Re: Building cyrus sasl on solaris 10
Egoitz, Egoitz Aurrekoetxea wrote: I'm trying to build a mail machine box with Postfix (cyrus saslauthd authentication), cyrus sasl (with saslauthd) and cyrus-imap. The main problem I'm finding for the moment is that when building cyrus sasl plugins... only static libraries are created for auth mechs We had to do some fiddling to get Cyrus SASL working under Solaris 10. It involved hacking some of the source files after running configure! ./configure \ --enable-shared \ --disable-static \ --disable-java \ --disable-krb4 \ --with-gss_impl=mit \ --with-rc4 \ --with-dblib=berkeley \ --with-saslauthd=/var/sasl2 --without-pwcheck \ --with-devrandom=/dev/urandom \ --enable-anon \ --enable-cram \ --enable-digest \ --enable-ntlm \ --enable-plain \ --enable-login \ --without-ldap \ --disable-otp \ --disable-ldapdb \ --disable-sql --without-mysql --without-pgsql --without-sqlite \ --enable-gssapi=$KERBEROSDIR \ --with-openssl=$OPENSSLDIR # don't use /usr/include/crypt.h cp saslauthd/saslauthd.h saslauthd/saslauthd.h.orig sed -e 's:^.*HAVE_CRYPT_H.*$:/* */:' saslauthd/saslauthd.h.orig saslauthd/saslauthd.h [ $? -eq 0 ] || exit 1 # fiddle to get correct dynamic linking for plugins.. # haven't found a nice way to propogate the following through # the likes of LD or LDFLAGS..so hardwiring.. cp libtool libtool.orig sed -e s:^\(LD *=.*\)\:\1 $LDFLAGS\: libtool.orig libtool [ $? -eq 0 ] || exit 1 make make install Hope this is of some help. Regards, Dave. David Mayo Networks/Systems Administrator University of Bath Computing Services, UK Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: OT: Enhanced IMAP protocol
On Tue, 2010-01-05 at 23:47 -0800, Rob Banz wrote: I would argue that it's out of scope -- credential management should be taken care of by your credential management system, be it through a web interface or whatever. Even if it were to be an accepted spec, the chances of all of the client-writers implementing it, and in a reasonable way, are slim to none. Ditto, clients will never support such a thing. And it wouldn't be simple - updating credentials how? Kerberos (which credentials?), LDAP (which credentials? EXOP or direct update?), PLAIN, etc? I'd bet more on clients providing a reasonable interface to the IMAP motd -- which, after authentication, would be a great way to let the user know that their password needs to be changed. Agree. Some way to hook in an auto-generated per-user motd would be *sweet*. Would it be practical to have common protocols like IMAP to support enhanced features It does. Condstore, annotations, compression, ACLs, etc... and most (all?) clients merrily ignore them. The advantage is that the MUA can support change password and the user experience will be a lot better having only a single familiar app to deal with. AGREE. If only everyone used Kerberos. And I'd like the clients to support SRV for locating their SMTP and IMAP servers; or at least TXT [something!] And to support viewing and updating permissions on folders, again, at long last. And managing SIEVE filters. Sadly, it is never going to happen. -- OpenGroupware developer: awill...@whitemice.org http://whitemiceconsulting.blogspot.com/ OpenGroupare Cyrus IMAPd documenation @ http://docs.opengroupware.org/Members/whitemice/wmogag/file_view Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: OT: Enhanced IMAP protocol
On Tue, 2010-01-05 at 23:47 -0800, Rob Banz wrote: I would argue that it's out of scope -- credential management should be taken care of by your credential management system, be it through a web interface or whatever. Even if it were to be an accepted spec, the chances of all of the client-writers implementing it, and in a reasonable way, are slim to none. Everyone need not implement it. If the protocol is available , I definitely know thunderbird will have at least one extension within 2 days :-) Most smaller companies I know of use username passwords only for mail Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Thunderbird and server-side searches
Hello! I am running cyrus imapd 2.2 on debian etch, Thunderbird 2 and Thunderbird 3 are used as MUAs. This is configured properly and works very well since years now, but there is the following problem: The search never has worked as expected. Specifically, if I call Thunderbird's search dialogue (not some search box, but the dedicated search window which you get by ctrl-shift-f), there is the option to run the search locally or server-side. Local search works, but is limited because TB only can search what is downloaded already to the local mailbox index on the local harddisk (for example, subjects, senders and so on). But now there is the need to search the message bodies. So, on the server, I have activated squatter and looked into the log files to ensure that squatter was working correctly (which was the case). But if I use the server-side search in Thunderbird (by checking Run search on server in TB3's didicated search window), it returns no or a random selection of messages. Messages which I know to contain a certain keyword are not returned by the search; in the best case, a part of these messages is returned. This is regardless if I search for subject contents or body contents. I cannot figure out if the error is at the client side or the server side. Could some please shed some light on this? For example, I could imagine if there is a special requirement on the encoding of the search commands which are transferred from the client to the server... Thanks a lot for any help, Peter Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: OT: Enhanced IMAP protocol
