problem in Authentication.
I have an openexchange setup with Cyrus Imap and SASL authentication. May 16 11:40:38 mail pop3[7641]: badlogin: [192.168.1.68] plaintext matthew_sullivan SASL(-13): authentication failure: checkpass failed May 16 11:40:38 mail pop3[7640]: badlogin: [192.168.1.69] plaintext duncan SASL(-13): authentication failure: checkpass failed May 16 11:52:04 mail pop3[7713]: badlogin: [192.168.1.114] plaintext s.kim SASL(-13): authentication failure: checkpass failed May 16 11:52:04 mail pop3[7650]: badlogin: [192.168.1.52] plaintext sajiv SASL(-13): authentication failure: checkpass failed The system was up about 1 year and I never faced this problem. Also I haven't changed any settings in the configuration. Since yesterday I am getting this RANDOM authentication failure and would appreciate if you could help me, Regards Rajeev My configuration is as below:- [EMAIL PROTECTED] ~]# rpm -qa |grep cyrus cyrus-sasl-md5-2.1.19-5.EL4 cyrus-sasl-devel-2.1.19-5.EL4 cyrus-imapd-utils-2.2.12-3.RHEL4.1 cyrus-sasl-2.1.19-5.EL4 cyrus-imapd-2.2.12-3.RHEL4.1 cyrus-sasl-plain-2.1.19-5.EL4 /etc/saslauthd.conf is as below: [EMAIL PROTECTED] ~]# cat /etc/saslauthd.conf ldap_servers: ldap://127.0.0.1:389/ #ldap_bind_dn: cn=admin,dc=DOMAIN,dc=com #ldap_password: secret ldap_search_base: ou=Users,ou=OxObjects,dc=DOMAIN,dc=com #ldap_default_realm: DOMAIN.com #ldap_use_sasl: yes ldap_auth_mech: PLAIN IMAP CONFIG IS cat /etc/imapd.conf configdirectory: /var/lib/imap defaultpartition: default partition-default: /var/spool/imap unixhierarchysep: yes domain_as_prefix: 1 lmtp_downcase_rcpt: yes admins: mailadmin cyrus quotawarn: 90 lmtp_overquota_perm_failure: no virtdomains: userid defaultdomain: Domain.com sendmail: /usr/sbin/sendmail.postfix allowanonymouslogin: no autocreatequota: 1024000 createonpost: no autocreateinboxfolders: Sent Items|Spam|Draft|Trash autosubscribeinboxfolders: Sent Items|Spam|Draft|Trash autosubscribesharedfolders: public umask: 077 sieveusehomedir: false sievedir: /var/spool/sieve hashimapspool: true allowplaintext: yes sasl_pwcheck_method: saslauthd sasl_mech_list: PLAIN NTLM lmtpsocket: /var/run/imap/socket/lmtp lmtpunix:/var/run/imap/socket/lmtp idlesocket: /var/run/imap/socket/idle notifysocket: /var/run/imap/socket/notify Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: problem in Authentication.
On Wed, May 16, 2007 at 11:56:19AM +0400, Rajeev R Veedu wrote: The system was up about 1 year and I never faced this problem. Also I haven't changed any settings in the configuration. Since yesterday I am getting this RANDOM authentication failure and would appreciate if you could help me, try to clean saslauthd cache with saslcache and restart saslauthd. WBR. Dmitriy Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
ADS authentication with SASL works with old password
I am using cyrus with SASL authenticating against an ADS server The problem is when user changes the password , Both the old password and new password work. So the user has to change the password twice to *really* change the password. I tried restarting saslauthd , cyrus etc but doesnt help Where is the old password getting cached ?? Thanks Ram Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: problem in Authentication.
On Wed, May 16, 2007 at 02:53:49PM +0400, Rajeev R Veedu wrote: I can not locate saslcache. Can you tell me where it could be (Iam running Cyrus on Centos4) hm.. can't see on CentOS4 too. But on FreeBSD: $ pkg_info -Lx saslauthd | grep cache /usr/local/sbin/saslcache I'm looking my port Makefile: do-build: ... cd ${WRKSRC}/saslauthd ${MAKE} saslcache ... I think you must properly configure your spec-file and rebuild sasl's rpm's. WBR. Dmitriy Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
FW: problem in Authentication.
