Re: [vchkpw] qmail+vpopmail+openldap+qmailadmin in redhat7.3
lixiang, I'd encountered exactly the same problem(-ERR aack, child crashed) with vchkpw using LDAP as backend. I'd tried many different configurations and finally it seem like I can get around this problem. The solution is configure vpopmail with --enable-clear-passwd=n parameter. My configure statement looks like: ./configure --enable-ldap=y --enable-clear-passwd=n I have no idea how this fix the problem, but it's something with the authentication. Hope this help, Phatrakom be [EMAIL PROTECTED] Shop all amazing products and get our special offers!
Re: [vchkpw] qmail+vpopmail+openldap+qmailadmin in redhat7.3
hi,Jens: I did guess that you should be off for your business trip or holidays , :-) I think basedn and binddn is the same in my vldap.h and slapd.conf, and if i have the below entry tree in my openldap through ldapbrowser: dc=koal,dc=com | -ou=people | - ou=net.koal.com |-uid=postmaster -uid=test and my slapd.conf: databaseldbm suffix dc=koal,dc=com rootdn cn=root,ou=people,dc=koal,dc=com rootpw x ( here is the same with the password in vldap.h) and my vldap.h: #undef OLD_VLDAP #define VLDAP_SERVER localhost #define VLDAP_PORT LDAP_PORT #define VLDAP_USER cn=root,ou=people,dc=koal,dc=com #define VLDAP_PASSWORD x ( here is the same with the password in slapd.conf) #define MAX_BUFF 500 #ifdef OLD_VLDAP #define VLDAP_BASEDN ou=Subs, o=vpop #else #define VLDAP_BASEDN ou=people,dc=koal,dc=com #endif I test the pop3 authentication : [EMAIL PROTECTED] root]# telnet localhost 110 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. +OK [EMAIL PROTECTED] user test +OK pass test Error: No such object matched DN: ou=people,dc=koal,dc=com -ERR authorization failed Connection closed by foreign host. and then maillog reports: Jul 16 14:39:29 mailserver vpopmail[1244]: vchkpw-pop3: vpopmail user not found test@:127.0.0.1 if i test the pop3 with a domain that doesn't exsits : [EMAIL PROTECTED] root]# telnet localhost 110 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. +OK [EMAIL PROTECTED] user [EMAIL PROTECTED] +OK pass test Error: No such object matched DN: ou=people,dc=koal,dc=com -ERR authorization failed then maillog reports: Jul 16 14:42:06 mailserver vpopmail[1261]: vchkpw-pop3: vpopmail user not found [EMAIL PROTECTED]:127.0.0.1 it seems that i should submit the correct and complete email add: [EMAIL PROTECTED] then i test : [EMAIL PROTECTED] root]# telnet localhost 110 Trying 127.0.0.1... Connected to localhost. Escape character is '^]'. +OK [EMAIL PROTECTED] user [EMAIL PROTECTED] +OK pass test -ERR aack, child crashed and then maillog reports nothing about this failed login. it seems that the vchkpw has recognized this [EMAIL PROTECTED] ,but child crashed error is occured. what's happened?
Re: [vchkpw] qmail+vpopmail+openldap+qmailadmin in redhat7.3
Zitat von lixiang [EMAIL PROTECTED]: Hi lixiang, OK, now I see your Prob !! It is somekind of loop that you configured: See here: slapd.conf: --- snip suffix dc=koal,dc=com rootdn cn=root,ou=people,dc=koal,dc=com --- WRONG !! --- snap vldap.h --- snip #define VLDAP_BASEDN ou=people,dc=koal,dc=com #define VLDAP_USER cn=root,ou=people,dc=koal,dc=com --- WRONG !! --- snap ### You solution should look like this: slapd.conf: --- snip suffix dc=koal,dc=com rootdn cn=root,dc=koal,dc=com This is the difference --- snap vldap.h --- snip #define VLDAP_BASEDN ou=people,dc=koal,dc=com #define VLDAP_USER cn=root,dc=koal,dc=com This is the difference --- snap The rootdn must _not_ be a ldap entry that is inside your trie !!! It is just an internal User !! So you might try this. And remenber ! Your organisation ( dc=koal,dc=com ) and your arganisational Unit ( ou=people, dc=koal, dc=com) must both exist !! And please make sure yout BASEDN in vldap.h is used. E.g. like #define VLDAP_BASEDN ou=people,dc=koal,dc=com And delete the #if-def clause Cheers Jens
Re: [vchkpw] qmail+vpopmail+openldap+qmailadmin in redhat7.3
