search for: system_user

...rials to setup a shared namespace with dovecot-1.1.8/LDAP passdb/userdb (prefetch)/Maildir, I found out that : 1) ACL are mandatory (at least if the acl plugin is triggered in dovecot.conf) Am I correct ? I'm still not sure if we can do without ACL at all (only with unix permissions and system_user userdb extra field). 2) the system_user userdb extra field is supposed to be ...the logname of the user the secondary groups of whom we want to check ! i.e. if user foobar belongs to secondary groups foogid, zgid, wgid and doveshared uid=xxx(foobar) gid=yyy(foogid) groups=zzz(zgid),w...

...st and into Hiera. Unfortunately I haven''t been able to get it to work the way I thought it would. The error suggests that perhaps create_resources cannot create virtual resources, but the docs I''ve read so far don''t address it. The class (in init.pp): class users { $system_users = hiera(''system_users'') $system_groups = hiera(''system_groups'') create_resources("@users::mkuser",$system_users) create_resources("@users::mkgroup",$system_groups) } # class users The define (in mkuser.pp): define users::mkuser (...

...*:<gid>:foobar,foobaz the permissions on the real Maildir are ok for that group : drwxrwx--- 3 root doveshared 4096 Jan 26 18:58 /courriel/boites/doveshared drwxrwx--- 5 root doveshared 4096 Jan 26 18:58 .box (in /courriel/boites) I made the userdb (prefetch) return the system_user extra_field (for now, I'm using an used LDAP attribute - I will create a new attribute in my schema later) : pass_attrs = uid=user,userPassword=password,homeDirectory=userdb_home,,,uidNumber=userdb_uid,gidNumber=userdb_gid,shadowMax=userdb_system_user and it seems to be actually ret...

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, I've been working in the bash scripts used in the page http://wiki.centos.org/HowTos/Chroot_Vsftpd_with_non-system_users Some of the changes are: - - Add vsftpd TLS support in the configuration. So USER and PASS don't be clearly readable. - - If SELinux is available, set the boolean allow_ftpd_anon_write to on in the configuration script. - - Move the first ftp virtual user creation out of configuration scri...

I'm using dovecot RC6. I have a group named "cmpymail" with 2 users "jdoe at arinbe.com" and "jsmith at arinbe.com". I set up a mail folders like: drwxrwx--- 4 cmpymail cmpymail 4096 2006-08-13 02:21 cmpymail drwxrwx--- 3 jdoe users 4096 2005-11-21 13:34 jdoe drwxrwx--- 3 jsmith users 4096 2006-08-13 02:27 jsmith drwxrwx--- 3 fred users

I am stuck. I get nothing in the logs (about deliver). Sendmail complains about "User unknown". I am not sure I have my sendmail.mc configured right, can someone confirm or give me some sample config files that make use of Dovecot+LDAP and sendmail LDA? Dovecot is running as root. I am a little confused, so the auth-master is not even needed? (the whole socket listen {}, since I am

.... # # Available substitutions: # %u = entire userid # %n = user part of user at domain # %d = domain part of user at domain # # Query to retrieve the user information. # # The query must return only one row. The columns to return are: # home - Home directory # mail - MAIL environment # system_user - System user name (for getting user's groups from /etc/group) # uid - System UID # gid - System GID # # Either home or mail is required. uid and gid are required. If more than one # row is returned or there's missing fields, login will automatically fail. # I'm a bit slow here,...

...With dovecot-1.1.8/Maildir/LDAP pass/userdb (prefetch), I'm trying to set up a Maildir ".box" shared in rw between 2 users in a "Public" namespace. I can't get it to work unless I chmod 777 everything, which obiously is not what I want. 1) am I correct thinking that the system_user userdb extra_field and unix permissions should be enough to achieve that and that ACLs is only if I want to fine tunes mailbox permissions ? 2) let's say that my public namespace prefix is Public/, that the .box/ maildir is in /path/to/public/.box and my 2 users belong to the doveshared un...

Hi, This update is for the HowTo at http://wiki.centos.org/HowTos/Chroot_Vsftpd_with_non-system_users Regarding two of the scripts provided: vsftpd_virtual_config.sh and vsftpd_virtual_config_withTLS.sh: The configuration additions it makes to PAM do not work on 64-bit systems. In vsftpd_virtual_config.sh (Lines 55 & 56) and vsftpd_virtual_config_withTLS.sh (Lines 123 & 124) should be ch...

The proposed subject of Wiki contribution: Chroot vsftpd with non-system users The proposed location of Wiki contribution: http://wiki.centos.org/HowTos/Chroot_Vsftpd_with_non-system_users I propose this Wiki to give user choice that they can select whether virtual users and system account coexist in vsftpd system. The shell file vsftpd_virtual_config.sh should also adjust to make this function work. It works for me to put below two lines ahead of the original /etc/pam.d/vsftpd f...

...(default): client out: OK 1 user=lists dovecot: Oct 10 07:52:25 Info: auth(default): master in: REQUEST 67 7280 1 dovecot: Oct 10 07:52:25 Info: auth(default): passwd(lists,192.168.1.103): lookup dovecot: Oct 10 07:52:25 Info: auth(default): master out: USER 67 lists system_user=lists uid=1012 gid=1005 home=/home/lists dovecot: Oct 10 07:52:25 Info: pop3-login: Login: user=<lists>, method=PLAIN, rip=192.168.1.103, lip=75.48.112.185 dovecot: Oct 10 07:52:25 Info: POP3(lists): Effective uid=1012, gid=1005 dovecot: Oct 10 07:52:25 Info: POP3(lists):...

