cyrus.conf and imapd.conf are as follows. Those lines, commented out,
have been deleted to shorten the length of this posting.
$ cat /etc/cyrus.conf
# Debian defaults for Cyrus IMAP server/cluster implementation
# see cyrus.conf(5) for more information
#
# All the tcp services are tcpd-wrapped. see hosts_access(5)
# $Id: cyrus.conf 120 2005-05-01 03:23:18Z sven $
START {
# do not delete this entry!
recover cmd="/usr/sbin/ctl_cyrusdb -r"
# this is only necessary if using idled for IMAP IDLE
# this is NOT to be enabled right now in Debian builds
#idled cmd="idled"
# this is useful on backend nodes of a Murder cluster
# it causes the backend to syncronize its mailbox list with
# the mupdate master upon startup
#mupdatepush cmd="/usr/sbin/ctl_mboxlist -m"
# this is recommended if using duplicate delivery suppression
delprunecmd="/usr/sbin/ctl_deliver -E 3"
# this is recommended if caching TLS sessions
tlsprunecmd="/usr/sbin/tls_prune"
}
# UNIX sockets start with a slash and are absolute paths
# you can use a maxchild=# to limit the maximum number of forks of a
service
# you can use babysit=true and maxforkrate=# to keep tight tabs on the
service
# most services also accept -U (limit number of reuses) and -T
(timeout)
SERVICES {
# --- Normal cyrus spool, or Murder backends ---
# add or remove based on preferences
imapcmd="imapd -U 30" listen="imap" prefork=0
maxchild=100
imaps cmd="imapd -s -U 30" listen="imaps" prefork=0
maxchild=100
#pop3 cmd="pop3d -U 30" listen="pop3" prefork=0
maxchild=50
#pop3s cmd="pop3d -s -U 30" listen="pop3s" prefork=0
maxchild=50
#nntp cmd="nntpd -U 30" listen="nntp" prefork=0
maxchild=100
#nntps cmd="nntpd -s -U 30" listen="nntps" prefork=0
maxchild=100
# At least one form of LMTP is required for delivery
# (you must keep the Unix socket name in sync with imap.conf)
#lmtp cmd="lmtpd" listen="localhost:lmtp" prefork=0
maxchild=20
lmtpunixcmd="lmtpd" listen="/var/run/cyrus/socket/lmtp"
prefork=0 maxchild=20
# --
# useful if you need to give users remote access to sieve
# by default, we limit this to localhost in Debian
sieve cmd="timsieved" listen="localhost:sieve"
prefork=0 maxchild=100
# this one is needed for the notification services
notify cmd="notifyd"
listen="/var/run/cyrus/socket/notify" proto="udp" prefork=1
# --- Murder frontends -
- snip -
# --
}
EVENTS {
# this is required
checkpoint cmd="/usr/sbin/ctl_cyrusdb -c" period=30
# this is only necessary if using duplicate delivery
suppression
delprunecmd="/usr/sbin/ctl_deliver -E 3" at=0401
# this is only necessary if caching TLS sessions
tlsprunecmd="/usr/sbin/tls_prune" at=0401
}
admins: cyrus
unixhierarchysep: 1
* end *
$ cat /etc/imapd.conf
# Debian Cyrus imapd.conf
# $Id: imapd.conf 229 2005-12-08 23:26:29Z astronut $
# See imapd.conf(5) for more information and more options
# Configuration directory
configdirectory: /var/lib/cyrus
# Which partition to use for default mailboxes
defaultpartition: default
partition-default: /var/spool/cyrus/mail
# News setup
partition-news: /var/spool/cyrus/news
newsspool: /var/spool/news
# Alternate namespace
# If enabled, activate the alternate namespace as documented in
# /usr/share/doc/cyrus-doc-2.2/html/altnamespace.html, where an user's
# subfolders are in the same level as the INBOX
# See also userprefix and sharedprefix on imapd.conf(5)
altnamespace: no
# UNIX Hierarchy Convention
# Set to yes, and cyrus will accept dots in names, and use the forward
# slash "/" to delimit levels of the hierarchy. This is done by
converting
# internally all dots to "^", and all "/" to dots. So the
"rabbit.holes"
# mailbox of user "helmer.fudd" is stored in
"user.elmer^fud.rabbit^holes"
unixhierarchysep: yes
- snip -
# Uncomment the following and add the space-separated users who
# have admin rights for all services.
admins: cyrus
- sni -
# No anonymous logins
#allowanonymouslogin: no
allowanonymouslogin: yes
# Minimum time between POP mail fetches in minutes
popminpoll: 1
# If nonzero, normal users may create their own IMAP accounts by
creating
# the mailbox INBOX. The user's quota is set to the value if it is
positive,
# otherw
Re: Authentication problem
> Hi folks,
>
>
> On running;
>
> $ su
>
> # imtest -m login -p imap localhost
> S: * OK lampserver Cyrus IMAP4 v2.2.12-Debian-2.2.12-4ubuntu1 server
> ready
> C: C01 CAPABILITY
> S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
> NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
> BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE
> AUTH=NTLM AUTH=ANONYMOUS AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR
> S: C01 OK Completed
> Please enter your password:
> C: L01 LOGIN root {9}
> S: + go ahead
> C:
> S: L01 NO Login failed: generic failure
> Authentication failed. generic failure
> Security strength factor: 0
> * end *
>
> It hangs there. I have to exit it manually;
>
> C: Q01 LOGOUT
> Connection closed.
>
>
> Please advise where shall I check and how to fix the problem. TIA
You should post your configs (/etc/cyrus.conf and /etc/imapd.conf) which
will make it easier for someone to help you.
Simon
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
