Re: [courier-users] Ldap Authentication
Vikas Kadam wrote: I have Installed and Configure qmail+ldap+pop3 which are working fine. I have installed Courier-imap-4.0.2 and courier-authlib but I am not able to authenticate through My Ldap Server. It gives me following Error Msg. ... a1 login sagar redhat * BYE Temporary problem, please try again later Check your mail logs. Make sure authdaemond is running. - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
[courier-users] Ldap Authentication
Hi I have Installed and Configure qmail+ldap+pop3 which are working fine. I have installed Courier-imap-4.0.2 and courier-authlib but I am not able to authenticate through My Ldap Server. It gives me following Error Msg. [EMAIL PROTECTED] root]# telnet localhost 143 Trying 127.0.0.1... Connected to localhost.localdomain (127.0.0.1). Escape character is '^]'. * OK [CAPABILITY IMAP4rev1 UIDPLUS CHILDREN NAMESPACE THREAD=ORDEREDSUBJECT THREAD=REFERENCES SORT QUOTA IDLE ACL ACL2=UNION STARTTLS] Courier-IMAP ready. Copyright 1998-2005 Double Precision, Inc. See COPYING for distribution information. a1 login sagar redhat * BYE Temporary problem, please try again later Connection closed by foreign host. Please suggest - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] Ldap Authentication problem
Ok.Thanks. Please, how can i do that ?? Carlos Sam Varshavchik gravada: Carlos Henrique writes: Ok. Thanks. But when i use this comand: ldapsearch -x -D 'cn=carlos,dc=uspedra,dc=br' -W 'uid=carlos' Enter LDAP Password: ** # carlos, uspedra.br dn: cn=carlos,dc=teste,dc=br cn: carlos ou: qmail sn: carlos objectClass: top objectClass: person objectClass: inetOrgPerson objectClass: qmailUser mail: [EMAIL PROTECTED] mailHost: 192.168.0.100 mailQuotaSize: 10 mailQuotaCount: 1 uid: carlos accountStatus: active userPassword:: c2FudG9z This is not a valid encrypted password. Part 1.2Type: application/pgp-signature Encoding: 7bit -- COMPROMETIMENTO ÉTICA Carlos Henrique F. Ribeiro - [EMAIL PROTECTED] Tecnologia Unidade I - Ribeirão Preto - SPFone: +55 16 618 0683 Unidade II - Jundiaí- SPFone: +55 11 4522 6644 --- PODIUM - Soluções Profissionais em Segurança da Informação Visite nosso site hoje - www.podium.com.br *** --- SF email is sponsored by - The IT Product Guide Read honest candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595alloc_id=14396op=click ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
[courier-users] Ldap Authentication problem
Friends, I trying use ldap + qmail + courier in my server. But i'm problems with autentication, when i use the outlook express. The error message is these: locate: /var/log/maillog Message: Apr 6 18:23:03 mickey authdaemond.ldap: supplied password 'podium' does not match encrypted password 'podium' Apr 6 18:23:03 mickey authdaemond.ldap: authldap: REJECT - try next module Apr 6 18:23:03 mickey authdaemond.ldap: FAIL, all modules rejected Apr 6 18:23:03 mickey pop3d: authdaemon: REJECT Apr 6 18:23:08 mickey pop3d: LOGIN FAILED, ip=[:::192.168.0.115] Please, somebody can help-me? I using brazilian distribuition Conectiva 10, with kernel 2.6.5 and openldap-devel-2.1.30-63291cl, openldap-2.1.30-63291cl openldap-server-2.1.30-63291cl, openldap-client-2.1.30-63291cl But who knows of something and use other distribuition, can help so. Tanks Carlos/Brazil --- SF email is sponsored by - The IT Product Guide Read honest candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595alloc_id=14396op=click ___ courier-users mailing list courier-users@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] Ldap Authentication problem
