Displaying 20 results from an estimated 120 matches for "import_environment".
2012 Sep 24
3
[Bug 2043] New: memleak in import_environments
https://bugzilla.mindrot.org/show_bug.cgi?id=2043
Priority: P5
Bug ID: 2043
Assignee: unassigned-bugs at mindrot.org
Summary: memleak in import_environments
Severity: trivial
Classification: Unclassified
OS: All
Reporter: arthurmesh at gmail.com
Hardware: All
Status: NEW
Version: 6.1p1
Component: sshd
Product: Portable OpenSSH
Created attachment 2189
-->...
2016 Oct 11
2
Problems with GSSAPI and LDAP
...th: Error: LDAP: binding failed (dn
(imap/host.example.com at EXAMPLE.COM)): Local error, SASL(-1): generic
failure: GSSAPI Error: Unspecified GSS failure. Minor code may provide
more information (No Kerberos credentials available (default cache:
FILE:/tmp/dovecot.krb5.ccache))
I have set the import_environment in dovecot.conf:
import_environment = TZ CORE_OUTOFMEM CORE_ERROR LISTEN_PID LISTEN_FDS
KRB5CCNAME=FILE:/tmp/dovecot.krb5.ccache
And these in LDAP configuration:
dn = imap/host.example.com at EXAMPLE.COM
sasl_bind = yes
sasl_mech = gssapi
sasl_realm = EXAMPLE.COM
sasl_authz_id = imap/host.examp...
2004 Feb 27
1
Minor Thread Bug In OpenSSH 3.8p1
There is a minor problem with the PAM support in OpenSSH 3.8p1. If you use
POSIX threads (as specified by defining USE_POSIX_THREADS) in auth-pam.c,
PAM authentication will fail in routine import_environments(). The purpose
of this routine is to import variables returned by do_pam_account() in
sshpam_thread(). However, those variable are only exported if USE_POSIX_THREADS
is NOT set. Consequently, import_environments() get upset when there's nothing
in the buffer when that macro IS set.
I have ch...
2011 Apr 20
2
possible bug leading to lmtp crashes
...ccountName=%u)(userPrincipalName=%u)))
*dn = MACHINEACCOUNT$@EXAMPLE.ORG
*sasl_bind = yes
*sasl_mech = GSSAPI
*sasl_realm = EXAMPLE.ORG
*#sasl_authz_id = MACHINEACCOUNT$@EXAMPE.ORG
# For using doveadm -A:
iterate_attrs = userPrincipalName=user
iterate_filter = (objectClass=person)
in dovecot.conf:
import_environment = TZ KRB5CCNAME=/etc/dovecot/krb5.cc
With that do any of the following lines from the referenced hg rev set
mean I am missing anything on my import_environment variable? Or is it
all good?
10.15 +/* <settings checks> */
10.16 +#ifdef HAVE_SYSTEMD
10.17 +# define ENV_SYSTEMD " LISTEN_PI...
2016 Oct 11
2
Problems with GSSAPI and LDAP
.../host.example.com at EXAMPLE.COM)): Local error, SASL(-1): generic
>> failure: GSSAPI Error: Unspecified GSS failure. Minor code may
>> provide more information (No Kerberos credentials available (default
>> cache: FILE:/tmp/dovecot.krb5.ccache))
>>
>> I have set the import_environment in dovecot.conf:
>>
>> import_environment = TZ CORE_OUTOFMEM CORE_ERROR LISTEN_PID LISTEN_FDS
>> KRB5CCNAME=FILE:/tmp/dovecot.krb5.ccache
>>
>> And these in LDAP configuration:
>>
>> dn = imap/host.example.com at EXAMPLE.COM
>> sasl_bind = yes
>...
2019 Dec 04
1
Environment variables in pgsql connect string
...uration_manual/config_file/config_variables/#variables-global
However, the source code for driver-pgsql.c indicates that the connect
string is never expanded:
https://github.com/dovecot/core/blob/master/src/lib-sql/driver-pgsql.c#L297
For reference, this is my configuration. dovecot.conf:
import_environment = PASSDB_USER PASSDB_DBNAME PASSDB_PASSWORD
passdb {
override_fields = proxy=y
driver = sql
args = /etc/dovecot/dovecot-sql.conf.ext
}
/etc/dovecot/dovecot-sql.conf.ext:
driver = pgsql
connect = host=mail-passdb dbname=%{env:PASSDB_DBNAME}
user=%{env:PASSDB_USER} passw...