I have a setup with Cyrus Imap and SASL authentication. + Postfix I am getting following error on maillog. May 16 11:40:38 mail pop3[7641]: badlogin: [192.168.1.68] plaintext matthew_sullivan SASL(-13): authentication failure: checkpass failed May 16 11:40:38 mail pop3[7640]: badlogin: [192.168.1.69] plaintext duncan SASL(-13): authentication failure: checkpass failed May 16 11:52:04 mail pop3[7713]: badlogin: [192.168.1.114] plaintext s.kim SASL(-13): authentication failure: checkpass failed May 16 11:52:04 mail pop3[7650]: badlogin: [192.168.1.52] plaintext sajiv SASL(-13): authentication failure: checkpass failed The system was up about 1 year and I never faced this problem. Also I haven't changed any settings in the configuration. Since yesterday I am getting this RANDOM authentication failure and would appreciate if you could help me, Regards Rajeev My configuration is as below:- [EMAIL PROTECTED] ~]# rpm -qa |grep cyrus cyrus-sasl-md5-2.1.19-5.EL4 cyrus-sasl-devel-2.1.19-5.EL4 cyrus-imapd-utils-2.2.12-3.RHEL4.1 cyrus-sasl-2.1.19-5.EL4 cyrus-imapd-2.2.12-3.RHEL4.1 cyrus-sasl-plain-2.1.19-5.EL4 /etc/saslauthd.conf is as below: [EMAIL PROTECTED] ~]# cat /etc/saslauthd.conf ldap_servers: ldap://127.0.0.1:389/ #ldap_bind_dn: cn=admin,dc=DOMAIN,dc=com #ldap_password: secret ldap_search_base: ou=Users,ou=OxObjects,dc=DOMAIN,dc=com #ldap_default_realm: DOMAIN.com #ldap_use_sasl: yes ldap_auth_mech: PLAIN IMAP CONFIG IS cat /etc/imapd.conf configdirectory: /var/lib/imap defaultpartition: default partition-default: /var/spool/imap unixhierarchysep: yes domain_as_prefix: 1 lmtp_downcase_rcpt: yes admins: mailadmin cyrus quotawarn: 90 lmtp_overquota_perm_failure: no virtdomains: userid defaultdomain: Domain.com sendmail: /usr/sbin/sendmail.postfix allowanonymouslogin: no autocreatequota: 1024000 createonpost: no autocreateinboxfolders: Sent Items|Spam|Draft|Trash autosubscribeinboxfolders: Sent Items|Spam|Draft|Trash autosubscribesharedfolders: public umask: 077 sieveusehomedir: false sievedir: /var/spool/sieve hashimapspool: true allowplaintext: yes sasl_pwcheck_method: saslauthd sasl_mech_list: PLAIN NTLM lmtpsocket: /var/run/imap/socket/lmtp lmtpunix:/var/run/imap/socket/lmtp idlesocket: /var/run/imap/socket/idle notifysocket: /var/run/imap/socket/notify Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
RE: problem in Authentication.
I can not locate saslcache. Can you tell me where it could be (Iam running Cyrus on Centos4) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dmitriy Kirhlarov Sent: Wednesday, May 16, 2007 2:06 PM To: info-cyrus@lists.andrew.cmu.edu Subject: Re: problem in Authentication. On Wed, May 16, 2007 at 11:56:19AM +0400, Rajeev R Veedu wrote: The system was up about 1 year and I never faced this problem. Also I haven't changed any settings in the configuration. Since yesterday I am getting this RANDOM authentication failure and would appreciate if you could help me, try to clean saslauthd cache with saslcache and restart saslauthd. WBR. Dmitriy Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Sieve vacation does not catch alias-addresses ? [auf Viren überprüft]
I'm not sure. Maybe you have to put more than a address into brackets (addr,addr) to group them. What really is bothering me is that if I only have the [EMAIL PROTECTED] in the brackets, and send a message to [EMAIL PROTECTED], the rule works. But if there is either only the firstname.lastname alias, or both firstname.lastname alias and the username address, then it does not work. So I'm thinking that I have two problems interacting, the proper way to manage multiple addresses in the vacation filter itself (several addresses not working), as well as (postfix) problem with the alias-managing where the address is translated with the help of the virtual_aliases-rules. Poltsi Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Re: Sieve vacation does not catch alias-address es ? [auf Viren überprüft]
Hi, On 16.05.2007, at 18:57, [EMAIL PROTECTED] wrote: I'm not sure. Maybe you have to put more than a address into brackets (addr,addr) to group them. What really is bothering me is that if I only have the [EMAIL PROTECTED] in the brackets, and send a message to [EMAIL PROTECTED], the rule works. But if there is either only the firstname.lastname alias, or both firstname.lastname alias and the username address, then it does not work. So I'm thinking that I have two problems interacting, the proper way to manage multiple addresses in the vacation filter itself (several addresses not working), as well as (postfix) problem with the alias-managing where the address is translated with the help of the virtual_aliases-rules. As far as I know, sieve checks the To-Header in order to determine whether the mail was personally addresses and sends vacation notices only if they were. Maybe try something like the following - this is created by a Horde Ingo and I assume it should work: I don't use vacation at the moment 68: # Abwesenheitsnachricht 69: if allof ( not exists [list-help, list-unsubscribe, list- subscribe, list-owner, list-post, list-archive, list-id], not header :comparator i;ascii-casemap :is Precedence list,bulk ) { 70: vacation :days 7 :addresses [baltasar DT cevc AT former03 DT de, baltasar AT cevc-topp DT de] :subject Out of office I'm not here at the moment. 71: ; 72: } Hope that helps, Baltasar -- Baltasar Cevc _ FORMER 03 GmbH _ infanteriestraße 19 haus 6 eg _ D-80797 muenchen _ http://www.former03.de PGP.sig Description: This is a digitally signed message part Cyrus Home Page: http://cyrusimap.web.cmu.edu/ Cyrus Wiki/FAQ: http://cyrusimap.web.cmu.edu/twiki List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html