Re: Permission denied with creating mailboxes
Manfred, Obvious question: is 'cyrus' listed as an administrator on the 'admins:' line in imapd.conf? If not, do it then restart or reload cyrus. Steve Manfred Rebentisch wrote: Hello, I use debian etch with cyrus 2.2 and sasl2. cyradm --user cyrus --server localhost IMAP Password: localhost localhost localhost cm users.testusr createmailbox: Permission denied I cannot find out, why this happens. There are no log messages, no information about the reasons. It should be nice to get reasons from the program... I do check the ownership of files (/etc/sasldb2, /var/lib/cyrus/*, /imap/*) and so on. I think, the user cyrus has not the right to create mailboxes. But I don't know, how to set this right. Thank you for tips. Manfred Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Can list mailboxes through impad. limtpd cannot
Just in case someone else has this problem, here is the cause of my
wasted hours.
I had unixheirarchysep set to yes ( that's what I wanted ).
This meant that to create a mailbox using cyradm I should have typed
cm user/[EMAIL PROTECTED]
The forward slash between user and sforster is required because a full
stop would be considered as part of the username ( that's what
unixheirarchysep: yes is for. Seems blindingly obvious now of course. )
Instead I typed:
cm [EMAIL PROTECTED]
That created an mailbox [EMAIL PROTECTED] in the cyrus
spool mail tree, which I was able to list using cyradm or through
imapd... unfortunately, what I ought to have created and have been able
to list - if unixheirarchysep is set to 'yes' - was an account
user/[EMAIL PROTECTED]
My persistent misreading of the email account syntax listed through
cyradm, and the attempt to deliver to a similarly named, but different
email account, lead me to believe the problem rested with the
configuration of cyrus lmtpd... and many hours of installs, reconfigs,
hundreds of bounced and queued test emails, and dozens cups of coffee
resulted.
Hope that saves someone a bit of angst.
Steve
Stephen Forster wrote:
FORMER 03 | Baltasar Cevc wrote:
Hi Stephen,
On 05.04.2007, at 15:01, Stephen Forster wrote:
I am running cyrus imap 2.2 ( Debian etch package ) and have been
trying
to configure it to accept connections through lmtpd tcp/ip.
I can connect though imapd using telnet, or imtest or cyradm using the
admin user listed in /etc/imapd.conf. In each case, the admin user is
authenticated, and can list the mailboxes.
I'd use lmtpd -a in cyrus.conf to test whether it's an authentication
problem. You surely shouldn't leave that setting (preauth
connection), but for debugging, it may be useful.
Hi Baltasar,
Thanks for your reply. I feel as though I have tried everything ( but
obviously have missed something )
In any case, I tried lmtpd -a and tested the connections again.
Below is the output from lmtptest, cyradm and the imtest to the imapd port.
Still no joy via lmtp.
# From the lmtptest interaction
mail from:[EMAIL PROTECTED]
250 2.1.0 ok
rcpt to:[EMAIL PROTECTED]
550-Mailbox unknown. Either there is no mailbox associated with this
550-name or you do not have authorization to see it.
550 5.1.1 User unknown
# The output from /var/log/mail.log showing unsuccesful listing of
mailbox via lmtp:
Apr 6 19:47:47 malthus cyrus/lmtp[4281]: accepted connection
Apr 6 19:47:47 malthus cyrus/lmtp[4281]: connection from
malthus.kidik.net [81.187.233.169] preauth'd as postman
Apr 6 19:53:08 malthus cyrus/lmtp[4281]:
verify_user(monkey.kidik.net!user.sforster) failed: Mailbox does not exist
...
# cyradm output showing the existence of the '[EMAIL PROTECTED]'
mailbox and the open permissions.
[EMAIL PROTECTED]:/etc$ cyradm --user cyrus localhost
Password:
localhost lm
user.sforster (\HasNoChildren)
[EMAIL PROTECTED] (\HasNoChildren)
[EMAIL PROTECTED] (\HasNoChildren)
localhost lam
usage: listaclmailbox mailbox
localhost lam [EMAIL PROTECTED]
all lrswipcda
anyone lrswipcda
localhost
# Finally, I list the interaction with imapd using imtest. The
'[EMAIL PROTECTED]' mailbox is listed no problem.
[EMAIL PROTECTED]:/etc$ imtest -acyrus -u cyrus -m login malthus.kidik.net
S: * OK kidik.net Cyrus IMAP4 v2.2.13-Debian-2.2.13-10 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE
AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN cyrus {6}
S: + go ahead
C: omitted
S: L01 OK User logged in
Authenticated.
Security strength factor: 0
C: select [EMAIL PROTECTED]
* FLAGS (\Answered \Flagged \Draft \Deleted \Seen)
* OK [PERMANENTFLAGS (\Answered \Flagged \Draft \Deleted \Seen \*)]
* 0 EXISTS
* 0 RECENT
* OK [UIDVALIDITY 1173562958]
* OK [UIDNEXT 1]
C: OK [READ-WRITE] Completed
...
Any advice or suggestions gratefully received.
