I'm setting up dovecot in OpenBSD OS. The problem is that I can't set up
dovecot to use kerberos authentication via bsdauth which is "similar to
pam"
I try to test dovecot via telnet:
telnet localhost pop3
user test
+OK
pass password
-ERR [IN-USE] Temporary authentication failure
and some strings from logs
Feb 3 15:02:37 srv-mx-00 dovecot: auth: Error: bsdauth(rodin.m,127.0.0.1):
getpwnam() failed: Operation not permitted
Feb 3 15:02:46 srv-mx-00 dovecot: pop3-login: Disconnected (auth failed, 1
attempts): user=<rodin.m>, method=PLAIN, rip=127.0.0.1, lip=127.0.0.1,
secured
Feb 3 15:29:13 srv-mx-00 dovecot: auth: Error: bsdauth(test,127.0.0.1):
getpwnam() failed: Operation not permitted
What am I doing wrong?
Here is the output of dovecot -n
auth_krb5_keytab = /etc/kerberosV/krb5.keytab
auth_mechanisms = plain login
default_internal_user = _dovecot
default_login_user = _dovenull
disable_plaintext_auth = no
first_valid_gid = 2000
first_valid_uid = 2000
last_valid_gid = 2000
last_valid_uid = 2000
mail_gid = vmail
mail_location = maildir:/var/vmail/%u%Ud/Maildir
mail_uid = vmail
mbox_write_locks = fcntl
mmap_disable = yes
passdb {
driver = bsdauth
}
service auth {
unix_listener /var/spool/postfix/private/auth {
group = _postfix
mode = 0666
user = _postfix
}
}
ssl_cert = </etc/ssl/dovecotcert.pem
ssl_key = </etc/ssl/private/dovecot.pem
userdb {
driver = passwd
}
userdb {
args = uid=2000 gid=2000 home=/var/mail/%Lu
driver = static
}
protocol imap {
imap_client_workarounds = delay-newmail tb-extra-mailbox-sep tb-lsub-flags
}
protocol pop3 {
pop3_client_workarounds = outlook-no-nuls oe-ns-eoh
pop3_uidl_format = %08Xu%08Xv
}