Just a note for others that do not wish to waste time rediscovering
the wheel. And to put this where I can google for it the next time
I forget things I once knew.
Despite the fact that RH 4EL ships with both cyrus-sasl and cyrus-
imap, and despite the fact that cyrus-imap requires cyrus-sasl to
work, /etc/sysconfig/saslauthd is distributed with MECH=shadow even
though cyrus-imapd needs this value set to MECH=pam.
Oh. Do not overlook that the /var/spool/imap (or whatever) mailbox
directory has to be owned by the cyrus user.
Regards,
Jim
--
*** e-mail is not a secure channel ***
mailto:byrnejb.<token>@harte-lyne.ca
James B. Byrne Harte & Lyne Limited
vox: +1 905 561 1241 9 Brockley Drive
fax: +1 905 561 0757 Hamilton, Ontario
<token> = hal Canada L8E 3C3
James B. Byrne wrote:>Just a note for others that do not wish to waste time rediscovering >the wheel. And to put this where I can google for it the next time >I forget things I once knew. > >Despite the fact that RH 4EL ships with both cyrus-sasl and cyrus- >imap, and despite the fact that cyrus-imap requires cyrus-sasl to >work, /etc/sysconfig/saslauthd is distributed with MECH=shadow even >though cyrus-imapd needs this value set to MECH=pam. > >Oh. Do not overlook that the /var/spool/imap (or whatever) mailbox >directory has to be owned by the cyrus user. > >Regards, >Jim > > >Thanks Jim... little stuff that can sometimes make you chase your tail for an hour or two. arrgh!! Anyone know if the default is sort of being directed by RedHat toward dovecot? I''m hearing a lot of talk about it, but haven''t spent any real time reading about it. I don''t even know if it''s a direct replacement. Best, John Hinton
John Hinton wrote:> Anyone know if the default is sort of being directed by RedHat toward > dovecot? I''m hearing a lot of talk about it, but haven''t spent any real > time reading about it. I don''t even know if it''s a direct replacement.I believe I had it working with both shadow and pam on FC2 and FC3 boxes. When set to shadow, it simply reads /etc/shadow directly. When set to pam, it will use whatever PAM mechanism is configured on the system (for example, lookup users in NIS or NIS+ domains). However, the system where I tested shadow as saslautd mechanism had only crypted passwords in /etc/shadow. I don''t know if shadow mechanism works with MD5 passwords. If not, time to fill bug report ;-) P.S. James, I planed to ask you a bit more about your Cyrus install and help you out. I haven''t managed to get back to you. Anyhow, glad to hear you solved the problem. -- Aleksandar Milivojevic <amilivojevic@pbl.ca> Pollard Banknote Limited Systems Administrator 1499 Buffalo Place Tel: (204) 474-2323 ext 276 Winnipeg, MB R3T 1L7
Am Fr, den 11.03.2005 schrieb Aleksandar Milivojevic um 21:36:> I believe I had it working with both shadow and pam on FC2 and FC3 > boxes. When set to shadow, it simply reads /etc/shadow directly. When > set to pam, it will use whatever PAM mechanism is configured on the > system (for example, lookup users in NIS or NIS+ domains).Correct.> However, the system where I tested shadow as saslautd mechanism had only > crypted passwords in /etc/shadow. I don''t know if shadow mechanism > works with MD5 passwords. If not, time to fill bug report ;-)No need to fill out a bug ticket. The sentence "/etc/sysconfig/saslauthd is distributed with MECH=shadow even though cyrus-imapd needs this value set to MECH=pam" by James B. Byrne is simply not true. I have more than 1 system running with shadow as the saslauthd mechanism, and it works as it should. Alexander -- Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773 legal statement: http://www.uni-x.org/legal.html Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.10-1.770_FC2smp Serendipity 03:12:26 up 2 days, 7:24, load average: 0.66, 0.71, 0.61 -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: Dies ist ein digital signierter Nachrichtenteil Url : http://lists.caosity.org/pipermail/centos/attachments/20050312/5d924543/attachment-0001.bin
Alexander Dalloz wrote:>Am Fr, den 11.03.2005 schrieb Aleksandar Milivojevic um 21:36: > > > >>I believe I had it working with both shadow and pam on FC2 and FC3 >>boxes. When set to shadow, it simply reads /etc/shadow directly. When >>set to pam, it will use whatever PAM mechanism is configured on the >>system (for example, lookup users in NIS or NIS+ domains). >> >> > >Correct. > > > >>However, the system where I tested shadow as saslautd mechanism had only >>crypted passwords in /etc/shadow. I don''t know if shadow mechanism >>works with MD5 passwords. If not, time to fill bug report ;-) >> >> > >No need to fill out a bug ticket. The sentence "/etc/sysconfig/saslauthd >is distributed with MECH=shadow even though cyrus-imapd needs this value >set to MECH=pam" by James B. Byrne is simply not true. I have more than >1 system running with shadow as the saslauthd mechanism, and it works as >it should. > >Alexander > > >Actually, you both may be right. Seems I had to jump through all those hoops on one system. It may have something to do with how you do your initial install of the system? After doing this once, suddenly it seemed I never had to do it again. The only difference I can think of was I learned what was and was not installed by default and learned to choose these packages when doing a new system. Then again, I just might be all wet behind the ears. It has been over a year now since I had this problem. John Hinton
James B. Byrne wrote:> Despite the fact that RH 4EL ships with both cyrus-sasl and cyrus- > imap, and despite the fact that cyrus-imap requires cyrus-sasl to > work, /etc/sysconfig/saslauthd is distributed with MECH=shadow even > though cyrus-imapd needs this value set to MECH=pam.Some might be interested in being a little closer to the edge of the development curve with the Cyrus stuff. I like to install Simon Matter''s cyrus-sasl and cyrus-imapd packages which can be acquired from "http://www.invoca.ch/pub/packages/". His packages track pretty closely with the most recent release from the Cyrus team. ---- Nels Lindquist <*>