I have a new version of preauthvchkpw.c that will be in a later
release of sqwebmail. For the time being you can get it from
http://www.inter7.com/vpopmail/preauthvchkpw.c
It also supports deny webmail access (via vpopmail gid bit flags)
supports deny courier-imap access (via vpopmail gid bit flags,
see vmoduser and vuserinfo)
Also it supports roaming users for courier-imap. the same
idea that allows pop users to gain smtp relay, so can imap
users.
Ken Jones
John wrote:
>
> I'm having a problem with sqwebmail 1.0 and vpopmail 4.9.5.
>
> It will authenticate for the default domain by just typing in the username,
> and it will authenticate for other domains by typing in complete e-mail
> address, but if I type in an e-mail address that's not on our system such as
> [EMAIL PROTECTED] and a generic password, i will get a premature end of script
> headers.
>
> The above combination is the only one that will error out. I can leave the
> password blank for [EMAIL PROTECTED] and submit, and it asks for the
> username/password again. Same is true for the default domain and virtual
> domains.
>
> Seems to be a problem with preauthvchkpw.c
> Has anyone seen this before?
>
> The suspect part of the code is below:
>
> notfound=EACCES;
> if ((s=authvchkpw_isvirtual(usercopy)) != 0)
> {
> char *t;
> *s++=0;
> while ((t=strchr(s, '/')) != 0)
> *t='.'; /* Fuck you */
> }
> else
> {
> s = DEFAULT_DOMAIN;
> notfound=EPERM;
> }
>
> pw=vauth_getpw(usercopy, s);
> free(usercopy);
> vclose();
> if (!pw)
> {
> errno=notfound;
> return (-1);
> }