Hi, Jens: actually, my rootdn was cn=root,dc=koal,dc=com in both my vldap.h and slapd.conf in the before, and i ensured that the basedn in vldap.h was ou=people,dc=koal,dc=com . i tested what you mentioned just now, this cann't help me . the err acck ,child crashed error remains. if i input a user which doesn't exsit, it will reports err authorization failed. if i input the correct user and password, it will reports err acck, child crashed . i think it has recognized the user and password ,but sth lead to the child crashed error. i have searched the vpopmail mailing list, there were many reports about the same error, and it seems that many reasons will lead to this error, but until now, i still havn't find any valuable solution to me. my configure parameters: ./configure --enalbe-ldap=y --enable-roaming-users=y --enable-logging=y redhat 7.3 vpopmail-5.3.20 openldap-2.0.27 qmailadmin-1.0.20 any suggestions? thanks a lot, :-),
[vchkpw] qmail+vpopmail+openldap+qmailadmin in redhat7.3
hi,all i use qmail-1.0.3 + vpopmail-5.3.20(enable-ldap)+ openldap-2.0.27+ qmailadmin-1.0.20 in my redhat7.3. my ldap entry is below: dc=koal,dc=com | -ou=people | - ou=test.com | -uid=postmaster -uid=user1 -uid=user2 there are two problems: 1. when i test the receiving mail from theserver,italways reports: Error: No such objectmatched DN: "ou=people,dc=koal,dc=com"-ERR authorizationfailed Jens ( thanks a lot! Jens) tell me that the query is executed by the "ou=people,dc=koal,dc=com" ,while it should be the "uid=, ou=test.com,ou=people,dc=koal,dc=com" ? but how i can control which type dn query is executed? 2. add user through qmailadmin ,it always report: Email Account [EMAIL PROTECTED] (test1) could not be added, but this user actually has been added ,and its entry in ldap has also been added. i have recomiled the qmailadmin, and upgrade my qmailadmin-1.0.6 to 1.0.20, but this strange situation remains.. i find that there are many combinations of vpopmail+mysql, but the combination of vpopmail+ldap is few. has anyone succeed for this combination ? thanks a lot .
Re: [vchkpw] qmail+vpopmail+openldap+qmailadmin in redhat7.3
Zitat von lixiang [EMAIL PROTECTED]: Hi lixiang, sorry for my late responds, I have been off for holiday ;-)) So if you verified your LDAP-Entries that they look like below ( e.g. with gq ) your are fine. dc=koal,dc=com | -ou=people | - ou=test.com | -uid=postmaster -uid=user1 -uid=user2 It may be an access error, please check your settings in slapd.conf and compare them with your compilation in vldap.h BaseDN and Binddn _must_ be correct, because if vpopmail tries to bind via an non existing ldap-user it doesn't see any entries at all. Here is a sample of a successful auth: ---snip conn=1047818 fd=7 ACCEPT from IP=::1 32811 (IP=:: 389) Jul 15 10:35:09 mail slapd[4671]: conn=1047818 op=0 BIND dn=cn=,dc=x,dc=net method=128 Jul 15 10:35:09 mail slapd[4671]: conn=1047818 op=0 AUTHZ dn=cn=,dc=x,dc=net mech=simple ssf=0 Jul 15 10:35:09 mail slapd[4671]: conn=1047818 op=0 RESULT tag=97 err=0 text= Jul 15 10:35:09 mail slapd[21275]: conn=1047818 op=1 SRCH base=ou=x.de,ou=people,dc=x,dc=net scope=2 filter=( (objectClass=qmailUser)(uid=user1)) Jul 15 10:35:09 mail slapd[21275]: conn=1047818 op=1 SEARCH RESULT tag=101 err=0 nentries=1 text= --- snap Make sure your settings in vldap.h are correct: --- snip define VLDAP_SERVER localhost #define VLDAP_PORT LDAP_PORT #define VLDAP_USER cn=root,dc=,dc=net This must be equal to slapd.conf #define VLDAP_PASSWORD password This must be equal to slapd.conf #define MAX_BUFF 500 #define VLDAP_BASEDN ou=people,dc=x,dc=net --- snap Look at slapd.conf ### --- snip rootdn cn=root,dc=,dc=net --- This must be equal to vldap.h rootpwpassword This must be equal to vldap.h --- snap I think that is the reason for your probs. Have both of the initial LDAP-entries completed ? snip dn: dc=xxx,dc=net objectclass: organization o: xxx dn:ou=people,dc=,dc=cn objectclass: organizationalUnit ou:people snap Please let me know if that doesnt help. Cheers Jens