Carlos Henrique writes: Friends, I trying use ldap + qmail + courier in my server. But i'm problems with autentication, when i use the outlook express. The error message is these: locate: /var/log/maillog Message: Apr 6 18:23:03 mickey authdaemond.ldap: supplied password 'podium' does not match encrypted password 'podium' Apr 6 18:23:03 mickey authdaemond.ldap: authldap: REJECT - try next module Apr 6 18:23:03 mickey authdaemond.ldap: FAIL, all modules rejected Apr 6 18:23:03 mickey pop3d: authdaemon: REJECT Apr 6 18:23:08 mickey pop3d: LOGIN FAILED, ip=[:::192.168.0.115] Please, somebody can help-me? authdaemond is receiving a plain text password in an LDAP attribute when it expects to receive an encrypted password. Your password LDAP attribute fields are not set correctly. pgpUKoNOlu9o0.pgp Description: PGP signature
[courier-users] ldap authentication problem
hi, I have a working installation of courier-imap with an ldap backend. It all seems to work fine. I have noticed however, that sometimes (very seldom) POP3 login to the server would fail. After some investigation, I have also noticed that usually this happens when I am doing something on the server. Say run make command in apache or php directory. The auth failure should not be related to server load, as at the end of compile time, the load average is around 1.00. So I decided to trace the source of the problem. It appears that a search in LDAP database fails and returns no results in those particular moments. Did anyone have similar issues? here is debug log: Dec 7 00:29:37 s002 pop3d: Connection, ip=[195.14.168.195] Dec 7 00:29:37 s002 pop3d: LOGIN: DEBUG: ip=[195.14.168.195], command=USER Dec 7 00:29:37 s002 pop3d: LOGIN: DEBUG: ip=[195.14.168.195], command=PASS Dec 7 00:29:37 s002 pop3d: LOGIN: DEBUG: ip=[195.14.168.195], [EMAIL PROTECTED] Dec 7 00:29:37 s002 pop3d: LOGIN: DEBUG: ip=[195.14.168.195], password=** Dec 7 00:29:37 s002 pop3d: authdaemon: starting client module Dec 7 00:29:37 s002 authdaemond.ldap: received auth request, service=pop3, authtype=login Dec 7 00:29:37 s002 authdaemond.ldap: authldap: trying this module Dec 7 00:29:37 s002 authdaemond.ldap: using search filter: ([EMAIL PROTECTED]) Dec 7 00:29:40 s002 authdaemond.ldap: ldap_search_st() failed Dec 7 00:29:40 s002 authdaemond.ldap: authldap: TEMPFAIL - no more modules will be tried Dec 7 00:29:40 s002 pop3d: authdaemon: TEMPFAIL - no more modules will be tried Dec 7 00:29:45 s002 pop3d: LOGIN FAILED, ip=[195.14.168.195] thanks, Karolis --- SF email is sponsored by - The IT Product Guide Read honest candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://productguide.itmanagersjournal.com/ ___ courier-users mailing list [EMAIL PROTECTED] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
[courier-users] ldap authentication problem
I have a problem setting up courier for ldap authentication. When I send a message to a local user I am getting 450 Service temporarily unavailable. USERNAME unavailable. The ldap server is working because I can query a user: [EMAIL PROTECTED] courier]# ldapsearch -x -b o=mail.hmdc.harvard.edu '(uid=eray)' # extended LDIF # # LDAPv3 # base o=mail.hmdc.harvard.edu with scope sub # filter: (uid=eray) # requesting: ALL # # eray, mail.hmdc.harvard.edu dn: uid=eray,o=mail.hmdc.harvard.edu objectClass: inetOrgPerson objectClass: CourierMailAccount uid: eray uidNumber: 50 gidNumber: 501 cn: Erik Ray sn: Erik Ray homeDirectory: /var/spool/courier/mail/eray mailbox: /var/spool/courier/mail/eray ... The necessary processes are running: root 15308 0.0 0.1 5856 1652 ?SJul27 0:00 /usr/lib/courier/libexec/authlib/authdaemond.ldap start courier 15360 0.0 0.0 2400 436 ?SJul27 0:00 ./courieresmtp ... Here is my authldaprc file: [EMAIL PROTECTED] courier]# grep -v '^\#' authldaprc | sort LDAP_BASEDN o=mail.hmdc.harvard.edu LDAP_CLEARPWclearPassword LDAP_CRYPTPWuserPassword LDAP_DEFAULTDELIVERYdefaultDelivery LDAP_DEREF never LDAP_FULLNAME cn LDAP_HOMEDIRhomeDirectory LDAP_MAIL mail LDAP_MAILDIRmailbox LDAP_PORT 389 LDAP_SERVER localhost LDAP_TIMEOUT5 LDAP_TLS0 And my smtpaccess/default file: [EMAIL PROTECTED] courier]# grep -v '^\#' smtpaccess/default | sort 10allow,RELAYCLIENT 127.0.0.1 allow,RELAYCLIENT 140.247 allow,RELAYCLIENT 192.168 allow,RELAYCLIENT hamduck.hmdc.harvard.edu allow,RELAYCLIENT hmdc.harvard.edu allow,RELAYCLIENT Any help appreciated! -- Erik Ray Unix Systems Administrator Harvard-MIT Data Center Harvard University phone: (617) 496-5097mobile: (781) 710-1162 --- This SF.Net email is sponsored by OSTG. Have you noticed the changes on Linux.com, ITManagersJournal and NewsForge in the past few weeks? Now, one more big change to announce. We are now OSTG- Open Source Technology Group. Come see the changes on the new OSTG site. www.ostg.com ___ courier-users mailing list [EMAIL PROTECTED] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
[courier-users] ldap authentication
I'm still trying to get authldap working for courier-imap. This is on sol9/sparc and ldap server is IPlanet 5.1. LDAP libraries I used to link against are also from Sun/Netscape SDK User directories are local. No virtual domains. The base dn and other LDAP settings seem correct ( uidnumber, gidnumber, homedirectory, userpassword ) It seems to generate the search requests properly, which I can see in ldap log file, when it binds with a user name and password supplied, does a search and gets some values in return, but I can't tell what it does with those values after that. I simply get 001 NO Login failed. Does this mean it never receives the search results back or does authentication fail for some other reason ? Log output from LDAP server and truss output from authdaemond.ldap are below. thank you all in advance. [26/Apr/2004:13:09:46 -0400] conn=51474 fd=90 slot=90 connection from 192.168.1.2 to 192.168.1.3 [26/Apr/2004:13:09:46 -0400] conn=51474 op=0 BIND dn= method=128 version=2 [26/Apr/2004:13:09:46 -0400] conn=51474 op=0 RESULT err=0 tag=97 nentries=0 etime=0 dn= [26/Apr/2004:13:09:46 -0400] conn=51474 op=1 SRCH base=ou=people,dc=domain,dc=com scope=2 filter=(uid=user) attrs=homeDirectory cn userPassword uidNumber gidNumber uid [26/Apr/2004:13:09:46 -0400] conn=51474 op=1 RESULT err=0 tag=101 nentries=1 etime=0 - truss truss -p 1898 poll(0xFFBFFA20, 2, 30) (sleeping...) poll(0xFFBFFA20, 2, 30) = 1 accept(8, 0xFFBFFB84, 0xFFBFFB94, 1)= 4 fcntl(4, F_SETFL, 0x) = 0 poll(0xFFBFF4F0, 1, 1) = 1 read(4, A U T H 2 9\n i m a p.., 1024) = 38 open(/usr/libexec/courier/etc/authldaprc, O_RDONLY) = 6 fstat(6, 0xFFBFF360)= 0 fstat64(6, 0xFFBFF1A8) = 0 brk(0x0003E148) = 0 brk(0x00040148) = 0 fstat64(6, 0xFFBFF050) = 0 ioctl(6, TCGETA, 0xFFBFF134)Err#25 ENOTTY read(6, # # V E R S I O N : $.., 8192) = 7273 open(/etc/netconfig, O_RDONLY|O_LARGEFILE)= 9 fcntl(9, F_DUPFD, 0x0100) Err#22 EINVAL read(9, # p r a g m a i d e n.., 1024) = 1024 read(9, t s t p i _ c.., 1024) = 215 read(9, 0x000376B0, 1024) = 0 lseek(9, 0, SEEK_SET) = 0 read(9, # p r a g m a i d e n.., 1024) = 1024 read(9, t s t p i _ c.., 1024) = 215 read(9, 0x000376B0, 1024) = 0 close(9)= 0 open(/dev/udp, O_RDONLY) = 9 ioctl(9, 0xC00C6982, 0xFFBFEB34)= 0 close(9)= 0 open64(/var/run/name_service_door, O_RDONLY) = 9 fcntl(9, F_SETFD, 0x0001) = 0 door_info(9, 0xFF042748)= 0 door_call(9, 0xFFBFCAA0)= 0 so_socket(PF_INET, SOCK_STREAM, IPPROTO_IP, , 1) = 10 sigfillset(0xFF042940) = 0 sigprocmask(SIG_BLOCK, 0xFFBFED00, 0xFFBFECF0) = 0 fcntl(10, F_GETFL, 0x) = 2 fcntl(10, F_SETFL, 0x0082) = 