Hi Aki I see what you are saying, and no I don?t believe so. I?m using typical /etc/passwd for the user db. I reviewed https://wiki.dovecot.org/UserDatabase/ExtraFields <https://wiki.dovecot.org/UserDatabase/ExtraFields> but I?m not clear on how to actually return system_user userdb attribute. I also have set mail_user_groups = sharedusers in dovecot.conf and then in /etc/group put all the users with mailboxes into the sharedusers group. I can see why that wouldn?t work if the above is not set. Can you point me in the right direction on how to pass that information?...

...ult): client in: AUTH 1 PLAIN service=POP3 lip=xx.xx.xx.xx rip=yy.yy.yy.yy resp=<hidden> May 29 08:18:06 Info: auth(default): client out: OK 1 user=obantec_com May 29 08:18:06 Info: auth(default): master in: REQUEST 1 19528 1 May 29 08:18:06 Info: auth(default): master out: USER 1 obantec_com system_user=obantec_com uid=501 gid=10001 home=/home/domain/domain17 May 29 08:18:06 Info: pop3-login: Login: user=<obantec_com>, method=PLAIN, rip=yy.yy.yy.yy, lip=xx.xx.xx.xx May 29 08:18:06 proteus2 dovecot: POP3(obantec_com): Corrupted index cache file /home/domain/domain17/mail/.imap/INBOX/dovecot.i...

...P3 secured lip=x.x.x.x rip=x.x.x.x resp= auth(default): client out: CONT 1 auth(default): client in: CONT<hidden> auth(default): client out: OK 1 user=ssal0041 auth(default): master in: REQUEST 453 4779 1 auth(default): master out: USER 453 ssal0041 system_user=ssal0041 uid=3092 gid=1100 home=/home/ss pop3-login: Login: user=<ssal0041>, method=PLAIN, rip=x.x.x.x, lip=x.x.x.x, TLS POP3(ssal0041): Effective uid=3092, gid=1100 POP3(ssal0041): mbox: data=/home/ssal0041/mail/:INBOX=/var/mail/ssal0041 POP3(ssal0041): mbox: root=/home/ssal...

..., count; pw = getpwnam(auth_request->user); if (pw == NULL) { *************** *** 29,48 **** pw->pw_name, auth_request->user); } reply = auth_stream_reply_init(auth_request); auth_stream_reply_add(reply, NULL, pw->pw_name); auth_stream_reply_add(reply, "system_user", pw->pw_name); auth_stream_reply_add(reply, "uid", dec2str(pw->pw_uid)); auth_stream_reply_add(reply, "gid", dec2str(pw->pw_gid)); auth_stream_reply_add(reply, "home", pw->pw_dir); callback(reply, auth_request); } struct userdb_m...

...type: public separator: / prefix: #shared/decs/ location: maildir:/egr/mail/shared/decs:CONTROL=%h/Maildir/dovecot/public/control/decs:INDEX=%h/Maildir/dovecot/public/indexes/de list: yes subscriptions: yes auth default: passdb: driver: pam userdb: driver: passwd args: system_user= socket: type: listen client: path: /var/spool/postfix/private/auth mode: 384 user: postfix group: postfix plugin: quota: fs acl: vfile:/usr/local/etc/dovecot-acls:cache_secs=10 fts: squat

...th(def ault): master in: USER 1 cjay service=deliver Aug 6 11:30:52 mail2.engr.colostate.edu dovecot: [ID 107833 mail.info] auth-wor ker(default): passwd(cjay): lookup Aug 6 11:30:52 mail2.engr.colostate.edu dovecot: [ID 107833 mail.info] auth(def ault): master out: USER 1 cjay system_user=cjay uid=10946 gid=32 home=/top/admin/ENS/people/cjay/home Aug 6 11:30:52 mail2.engr.colostate.edu deliver(cjay): [ID 868608 mail.info] au th input: cjay Aug 6 11:30:52 mail2.engr.colostate.edu deliver(cjay): [ID 868608 mail.info] au th input: system_user=cjay Aug 6 11:30:52 mail2....

...) I've ran your perl script courier-dovecot-migrate-1.0.pl which worked just great (as far as I can tell from the OK messages) .. but when configuring my mail client for this account I get the following: Mar 16 09:49:27 magenta dovecot: auth(default): master out: USER 69 scanner system_user=scanner uid=734 gid=100 home=/home/scanner Mar 16 09:49:27 magenta dovecot: imap-login: Login: user=<scanner>, method=PLAIN, rip=::ffff:192.168.1.210, lip=::ffff:192.168.1.110 Mar 16 09:49:27 magenta dovecot: IMAP(scanner): Effective uid=734, gid=100, home=/home/scanner Mar 16 09:49:27...

...proof > that a computer account MUST have a uidNumber account. Rowland, it is not (only) a matter of authentication, it is a matter of 'act' with machine account. I've digged a bit but found nothing than (i use WPKG as deployment system, it is only an example): https://wpkg.org/System_User https://wpkg.org/SYSTEM_user_Command_Prompt probably was some old thread in mailing list; anyway, SYSTEM user can act (eg, access shares) with the machine account credentials; AFAIK accessing as SYSTEM to a share will trigger an access with machine account, and as fallback as anonymous/Everyone....

Hi Timo, Trying 1.2.beta1 with expire plugin currently: When I set mail_location = maildir:~/.maildir the expire plugin doesn't delete messages. #: expire-tool --test Info: auth input: system_user=foo Info: auth input: uid=1000 Info: auth input: gid=1000 Info: auth input: home=/home/foo Info: foo/Trash: no messages left I also noticed that above command creates a new but empty directory 'mail' in user's home dir. However using mail_location = maildir:~/Maildir and of course mo...