search for: securepoint

Hi list and timo, I use dovecot lda with ldap to do a email => user lookup. I experienced that if a Mailaddress matches several users the delivery is aborted. ---------------- dovecot: auth: Error: ldap(christian.test at securepoint.de): LDAP search returned multiple entries dovecot: auth: ldap(christian.test at securepoint.de): unknown user dovecot: lda: Error: user christian.test at securepoint.de: Auth USER lookup failed ----------------- now my question, is there a way to have a mail like that delivered to all users th...

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 7 Feb 2014, matthias lay wrote: > I experienced that if a Mailaddress matches several users the delivery is > aborted. > > ---------------- > dovecot: auth: Error: ldap(christian.test at securepoint.de): LDAP search > returned multiple entries > dovecot: auth: ldap(christian.test at securepoint.de): unknown user > dovecot: lda: Error: user christian.test at securepoint.de: Auth USER lookup > failed > ----------------- > > now my question, is there a way to have a mail li...

...27 AM, Steffen Kaiser wrote: >> On Fri, 7 Feb 2014, matthias lay wrote: >> >>> I experienced that if a Mailaddress matches several users the delivery is >>> aborted. >>> >>> ---------------- >>> dovecot: auth: Error: ldap(christian.test at securepoint.de): LDAP search >>> returned multiple entries >>> dovecot: auth: ldap(christian.test at securepoint.de): unknown user >>> dovecot: lda: Error: user christian.test at securepoint.de: Auth USER lookup >>> failed >>> ----------------- >>> >&...

Hi, I'm recompiling dovecot 2.2.0/2.2.1 with error below during make install: test -z "/usr/local/dovecot/lib/dovecot/auth" || /usr/bin/mkdir -p "/usr/local/dovecot/lib/dovecot/auth" /usr/bin/mkdir: cannot create directory ?/usr/local/dovecot/lib/dovecot/auth?: File exists make[3]: *** [install-auth_moduleLTLIBRARIES] Error 1 make[3]: Leaving directory

Hi guys, I had a look in the sources about this problem. the problem seems to be the ldap_escape function that is called from ldap_verify_plain_auth_bind_userdn(..) I dont really know if this escaping is needed at this point, but with this change it works for me. No other problems discovered so far. could somebody, who is deeper in the sources give me a hint if this will make some troubles?

...hines to openssh. Showstopper bug: openssh (up to 3.1p1) doesn't seem to correctly implement expired passwords. Looking back through the archive, it looks like Dave Dykstra submitted a patch for this problem relative to an older version of openssh at least as early as last August: http://msgs.securepoint.com/cgi-bin/get/openssh-unix-dev-0108/77.html The patch seems to work on one of my test machines, after some minimal finagling. Is this patch the standard solution to this problem? Thanks! - Morty

...ame should also be done in mailbox_get_metadata(). See the patch below. Dovecot version: 2.2.0 OS: OS: Linux 3.4.39-dist i686 maildir:~/Maildir:LAYOUT=fs:INBOX=~/Maildir/INBOX Dafan [1] http://hg.dovecot.org/dovecot-2.2/rev/12136db6e31f # HG changeset patch # User Dafan Zhai <dafan.zhai at securepoint.de> # Date 1366118323 -7200 # Node ID 7f0c5122d863d303ef5e74bbf650c2bac89ac564 # Parent f33bacb03cc22e02ca2d11d527d8dc0d99214486 lib-storage: mailbox_get_metadata() no longer forces mailbox to be synced. This fixes getting virtual size through mailbox_get_metadata() of mailboxes with open trans...

...assword, which grants the user the 'guest' access > >To prevent null sessions, see MS KB Article Q143474 (NT 4.0) and >Q246261 (Windows 2000). >Note that this won't completely disable null sessions, but will >prevent them from connecting to IPC$ >Please see http://msgs.securepoint.com/cgi-bin/get/nessus-0204/50/1.html > >The remote host defaults to guest when a user logs in using an invalid >login. For instance, we could log in using the account 'nessus/nessus' > > >All the smb tests will be done as ''/'whatever' in domain ALUMNI_HOU...

...oduct: ipset Version: unspecified Hardware: x86_64 OS: Ubuntu Status: NEW Severity: minor Priority: P5 Component: default Assignee: netfilter-buglog at lists.netfilter.org Reporter: dimitri.grischin at securepoint.de I tried to pipe several commands to ipset but if one of them have a syntax error then the following command will get the typename of the before. What I did: create ipset: # ./ipset create test hash:net # ./ipset create test_iface hash:net,iface pipe commands: Only the second command has a w...

