Re: [exim] PLAIN authenticator that checks against two data sources

2017-08-09 Thread Mike Brudenell via Exim-users
On 9 August 2017 at 16:15, Jeremy Harris wrote: > It's explicitly how it's coded. > Agreed: I believe I've tracked down the relevant bit of code, in src/lookups/ldap.c /* Invalid credentials when just checking credentials returns FAIL. This stops any further servers being

Re: [exim] PLAIN authenticator that checks against two data sources

2017-08-09 Thread Mike Brudenell via Exim-users
Thanks, Jeremy… I feared that might be the case but nursed a hope it would be an easy way out of my problem: having two separate authenticator mechanisms. (I've read and re-read the *Specification* but couldn't spot it saying anywhere that only one authenticator mechanism was permitted for a

Re: [exim] PLAIN authenticator that checks against two data sources

2017-08-09 Thread Jeremy Harris
On 09/08/17 10:58, Mike Brudenell via Exim-users wrote: > (I've read and re-read the *Specification* but couldn't spot it saying > anywhere that only one authenticator mechanism was permitted for a given > public-name.) I don't think it does. But there's code checking for it while reading the

Re: [exim] PLAIN authenticator that checks against two data sources

2017-08-09 Thread Mike Brudenell via Exim-users
Hi, I'm debugging this again using our Ubuntu packaged Exim version 4.86_2 #1, and trying to work out what's wrong with my configuration by going back to a really simple setup that will always fail: server_condition = ${if eq{0}{1} {true} {false}} This correctly gives rise to the SMTP

Re: [exim] PLAIN authenticator that checks against two data sources

2017-08-09 Thread Jeremy Harris
On 09/08/17 12:58, Mike Brudenell via Exim-users wrote: > 12:36:39 23140 LDAP parameters: user=uid=baduser,ou=blah,dc=uk > pass=badpassword size=0 time=0 connect=0 dereference=0 referrals=on Does the ou=blah exist? This might be a factor, presenting an invalid query not just an invalid user.

Re: [exim] PLAIN authenticator that checks against two data sources

2017-08-09 Thread Nigel Metheringham
I've not been following this in detail, but are you not asking for something analogous to the configuration described in this:- https://github.com/Exim/exim/wiki/AuthenticatedSmtpUsingPamAndPasswords Also, if there are multiple auth possibilities I think this can also be expressed within PAM.

Re: [exim] PLAIN authenticator that checks against two data sources

2017-08-09 Thread Jeremy Harris
On 09/08/17 15:19, Mike Brudenell via Exim-users wrote: >- Supply a valid username and valid password: Authentication succeeds >- Supply a valid username and invalid password: Authentication fails >with "535 Incorrect authentication data" >- Supply an invalid username and a

Re: [exim] PLAIN authenticator that checks against two data sources

2017-08-09 Thread Mike Brudenell via Exim-users
Hi, Jeremy and Nigel - On 9 August 2017 at 13:39, Jeremy Harris wrote: > On 09/08/17 12:58, Mike Brudenell via Exim-users wrote: > > 12:36:39 23140 LDAP parameters: user=uid=baduser,ou=blah,dc=uk > > pass=badpassword size=0 time=0 connect=0 dereference=0 referrals=on > > Does