Mailinglist Archive: opensuse-security (485 mails)

< Previous Next >
Re: [suse-security] postfix/imap/cyrus-sasl and Pam backend
  • From: Andreas Winkelmann <ml@xxxxxxxxxxxxxx>
  • Date: Wed, 10 Mar 2004 15:52:52 +0100
  • Message-id: <200403101552.52106.ml@xxxxxxxxxxxxxx>
Am Mittwoch, 10. März 2004 15:45 schrieb Markus Feilner:

> I did. All those accounts in sasldb can send mail (postfix-sasl-smtp)
> and fetch mail (cyrus-imap), if I am authenticating against saslauthd
> and sasldb.
> But can't I use the (pam) system account with password over tls+sasl?
> The funny thing is:
> If I tell saslauthd to use pam instead of sasldb, the only difference
> is, that i Have to use PLAIN or LOGIN, and diest-MD5 is not working any
> longer. that seems correct, but sasldb is still used:
> I made some accounts in sasldb for users and gave them different
> passwords than the system passwords (pam).
> I does not seem to make any difference, whether i tell saslauthd to use
> pam or sasldb - it aways uses the passwords from sasldb. The only
> difference is that i have to use the unsecure PLAIN or LOGIN method.
> What did i do wrong?

# postconf -n

# cat /usr/lib/sasl2/smtpd.conf

# rcsaslauthd stop
# saslauthd -d -a pam
(To see some debugging-output)

And the Parts of your Log (/var/log/messages and /var/log/mail).

--
Andreas


< Previous Next >