Hello Christian, I tried what you suggested by adding "REFERALS off" to /etc/ldap/ldap.conf and restarting slapd and dovecot, but the error persists. On Tue, Jun 4, 2013 at 7:56 AM, Christian Wiese < christian.wiese at securepoint.de> wrote: > Hi Ron, > > I didn't had the time to check all logs but the error log. > First thing you should check if there are LDAP REFFERALS enabled in > the systems ldap.conf. > I had a similar looking issue and it took me a good amount of time to > figure out that I...

Hi everyone, I am writing a dovecot statistic plugin, which calls the 'mailbox_get_metadata' function with MAILBOX_METADATA_VIRTUAL_SIZE as the 2nd parameter. enum mailbox_status_items metadata_items = MAILBOX_METADATA_VIRTUAL_SIZE; struct mailbox_metadata metadata; mailbox_get_metadata(mailbox, metadata_items, &metadata); but Valgrind finds a memory leak when this function is

...username and a null password, which grants the user the 'guest' access To prevent null sessions, see MS KB Article Q143474 (NT 4.0) and Q246261 (Windows 2000). Note that this won't completely disable null sessions, but will prevent them from connecting to IPC$. Please see http://msgs.securepoint.com/cgi-bin/get/nessus-0204/50/1.html. All the smb tests will be done as ''/'whatever' in domain

...freeNX running on my UbuntuBox and connect to it with the Windows-Client just using PublicKey Authentication ) But unfortunately the documentation of the Match-Statement refers to the PATTERN section, which is non existent :-( After a little bit of research on the internet i found this: http://securepoint.com/lists/html/OpenSSH/2006-11/msg00076.html So when could we expect this feature to be implemented in OpenSSH or an updated man-page? :-) Greetings from Vienna in Austria, Martin Schimandl

...ll username and a null password, which grants the user the 'guest' access To prevent null sessions, see MS KB Article Q143474 (NT 4.0) and Q246261 (Windows 2000). Note that this won't completely disable null sessions, but will prevent them from connecting to IPC$ Please see http://msgs.securepoint.com/cgi-bin/get/nessus-0204/50/1.html The remote host defaults to guest when a user logs in using an invalid login. For instance, we could log in using the account 'nessus/nessus' All the smb tests will be done as ''/'whatever' in domain ALUMNI_HOUSE CVE : CAN-1999-0504,...

Hi, I experienced some problems with authenticate. seems like the mail clients like thunderbird send their base64 string in ISO- encoding, which doesnt work on my dovecot setup if there are some Umlauts I am not able to login as "?mer" for example If I authenticate from telnet with an base64 encoded utf-8 string like 'echo -en "\0?mer\0Start12" |base64'

Hi, after an update from dovecot 2.1.16 to 2.2.0 I encountered a problem when using multiple master user passdb's like the following: ----%<--------------------------------------------------------- passdb { args = /etc/dovecot/passwd.foo-master driver = passwd-file master = yes } passdb { args = /etc/dovecot/passwd.bar-master driver = passwd-file master = yes }

Hi All. Attached is a patch that implements password expiry with PAM and privsep. It works by passing a descriptor to the tty to the monitor, which sets up a child with that tty as stdin/stdout/stderr, then runs chauthtok(). No setuid helpers. I used some parts of Michael Steffens' patch (bugid #423) to make it work on HP-UX. It's still rough but it works. Tested on Solaris 8 and

...that > maintained browse lists on both sides. > > There are plenty of fairly detailed explanations on this, some of which > have my name attached, if you try Google-ing this list and FreeS/WAN. > > http://www2.frell.ambush.de/archives/freeswan-users/0721.html > > http://msgs.securepoint.com/cgi-bin/get/linux-ipsec-0111/477.html > > IIRC, the issue revolved around part of the browse process utilizing > broadcasts (which aren't routable and won't traverse the VPN). Using > WINS and browse list syncronization allowed the clients to browse with > IP information...

...assword, which grants the user the 'guest' access > >To prevent null sessions, see MS KB Article Q143474 (NT 4.0) and >Q246261 (Windows 2000). >Note that this won't completely disable null sessions, but will >prevent them from connecting to IPC$ >Please see http://msgs.securepoint.com/cgi-bin/get/nessus-0204/50/1.html > >The remote host defaults to guest when a user logs in using an invalid >login. For instance, we could log in using the account 'nessus/nessus' > > >All the smb tests will be done as ''/'whatever' in domain ALUMNI_HOU...

hi all, I encountered some problem with lowercasing chars like an "?" with user_attrs like this: user_attrs = uid=home=/mail/%Lu, =myvar=%L{ldap:uid} the ? doesnt get lower cased in both cases # doveadm user BL?TULA field value user bl?tula uid vmail gid vmail home /mail/bl?tula mail maildir:~/Maildir:LAYOUT=fs:INBOX=~/Maildir/INBOX myvar bl?tula somebody knows if there a fix for