2019 Dec 15
2
Parsing variables in config files
...DB_USER
DB_HOST
DB_NAME
I've been trying to pass these parameters to dovecot's configuration, but
they don't get parsed and I end up with messages like: dovecot: auth:
Error: pgsql(%{env:DB_HOST}): Connect failed to database %{env:DB_NAME}
I've tried to pass variables alone, using import_environment = DB_HOST
DB_NAME DB_USER, but I'm stuck at the same errors.
Is there anything I could do to fix this?
Thank you!
Eudald
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://dovecot.org/pipermail/dovecot/attachments/20191215/fb37e407/attachment.html>
2016 Oct 11
2
Problems with GSSAPI and LDAP
...l error, SASL(-1): generic
>>>> failure: GSSAPI Error: Unspecified GSS failure. Minor code may
>>>> provide more information (No Kerberos credentials available (default
>>>> cache: FILE:/tmp/dovecot.krb5.ccache))
>>>>
>>>> I have set the import_environment in dovecot.conf:
>>>>
>>>> import_environment = TZ CORE_OUTOFMEM CORE_ERROR LISTEN_PID
>>>> LISTEN_FDS
>>>> KRB5CCNAME=FILE:/tmp/dovecot.krb5.ccache
>>>>
>>>> And these in LDAP configuration:
>>>>
>>>&g...
2019 May 13
6
Frequent Out of Memory for service(config)
Hello Group,
We have dovecot deployed as solely a Pop3 service that is used by our
applications to pass mail from one application to another internally. We
have roughly 4 applications that connect to the Pop3 service every 2
seconds, to check for new messages and pop them for processing if they are
present. Depending on the site, we have between 1024-2048MB of memory set
for default_vsz_limit.
2018 Feb 28
0
v2.3.0.1 released
...ia
PR_SET_DUMPABLE, because this may allow attackers to bypass
chroot/group restrictions. Found by cPanel Security Team. Nowadays
core dumps can be safely enabled by using "sysctl -w
fs.suid_dumpable=2". If the old behaviour is wanted, it can still be
enabled by setting:
import_environment=$import_environment PR_SET_DUMPABLE=1
- imap-login with SSL/TLS connections may end up in infinite loop
2016 Sep 25
2
Setting hostdomain
...ve "localhost". I'm trying to change my configuration to set the hostdomain
to another value, but I can't find how to do this.
I tried:
? setting the environment variable DOVECOT_HOSTDOMAIN=mydomain in
/etc/default/dovecot (which is read by the init script);
? adding the line
import_environment = TZ DOVECOT_HOSTDOMAIN=mydomain
to dovecot.conf;
? the combination of both of the above.
However, after restarting dovecot none of these changes seem to have any
effect: `dovecot --hostdomain` still returns "localhost".
This is with dovecot version 2.2.13.
How should one change this...
2018 Feb 28
0
v2.3.0.1 released
...ia
PR_SET_DUMPABLE, because this may allow attackers to bypass
chroot/group restrictions. Found by cPanel Security Team. Nowadays
core dumps can be safely enabled by using "sysctl -w
fs.suid_dumpable=2". If the old behaviour is wanted, it can still be
enabled by setting:
import_environment=$import_environment PR_SET_DUMPABLE=1
- imap-login with SSL/TLS connections may end up in infinite loop
2019 May 15
0
Frequent Out of Memory for service(config)
...l_system_malloc(8192): Out of memory
> May 10 06:44:05 config: Fatal: master: service(config): child 27887
> returned error 83 (Out of memory (service config { vsz_limit=1024 MB
> }, you may need to increase it) - set CORE_OUTOFMEM=1 environment to
> get core dump)
Can you try setting
import_environment = $import_environment CORE_OUTOFMEM=1
and see if it causes coredump?
Aki
2016 Oct 11
2
Problems with GSSAPI and LDAP
...I Error: Unspecified GSS failure. Minor code may
>>>>>> provide more information (No Kerberos credentials available
>>>>>> (default
>>>>>> cache: FILE:/tmp/dovecot.krb5.ccache))
>>>>>>
>>>>>> I have set the import_environment in dovecot.conf:
>>>>>>
>>>>>> import_environment = TZ CORE_OUTOFMEM CORE_ERROR LISTEN_PID
>>>>>> LISTEN_FDS
>>>>>> KRB5CCNAME=FILE:/tmp/dovecot.krb5.ccache
>>>>>>
>>>>>> And these in LDAP...
2003 Dec 07
0
[PATCH] Do PAM chauthtok via keyboard-interactive.
