Mailinglist Archive: opensuse-security (409 mails)

< Previous Next >
Re: [suse-security] Using imapd without shell-access?
  • From: Michael Zimmermann <zim@xxxxxxxx>
  • Date: Mon, 12 Aug 2002 10:33:56 +0200
  • Message-id: <200208121034.12682.zim@xxxxxxxx>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

At Sunday 11 August 2002 21:45 Steffen Dettmer wrote:
> Maybe imapd checks /etc/shells and wants to find /bin/false in
> it?

No Steffen, I made an error in my analysis.

The real reason of being unable to login
had to do with MD5-Passwords on that accounts.
Somehow (I think) PAM is unable to handle
MD5 passwords correctly with certain applications.
Could be, there was a PAM-interface-change and
not all apps are using the right PAM-Interface (?)
or something like that.

I don't know, but I avoided the problem by switching
to cram-md5 authentication instead of PAM.

Greetings
Michael
- --
Michael Zimmermann (Vegaa Safety and Security for Internet Services)
Key fingerprint = 1E47 7B99 A9D3 698D 7E35 9BB5 EF6B EEDB 696D 5811
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE9V3MD72vu22ltWBERArY7AJ4xSiOquH/b8twixySZ/aDJoN1+DgCfde/h
pwkRU05WlBRNRT+dEdWB+n0=
=2FW0
-----END PGP SIGNATURE-----


< Previous Next >