0 connect(10, 0xFFBFED10, 16, 1) Err#150 EINPROGRESS poll(0xFFBFEAB0, 1, -1) = 1 getsockopt(10, SOL_SOCKET, SO_ERROR, 0xFFBFEC84, 0xFFBFEB78, 1) = 0 fcntl(10, F_SETFL, 0x0002) = 0 sigprocmask(SIG_SETMASK, 0xFFBFECF0, 0x) = 0 time() = 1082999111 write(10, 0\f020101 `0702010204\0.., 14) = 14 poll(0x000376F0, 5, -1) = 1 brk(0x00040148) = 0 brk(0x00042148) = 0 read(10, 0\f020101 a07\n01\004\0.., 8192)= 14 time() = 1082999111 time() = 1082999111 write(10, 08181020102 c |041F o u.., 132)= 132 time() = 1082999111 poll(0x000376F0, 5, 5000) = 1 read(10, 081A0020102 d819A04 ) u.., 8192)= 177 time() = 1082999111 time() = 1082999111 poll(0xFFBFF490, 1, 3) = 1 write(4, F A I L\n, 5) = 5 close(4)= 0 poll(0xFFBFFA20, 2, 30) (sleeping...) --- This SF.net email is sponsored by: The Robotic Monkeys at ThinkGeek For a limited time only, get FREE Ground shipping on all orders of $35 or more. Hurry up and shop folks, this offer expires April 30th! http://www.thinkgeek.com/freeshipping/?cpg=12297 ___ courier-users mailing list [EMAIL PROTECTED] Unsubscribe:
[courier-users] ldap authentication
I'm having problem authenticating to courier-imapd server. It is runing autmldap module, and I belive it gets all the info it need from the OpenLdap server. In /var/log/messages I get this error msg. authdaemond.ldap: authlib: refuse to authenticate [EMAIL PROTECTED]: uid=0, gid=0 And the client tells me that there is a problem with the password or the username ? Any ide? roger helgesen ___ Don't miss the 2002 Sprint PCS Application Developer's Conference August 25-28 in Las Vegas - http://devcon.sprintpcs.com/adp/index.cfm?source=osdntextlink ___ courier-users mailing list [EMAIL PROTECTED] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
[courier-users] LDAP Authentication
I believe I have everything configured correctly. I modified the authldaprc file and the authdaemond files. I changed a few thing in authldap so it searches for uid rather than mail. I am logging my ldap and it seems to be doing what it is supposed to. By this I mean it found my complete dn from the uid and password I supplied, but does not bring up my inbox. The last few lines of my ldap log show: = send_search_entry entry_rdwr_runlock: ID: 3 cache_return_entry_r( 3 ): created (0) send_ldap_search_result 0:: send_ldap_response: msgid=2 tag=101 err=0 conn=0 op=1 SEARCH RESULT tag-101 err=0 txt= The last few lines of millog show: Connection, ip=[:::192.168.0.136] LOGIN FAILED, ip=[:::192.168.0.136] What else can I do to see what is happening? Does anyone have any insight or suggestions? TIA James Stevens ___ courier-users mailing list [EMAIL PROTECTED] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
Re: [courier-users] LDAP Authentication
What else can I do to see what is happening? Does anyone have any insight or suggestions ? Have you used the courierauthtest script that is part of the courier-debug package ? This will give feedback like this if it is not working: imap-mail:/home/staff# courierauthtest useradmin2 useradmin2 Temporary authentication failure from module authdaemon Authentication FAILED! imap-mail:/home/staff# courierauthtest tester1 tester1 Temporary authentication failure from module authdaemon Authentication FAILED! Then you can look in the syslog to find out why: Apr 11 16:23:21 imap-mail authdaemond.ldap: ldap_simple_bind_s failed: Invalid credentials Apr 11 16:23:57 imap-mail authdaemond.ldap: ldap_simple_bind_s failed: Invalid credentials Apr 11 16:24:42 imap-mail authdaemond.ldap: ldap_simple_bind_s failed: Invalid credentia -- * *Theodore Knab * * --- * * ___ courier-users mailing list [EMAIL PROTECTED] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users