Stephen Forster
--
Baltasar Cevc
_ FORMER 03 GmbH
_ infanteriestraße 19 haus 6 eg
_ D-80797 muenchen
_ http://www.former03.de
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Can list mailboxes through impad. limtpd cannot
FORMER 03 | Baltasar Cevc wrote:
Hi Stephen,
On 05.04.2007, at 15:01, Stephen Forster wrote:
I am running cyrus imap 2.2 ( Debian etch package ) and have been
trying
to configure it to accept connections through lmtpd tcp/ip.
I can connect though imapd using telnet, or imtest or cyradm using the
admin user listed in /etc/imapd.conf. In each case, the admin user is
authenticated, and can list the mailboxes.
I'd use lmtpd -a in cyrus.conf to test whether it's an authentication
problem. You surely shouldn't leave that setting (preauth
connection), but for debugging, it may be useful.
Hi Baltasar,
Thanks for your reply. I feel as though I have tried everything ( but
obviously have missed something )
In any case, I tried lmtpd -a and tested the connections again.
Below is the output from lmtptest, cyradm and the imtest to the imapd port.
Still no joy via lmtp.
# From the lmtptest interaction
mail from:[EMAIL PROTECTED]
250 2.1.0 ok
rcpt to:[EMAIL PROTECTED]
550-Mailbox unknown. Either there is no mailbox associated with this
550-name or you do not have authorization to see it.
550 5.1.1 User unknown
# The output from /var/log/mail.log showing unsuccesful listing of
mailbox via lmtp:
Apr 6 19:47:47 malthus cyrus/lmtp[4281]: accepted connection
Apr 6 19:47:47 malthus cyrus/lmtp[4281]: connection from
malthus.kidik.net [81.187.233.169] preauth'd as postman
Apr 6 19:53:08 malthus cyrus/lmtp[4281]:
verify_user(monkey.kidik.net!user.sforster) failed: Mailbox does not exist
...
# cyradm output showing the existence of the '[EMAIL PROTECTED]'
mailbox and the open permissions.
[EMAIL PROTECTED]:/etc$ cyradm --user cyrus localhost
Password:
localhost lm
user.sforster (\HasNoChildren)
[EMAIL PROTECTED] (\HasNoChildren)
[EMAIL PROTECTED] (\HasNoChildren)
localhost lam
usage: listaclmailbox mailbox
localhost lam [EMAIL PROTECTED]
all lrswipcda
anyone lrswipcda
localhost
# Finally, I list the interaction with imapd using imtest. The
'[EMAIL PROTECTED]' mailbox is listed no problem.
[EMAIL PROTECTED]:/etc$ imtest -acyrus -u cyrus -m login malthus.kidik.net
S: * OK kidik.net Cyrus IMAP4 v2.2.13-Debian-2.2.13-10 server ready
C: C01 CAPABILITY
S: * CAPABILITY IMAP4 IMAP4rev1 ACL QUOTA LITERAL+ MAILBOX-REFERRALS
NAMESPACE UIDPLUS ID NO_ATOMIC_RENAME UNSELECT CHILDREN MULTIAPPEND
BINARY SORT THREAD=ORDEREDSUBJECT THREAD=REFERENCES ANNOTATEMORE IDLE
AUTH=DIGEST-MD5 AUTH=CRAM-MD5 SASL-IR
S: C01 OK Completed
Please enter your password:
C: L01 LOGIN cyrus {6}
S: + go ahead
C: omitted
S: L01 OK User logged in
Authenticated.
Security strength factor: 0
C: select [EMAIL PROTECTED]
* FLAGS (\Answered \Flagged \Draft \Deleted \Seen)
* OK [PERMANENTFLAGS (\Answered \Flagged \Draft \Deleted \Seen \*)]
* 0 EXISTS
* 0 RECENT
* OK [UIDVALIDITY 1173562958]
* OK [UIDNEXT 1]
C: OK [READ-WRITE] Completed
...
Any advice or suggestions gratefully received.
Stephen Forster
--
Baltasar Cevc
_ FORMER 03 GmbH
_ infanteriestraße 19 haus 6 eg
_ D-80797 muenchen
_ http://www.former03.de
Cyrus Home Page: http://cyrusimap.web.cmu.edu/
Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Can list mailboxes through impad. limtpd cannot
Hello, I am running cyrus imap 2.2 ( Debian etch package ) and have been trying to configure it to accept connections through lmtpd tcp/ip. I can connect though imapd using telnet, or imtest or cyradm using the admin user listed in /etc/imapd.conf. In each case, the admin user is authenticated, and can list the mailboxes. I can also connect through lmtpd using telnet or lmtest. In each case the admin user is authenticated but cannot list the mailboxes. I have monitored the connections through strace, ltrace and via the usual /var/log/mail.log and /var/log/auth.log to see if the user was being authenticated properly ( it was via cyrus sasl auxprop and postgres tables for what it's worth ) I can also see that lmtpd is opening mailboxes.db but then shortly afterwards, reports that the mailbox requested does not exist or I do not have permission to view it. They do exist, and the permissions are for anyone to read the mailbox in question. I can list them through imapd/cyradm. I have changed many settings over several days, and deleted then re-installed cyrus - along with the config files - twice, in an attempt to figure out what is wrong, but I have never been able to list mailboxes through lmtpd. I know I have made a fundamental error somewhere. Any pointers would be much appreciated. I am happy to supply any logs, config files etc. Thanks for any pointers. Steve Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