On Jan 6, 2010, at 10:05 AM, ram wrote: Everyone need not implement it. If the protocol is available , I definitely know thunderbird will have at least one extension within 2 days :-) That's great for Thunderbird, but how about all of the MUAs out there. Password changes via email system has already been tried in the past in the form of Qualcomm's poppassd daemon which came with their qpopper POP3 daemon. Even this, which existed as far back as the mid-90's if not earlier, wasn't widely adopted in email clients even tough it was a simple protocol to speak. The only thing poppassd grok'd was UNIX /etc/passwd and in environments which utilized NIS, Kerberos, or later, LDAP, this service was useless. As Rob put it, user credential management is really outside the scope of a email storage and retrieval system. Leave this aspect up to software designed to do that very thing which, by and large, would also do it better. Cyrus-IMAP and other mail systems should be focusing on enhancements which are relevant to mail and, as far as protocol extensions go, be useful to as many clients as possible. /dale Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: OT: Enhanced IMAP protocol
On Wed, 2010-01-06 at 13:08 -0500, Dale Ghent wrote: On Jan 6, 2010, at 10:05 AM, ram wrote: Everyone need not implement it. If the protocol is available , I definitely know thunderbird will have at least one extension within 2 days :-) As Rob put it, user credential management is really outside the scope of a email storage and retrieval system. Leave this aspect up to software designed to do that very thing which, by and large, would also do it better. Cyrus-IMAP and other mail systems should be focusing on enhancements which are relevant to mail and, as far as protocol extensions go, be useful to as many clients as possible. I'd be surprised if whatever webmail package you were using didn't offer some kind of password management. We're using Horde because of its passwd and Ingo (sieve) modules that allow people to manage the password and filters from one interface. Z Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: OT: Enhanced IMAP protocol
On Wed, 2010-01-06 at 20:35 +0530, ram wrote: On Tue, 2010-01-05 at 23:47 -0800, Rob Banz wrote: I would argue that it's out of scope -- credential management should be taken care of by your credential management system, be it through a web interface or whatever. Even if it were to be an accepted spec, the chances of all of the client-writers implementing it, and in a reasonable way, are slim to none. Everyone need not implement it. If the protocol is available , I definitely know thunderbird will have at least one extension within 2 days :-) Nothing is stopping you, or anyone, from creating a password management service and creating a related plugin/extension for TB. This just doesn't have anything more to do with IMAP than it does with SMTP (why not extend the SMTP server?). Most smaller companies I know of use username passwords only for mail Seriously?! I do not share your experience. They must be very very small if they have no shared resources beyond e-mail. Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: OT: Enhanced IMAP protocol
On Wed, 2010-01-06 at 13:50 -0500, Adam Tauno Williams wrote: On Wed, 2010-01-06 at 20:35 +0530, ram wrote: On Tue, 2010-01-05 at 23:47 -0800, Rob Banz wrote: I would argue that it's out of scope -- credential management should be taken care of by your credential management system, be it through a web interface or whatever. Even if it were to be an accepted spec, the chances of all of the client-writers implementing it, and in a reasonable way, are slim to none. Everyone need not implement it. If the protocol is available , I definitely know thunderbird will have at least one extension within 2 days :-) Nothing is stopping you, or anyone, from creating a password management service and creating a related plugin/extension for TB. This just doesn't have anything more to do with IMAP than it does with SMTP (why not extend the SMTP server?). Right , Password change can be implemented at SMTP too. And MUA plugins are not the only advantages I was infact watching my inbound mails quarantine and we are getting hundreds of 419s from a US university mail server There is a stupid account called test with password as test ( I tested that myself! ) .. If there was a password change available at SMTP or IMAP I would have done the mailadmin a favor by changing the password of the account and stop further damage. Most smaller companies I know of use username passwords only for mail Seriously?! I do not share your experience. They must be very very small if they have no shared resources beyond e-mail. Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html