..._port_forwarding_flag |= 2;
+ no_agent_forwarding_flag |= 2;
+ no_x11_forwarding_flag |= 2;
+ } else {
+ no_port_forwarding_flag &= ~2;
+ no_agent_forwarding_flag &= ~2;
+ no_x11_forwarding_flag &= ~2;
+
+ }
+}
/* Import regular and PAM environment from subprocess */
static void
import_environments(Buffer *b)
@@ -152,6 +169,13 @@ import_environments(Buffer *b)
u_int i, num_env;
int err;
+ /* Import variables set by do_pam_account */
+ sshpam_account_status = buffer_get_int(b);
+ sshpam_new_authtok_reqd = buffer_get_int(b);
+
+ if (sshpam_new_authtok_reqd == 1)
+ pam_password_change_re...
2017 Jan 19
5
Segfault on LIST Command
...: /etc/dovecot/dovecot.conf
# Pigeonhole version 0.4.16 (1dc4c73)
# OS: Linux 3.16.0-4-amd64 x86_64 Debian 8.6
auth_debug = yes
auth_debug_passwords = yes
auth_socket_path = /var/run/dovecot/auth-userdb
auth_verbose = yes
base_dir = /var/run/dovecot/
default_internal_user = pop
first_valid_uid = 48
import_environment = TZ DEBUG=1
last_valid_uid = 48
login_trusted_networks = ****
mail_debug = yes
mail_gid = pop
mail_plugins = " mail_log notify zlib quota"
mail_uid = pop
managesieve_notify_capability = mailto
managesieve_sieve_capability = fileinto reject envelope encoded-character
vacation subaddress c...
2011 Apr 26
2
possible bug leading to lmtp crashes
...is
> causing my crash? I am still experimenting.
>
> I have three systems doing this. Two were Fedora 15 current and one
> Fedora 14 current. I have upgraded F14 to F15 to help remove variability.
>
> Trever
Sorry for responding to my own posts. Neither of the following fix it:
import_environment = HOME USER TZ KRB5CCNAME=/etc/dovecot/krb5.cc
LISTEN_FDS LISTEN_PIDS GDB
import_environment = KRB5CCNAME=/etc/dovecot/krb5.cc
I am finding it interested that abrt seems to say that environment is
empty/corrupted. I am attaching more backtraces to the Fedora bug
(https://bugzilla.redhat.com/show_b...
2019 Mar 31
1
Why is 'sent' folder missing in my MUA(email client)
...n Drafts folder.
Anything wrong? Guess it has something to do with mailbox and location.
Here is `doveconf -n`
------------------
auth_cache_size = 1 M
auth_debug_passwords = yes
auth_mechanisms = plain login
auth_ssl_username_from_cert = yes
auth_verbose = yes
auth_verbose_passwords = yes
import_environment = TZ
login_trusted_networks = 172.16.0.0/12
mail_location = maildir:/var/mail/%n/Maildir
mail_privileged_group = mail
namespace inbox {
inbox = yes
location =
mailbox Drafts {
special_use = \Drafts
}
mailbox Junk {
special_use = \Junk
}
mailbox Sent {
special_use = \Sent...
2004 May 27
1
Solaris/PAM/AFS: can't make it work
...request_receive_expect entering: type 51
debug3: mm_request_receive entering
debug3: monitor_read: checking request 50
debug3: mm_answer_pam_query
debug3: PAM: sshpam_query entering
debug3: ssh_msg_recv entering
debug3: PAM: do_pam_account pam_acct_mgmt = 0
debug3: ssh_msg_send: type 0
debug3: PAM: import_environments entering
buffer_get: trying to get more bytes 4 than in buffer 0
debug1: do_cleanup
debug1: PAM: cleanup
debug3: PAM: sshpam_thread_cleanup entering
debug1: do_cleanup
debug1: PAM: cleanup
debug3: PAM: sshpam_thread_cleanup entering
- I tried applying the patches that Christian Pfaffel posted. Bu...
2017 Jan 23
2
Segfault on LIST Command
...OS: Linux 3.18.16-intel-vm-64bit x86_64 Debian 8.6
> auth_debug = yes
> auth_debug_passwords = yes
> auth_socket_path = /usr/local/var/run/dovecot/auth-userdb
> auth_verbose = yes
> base_dir = /usr/local/var/run/dovecot/
> default_internal_user = pop
> first_valid_uid = 48
> import_environment = TZ DEBUG=1
> last_valid_uid = 48
> login_greeting = Dovecot ready.
> login_trusted_networks = ****
> mail_debug = yes
> mail_gid = pop
> mail_location = maildir:~/Maildir
> mail_plugin_dir = /usr/local/lib/dovecot/
> mail_uid = pop
> managesieve_notify_capability = mail...