Re: cyrus sasl2 and authentication [LONG]

2009-03-21 Thread mouss
LuKreme a écrit : > [snip] > > OK, ripping out cyrus as soon as I find a good walkthrough for dovecot. > Especially if I can find one about ADDING dovecot. > if you use courier and have authdaemon working, then configure cyrus sasl to use it instead of sql: pwcheck_method: authdaemond mech_list

Re: cyrus sasl2 and authentication [LONG]

2009-03-18 Thread LuKreme
On 18-Mar-2009, at 09:07, Patrick Ben Koetter wrote: testsaslauthd $ testsaslauthd -u u...@mysqlhosted.tld -p password 0: NO "authentication failed" $ testsaslauthd -u user -p password 0: OK "Success." So I can authenticate against the local users with testsaslauth, but I cannot over smtp

Re: cyrus sasl2 and authentication [LONG]

2009-03-18 Thread Patrick Ben Koetter
* LuKreme : > On 18-Mar-2009, at 02:38, Patrick Ben Koetter wrote: >> * LuKreme : >>> path to which socket there? >>> >>> $ ls -ls /var/run/saslauthd/ >>> total 2 >>> 0 srwxrwxrwx 1 root postfix 0 Mar 17 03:52 mux >> >> mux it is. > > Starting saslauthd. > saslauthd[91067] :main: cou

Re: cyrus sasl2 and authentication [LONG]

2009-03-18 Thread LuKreme
On 18-Mar-2009, at 02:38, Patrick Ben Koetter wrote: * LuKreme : path to which socket there? $ ls -ls /var/run/saslauthd/ total 2 0 srwxrwxrwx 1 root postfix 0 Mar 17 03:52 mux mux it is. Starting saslauthd. saslauthd[91067] :main: could not chdir to: /var/run/ saslauthd/mux

Re: cyrus sasl2 and authentication [LONG]

2009-03-18 Thread Patrick Ben Koetter
* LuKreme : > On 17-Mar-2009, at 13:45, Patrick Ben Koetter wrote: >> smtpd_sasl_security_options = noplaintext, noanonymous >> smtpd_sasl_tls_security_options = noanonymous >> >> As for the PAM part in the sasl authentication, start saslauthd like >> this: >> >> saslauthd -a pam -m /path/to/the/

Re: cyrus sasl2 and authentication [LONG]

2009-03-17 Thread LuKreme
On 17-Mar-2009, at 13:45, Patrick Ben Koetter wrote: smtpd_sasl_security_options = noplaintext, noanonymous smtpd_sasl_tls_security_options = noanonymous As for the PAM part in the sasl authentication, start saslauthd like this: saslauthd -a pam -m /path/to/the/socket path to which socket

Re: cyrus sasl2 and authentication [LONG]

2009-03-17 Thread Patrick Ben Koetter
* LuKreme : > On 17-Mar-2009, at 11:47, Andreas Winkelmann wrote: >>> On 17-Mar-2009, at 03:49, LuKreme wrote: >> I've made sure that /var/run/saslauthd/ is owned by root:postfix (it was root:mail) and have removed the authdaemon_path line and am trying again. Hopefully this was it.

Re: cyrus sasl2 and authentication [LONG]

2009-03-17 Thread LuKreme
On 17-Mar-2009, at 11:47, Andreas Winkelmann wrote: On 17-Mar-2009, at 03:49, LuKreme wrote: I've made sure that /var/run/saslauthd/ is owned by root:postfix (it was root:mail) and have removed the authdaemon_path line and am trying again. Hopefully this was it. That wasn't it, and the owner

Re: cyrus sasl2 and authentication [LONG]

2009-03-17 Thread Wietse Venema
Victor Duchovni: > On Tue, Mar 17, 2009 at 11:37:39AM -0600, LuKreme wrote: > > > On 17-Mar-2009, at 03:49, LuKreme wrote: > >> I've made sure that /var/run/saslauthd/ is owned by root:postfix (it was > >> root:mail) and have removed the authdaemon_path line and am trying again. > >> Hopefully t

Re: cyrus sasl2 and authentication [LONG]

2009-03-17 Thread Victor Duchovni
On Tue, Mar 17, 2009 at 11:37:39AM -0600, LuKreme wrote: > On 17-Mar-2009, at 03:49, LuKreme wrote: >> I've made sure that /var/run/saslauthd/ is owned by root:postfix (it was >> root:mail) and have removed the authdaemon_path line and am trying again. >> Hopefully this was it. > > That wasn't i

Re: cyrus sasl2 and authentication [LONG]

2009-03-17 Thread Andreas Winkelmann
> On 17-Mar-2009, at 03:49, LuKreme wrote: >> I've made sure that /var/run/saslauthd/ is owned by root:postfix (it >> was root:mail) and have removed the authdaemon_path line and am >> trying again. Hopefully this was it. > > That wasn't it, and the ownership by root:mail shouldn't matter as the >

Re: cyrus sasl2 and authentication [LONG]

2009-03-17 Thread LuKreme
On 17-Mar-2009, at 03:49, LuKreme wrote: I've made sure that /var/run/saslauthd/ is owned by root:postfix (it was root:mail) and have removed the authdaemon_path line and am trying again. Hopefully this was it. That wasn't it, and the ownership by root:mail shouldn't matter as the postfix

Re: cyrus sasl2 and authentication [LONG]

2009-03-17 Thread Victor Duchovni
On Tue, Mar 17, 2009 at 12:09:40PM +0100, Patrick Ben Koetter wrote: > My fault. I've overlooked that. In your case /usr/local/lib/sasl2 is the > correct place to store Cyrus SASL config files. I prefer to not mix application configuration files in the same directory with system software librarie

Re: cyrus sasl2 and authentication [LONG]

2009-03-17 Thread Patrick Ben Koetter
* LuKreme : > On 17-Mar-2009, at 03:15, Patrick Ben Koetter wrote: >> * LuKreme : >>> OK, first question is will I be able to setup smtpd.conf so that it >>> will >>> support MULTIPLE authentication methods (sql and PAM)? But first, to >>> get >>> it working. >>> >>> I am running on a custom por

Re: cyrus sasl2 and authentication [LONG]

2009-03-17 Thread LuKreme
On 17-Mar-2009, at 03:15, Patrick Ben Koetter wrote: * LuKreme : OK, first question is will I be able to setup smtpd.conf so that it will support MULTIPLE authentication methods (sql and PAM)? But first, to get it working. I am running on a custom port right now to avoid mucking with 587

Re: cyrus sasl2 and authentication [LONG]

2009-03-17 Thread Patrick Ben Koetter
* LuKreme : > OK, first question is will I be able to setup smtpd.conf so that it will > support MULTIPLE authentication methods (sql and PAM)? But first, to get > it working. > > I am running on a custom port right now to avoid mucking with 587 until > everything is working: > > 2525 inet