saslauthd+pam_mysql

From: Stoyan Dimov (cyrus-sasl-list at subscriptions dot systeem dot com)
Date: Tue Mar 16 2004 - 22:54:06 EST

  • Next message: Simon Matter: "Re: Make errors"

    Hi,

    I am trying to get cyrus-imapd v2.2.3, cyrus-sasl v2.1.18, cyrus-saslauthd
    v2.1.18, postfix v2.0.18 and pam_mysql v0.5 running on FreeBSD
    4.8-RELEASE-p16. All packages are installed via ports collection.

    My problem looks like this:

    When I try to authenticate (to postfix and imap) as user at domain dot com saslauthd
    strips the domain name from the username and I get this in auth.log:

    saslauthd[73294]: pam_sm_authenticate called.
    saslauthd[73294]: dbuser changed.
    saslauthd[73294]: dbpasswd changed.
    saslauthd[73294]: host changed.
    saslauthd[73294]: database changed.
    saslauthd[73294]: table changed.
    saslauthd[73294]: usercolumn changed.
    saslauthd[73294]: passwdcolumn changed.
    saslauthd[73294]: crypt changed.
    saslauthd[73294]: logtable changed.
    saslauthd[73294]: logmsgcolumn changed.
    saslauthd[73294]: logusercolumn changed.
    saslauthd[73294]: loghostcolumn changed.
    saslauthd[73294]: logpidcolumn changed.
    saslauthd[73294]: logtimecolumn changed.
    saslauthd[73294]: db_connect called.
    saslauthd[73294]: returning 0 .
    saslauthd[73294]: db_checkpasswd called.
    saslauthd[73294]: pam_mysql: where clause =
    saslauthd[73294]: SELECT password FROM accountuser WHERE username='user'
    saslauthd[73294]: pam_mysql: select returned more than one result
    saslauthd[73294]: returning 7 after db_checkpasswd.
    saslauthd[73294]: do_auth : auth failure: [user=user] [service=imap]
    [realm=domain.com] [mech=pam] [reason=PAM auth error]

    Which is fine is some cases (ex: if I had account 'user') but I need to be
    able to handle accounts like user at domain1 dot com and user at domains2 dot com dot

    Can someone please tell me how to pass to pam_mysql the realm parameter from
    saslauthd or how to tell saslauthd not to split the user name and the domain
    so pam_mysql receives the full e-mail address as username!

    TIA
    Stoyan


  • Next message: Simon Matter: "Re: Make errors"





    Hosted Email Solutions

    Invaluement Anti-Spam DNSBLs



    Powered By FreeBSD   Powered By FreeBSD