similar to: Authdb NSS module

I use LDAP right now, but local cached sssd queries are much faster and reliable. On July 15, 2019 6:49:18 AM GMT+03:00, Aki Tuomi <aki.tuomi at open-xchange.com> wrote: > > >On 15/07/2019 02:54 Eugene via dovecot < dovecot at dovecot.org> wrote: > > > >Hello! > > >Upgrading manual tells that authdb [NSS module was removed][1] some >time ago. >

<!doctype html> <html> <head> <meta charset="UTF-8"> </head> <body> <div> <br> </div> <blockquote type="cite"> <div> On 15/07/2019 02:54 Eugene via dovecot < <a href="mailto:dovecot@dovecot.org">dovecot@dovecot.org</a>> wrote: </div> <div>

Can you provide your /etc/nssswitch.conf? Aki On 19.09.2018 10:40, Reuben Farrelly wrote: > I've been running with this almost identical patch already for some time: > > diff -up dovecot-2.3.0.1/src/auth/mycrypt.c.libxcrypt > dovecot-2.3.0.1/src/auth/mycrypt.c > --- dovecot-2.3.0.1/src/auth/mycrypt.c.libxcrypt?????? 2018-02-28 > 15:28:58.000000000 +0100 > +++

I have no idea why it's returning invalid argument, maybe you need to raise this as issue with glibc? Aki On 19.09.2018 10:43, Reuben Farrelly wrote: > Sure: > > thunderstorm ~ # cat /etc/nsswitch.conf > # /etc/nsswitch.conf: > # $Header: > /var/cvsroot/gentoo/src/patchsets/glibc/extra/etc/nsswitch.conf,v 1.2 > 2017/08/12 16:21:44 slyfox Exp $ > > passwd:?????

This is bit of a longshot, but can you try applying https://github.com/dovecot/core/commit/63a74b9.patch and see if this helps? Aki On 19.09.2018 10:33, Reuben Farrelly wrote: > glibc-2.28. > > There was a posting by Michael Marley on 31/08 saying he saw something > similar to this problem after upgrading to 2.28 as well with 'doveadm > purge'. > > Reuben > >

Hi, Curtis (and the group), I tried setting up Dovecot's auth default section as you described, with both authdb and userdb set to 'passwd.' It let the authenticated session start on the POP side, but I got consistent authentication failures on the client side that the passwords didn't match. I don't have any more time to mess with it this morning, but I will make it a

It seems my logins are taking a long time to get logged in. I am guessing that it is worse when classes start and a lot of the kids try to login at once. My old server did not seem to have this problem though and we have the same number of students. Where should I start looking at this? I am guessing that it is ldap, but want to make sure. If I log in at a computer and go to start->run and

Gedalya-san Thank you for the information. It seems to be difficult... morikawa -----Original Message----- From: dovecot [mailto:dovecot-bounces at dovecot.org] On Behalf Of Gedalya Sent: Thursday, October 29, 2020 1:17 PM To: dovecot at dovecot.org Subject: Re: dovecot quota-warning detection mail Aha. Then it's not a straightforward case of just adding the domain name to the same

Hello, does anybody knows what managesieve addon sets in SERVICE env when autentificating to checkpassword? thanks Pete

Hi there, I run a system that has a lot of virtual users. We invoke deliver from exim and pass the directory to deliver into using the HOME environment variable, so deliver doesn't do any database lookups during the delivery process. The exim pipe environment is described at http://exim.org/exim-html-current/doc/html/spec_html/index.html#toc0239, but basically I'd like to know the domain

Hi Stephan, ManageSieve uses the wrong? service name for the authdb lookup. With dovecot-1.2-managesieve the service name was changed from 'managesieve' to 'sieve'. So I altered my table layout in order to make the query "SELECT userid AS "user", password FROM dovecotpassword('%Ln', '%Ld') WHERE %Ls" work again. When I try to login on the sieve

Couple questions about running doveadm with multiple instances... I have Dovecot 2.2.13 on RHEL6 running across 3 boxes, each with a director and main instance running. When I try to lookup something on the main instance (which is handling user auth) via its auth-userdb socket directly, I get an error: # doveadm auth lookup -a /var/run/dovecot-main/auth-userdb myuser doveadm(root): Error: passdb

I suspect the problem is that dovecot tries to report LDAP error over GSSAPI. So the best fix is to make sure your LDAP server does not return error. =) Aki On 15.8.2019 14.56, Eugene Bright wrote: > That's right. > GSS-API is not used anywhere else. > Do you like to inspect my full configuration? > I can dump connection session and send pcap file here. > > On August 15,

Hello, At this moment i setup a SAMBA 4 Memberserver. I installed the following packages: ii libwbclient0:amd64 99:4.1.9-8 amd64 Glue package for sernet-samba-libs. ii sernet-samba 99:4.1.9-8 amd64 SMB/CIFS file, print, and login server for Unix ii sernet-samba-ad 99:4.1.9-8

Hello, list! I am in the midst of configuring a new Dovecot IMAP server, and I'm preparing to setup shard mailboxes as part of the ocnfiguration. In order to get these setup the way I want, I've figured out that I'm going to have to setup an acl_shared_dict. This is where things start to get confusing for me, as I have had difficulty finding thorough explanations of dictionary

Hi, due to compatibility issues with mail clients I think I have to use plain text authentication. In order to secure the passwords during their transport I'll use SSL encryption. After reading some documentation I think that I'll have to store the passwords as plain text in the authdb. That is something I dislike very much as it is a (imho) good tradition for unix to store only

Hello! Dovecot uses it's own SASL implementation, doesn't it? Aug 14 23:45:23 example.com auth[10428]: GSSAPI client step 1 Aug 14 23:45:23 example.com auth[10428]: encoded packet size too big (813804546 > 65536) Aug 14 23:45:23 example.com dovecot[10085]: auth-worker(10428): Error: LDAP: Can't connect to server: ldap://ipa2.example.com Aug 14 23:45:23 example.com

> On 15/08/2019 00:34 Eugene via dovecot <dovecot at dovecot.org> wrote: > > > The next combination of parameters makes 100% LDAP connections unsuccessful (the log snippet form the previous mail). > sasl_bind = yes > sasl_mech = gssapi > tls = yes > > Looks like this combination is utterly incorrect and should be prohibited (tls must not be used when mech is

OK. "passdb/userdb" Setting part $ dovecot -n (Excerpt from change) ---------------------------------------------------------------------------- --------------------- passdb { args = scheme=CRYPT username_format=%u /etc/dovecot/users.auth driver = passwd-file } userdb { args = username_format=%u /etc/dovecot/users.auth driver = passwd-file } protocol lmtp { info_log_path =

Greetings All, I am trying to get sshd to authenticate using PAM in a situation where there is no password entry (as found by getpwent et. al.) for a user. Setting: AllowUsers * UsePAM yes causes the right PAM stuff to be invoked, but as soon as the PAM module tries to have a conversation with the (illegal) user (in order to get the password) sshd throws out the authentication context.