Re: auxprop and mysql

Subject: Re: auxprop and mysql
From: Nels Lindquist (nlindq at maei dot ca)
Date: Mon May 26 2003 - 15:20:40 EDT

• sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: Rob Tanner: "RE: Help: SASL doesn't want to build with heimdal"
• Previous message: Klyne, Simon: "RE: Help: SASL doesn't want to build with heimdal"
• In reply to: truneaux at gmx dot de: "auxprop and mysql"
• Reply: Nels Lindquist: "Re: auxprop and mysql"

On 24 May 2003 at 17:27, truneaux at gmx dot de wrote:

> AFAIK I have two options for pwcheck_method in /usr/lib/sasl2/smtpd.conf
> which are
> 1) saslauthd (this means I need saslauthd running) or
> 2) auxprop (no saslauthd needed)

IMO, using MySQL as a password store (ie, the mysql auxprop) is
preferable. That way you have the option of using secure mechanisms
like CRAM-MD5 and DIGEST-MD5 without having to maintain both a pam-
mysql setup and sasldb2.

> pwcheck_method: auxprop
> auxprop_plugin: mysql
> mysql_user: mail
> mysql_passwd: ********
> mysql_hostnames: 127.0.0.1
> mysql_database: mail
> mysql_statement: select password from accountuser where username =
> '%u'
> mysql_verbose: true

Looks pretty similar to my setup, except that I left out the
(optional) auxprop_plugin line, and I used "mysql_hostnames:
localhost" instead of the IP address. One other minor point--
according to the SASL docs, the configuration file in /usr/lib/sasl2
is usually App.conf, including the capitalization. My config file is
Sendmail.conf. Have you tried symlinking Smtp.conf to smtp.conf?

> log messages in /var/log/messages look like these:
> May 24 16:55:21 p15131138 postfix/smtpd[14070]: mysql auxprop plugin has
> been requested
> May 24 16:55:21 p15131138 postfix/smtpd[14070]: mysql plugin Parse the
> username truni at somehost dot com

This is kind of odd, though. I don't see a domain part at all while
it's constructing a search.

> May 24 16:55:21 p15131138 postfix/smtpd[14070]: mysql plugin try and connect
> to a host
> May 24 16:55:21 p15131138 postfix/smtpd[14070]: mysql plugin try and connect
> to 127.0.0.1
> May 24 16:55:21 p15131138 postfix/smtpd[14070]: mysql plugin couldnt connect
> to any host

Have you tested your MySQL access rights using the mysql client
directly? Are you sure mysqld is running?
 
> the same happens when connceting through imapd. The config-options for
> imapd.conf are those listed for smtpd.conf, all with a 'sasl_' prefix.

How are you testing the IMAP connection? Are you using imtest?
 
> Has anyone a working configuration for that kind of software composition ?

I'm using Cyrus IMAP and Sendmail rather than Postfix, but it should
be pretty similar.

----
Nels Lindquist <*>
Information Systems Manager
Morningstar Air Express Inc.

• Next message: Rob Tanner: "RE: Help: SASL doesn't want to build with heimdal"
• Previous message: Klyne, Simon: "RE: Help: SASL doesn't want to build with heimdal"
• In reply to: truneaux at gmx dot de: "auxprop and mysql"
• Reply: Nels Lindquist: "Re: auxprop and mysql"