Philippe Chevalier
2012-Sep-24 13:48 UTC
[Dovecot] noisy auth-worker messages in logs (dovecot 2.1.8 FreeBSD)
Hello,
I don't know if it's been addressed before, but anyway :
In my dovecot setup, I have local and virtual users. So, I need multiple passdb
backends. Namely, passwd for the local users and ldap for the virtual
users.
passdb {
driver = passwd
}
passdb {
args = /usr/local/etc/dovecot/dovecot-ldap.conf
driver = ldap
}
Everything work correctly : when a user logs in (imap/pop3) there's a
lookup in passwd and if it fails there's a lookup in ldap (if I
understand the process correctly), which eventually succeeds.
Except that every time a virtual user logs in, dovecot logs an error,
like :
dovecot: auth-worker(99126): Error: passwd(xxx at domain.org,12.34.254.255):
getpwnam() failed: Invalid argument
I guess it's because the login is a full email that getpwnam fails.
Anyway, the user logs in just fine. But I would like to know if/how I
can get rid of the messages filling my logs ?
I tried :
auth_debug_passwords = no
auth_verbose = no
But no dice.
I used dovecot 1.x before and there was no such messages.
Thanks for any advice.
K.
--
Kyoko Otonashi's shrine / Le temple de Kyoko Otonashi
My tribute to Maison Ikkoku / Mon hommage a Maison Ikkoku
Visit http://www.kyoko.org/
Timo Sirainen
2012-Sep-24 14:16 UTC
[Dovecot] noisy auth-worker messages in logs (dovecot 2.1.8 FreeBSD)
On 24.9.2012, at 16.48, Philippe Chevalier wrote:> dovecot: auth-worker(99126): Error: passwd(xxx at domain.org,12.34.254.255): getpwnam() failed: Invalid argument > > I guess it's because the login is a full email that getpwnam fails.So if you log in as nonexistent user "foo.bar" it doesn't log an error, but if you log in as "foo at bar" it does? The attached patch probably fixes it? -------------- next part -------------- A non-text attachment was scrubbed... Name: diff Type: application/octet-stream Size: 386 bytes Desc: not available URL: <http://dovecot.org/pipermail/dovecot/attachments/20120924/5bfcafb8/attachment-0004.obj>
Philippe Chevalier
2012-Sep-24 15:04 UTC
[Dovecot] noisy auth-worker messages in logs (dovecot 2.1.8 FreeBSD)
On Mon, Sep 24, 2012 at 05:16:06PM +0300, Timo Sirainen wrote:>On 24.9.2012, at 16.48, Philippe Chevalier wrote: > >> dovecot: auth-worker(99126): Error: passwd(xxx at domain.org,12.34.254.255): getpwnam() failed: Invalid argument >> >> I guess it's because the login is a full email that getpwnam fails. > >So if you log in as nonexistent user "foo.bar" it doesn't log an error, but if you log in as "foo at bar" it does? The attached patch probably fixes it?If I log in as a non-existent user (neither in passwd or ldap), without the domain part, it logs also an error, but this time from ldap : dovecot: auth: Error: ldap(foo.bar,xx.xx.xx.xx,<bCVDqnPKXQC8pSxD>): ldap_bind() failed: Invalid DN syntax My bind DN to check the password is : auth_bind_userdn = dc=%n,dc=%d,ou=Domains,ou=Mail,dc=dspnet,dc=fr (I have virtual users in multiple domains) So ldap protests probably because the "domain" part is missing. If I use a non-existent login "foo at bar", dovecot logs nothing : no error from passwd, no error from ldap, just an authentication error on the client side. I will apply the patch later today and will let you know the result. Regards, K. -- Kyoko Otonashi's shrine / Le temple de Kyoko Otonashi My tribute to Maison Ikkoku / Mon hommage a Maison Ikkoku Visit http://www.kyoko.org/