From: Román Medina (roman at rs-labs dot com)
Date: Thu Mar 25 2004 - 06:42:02 EST
>> I've researched a bit and I've seen that saslauthd is sending an
>> incorrect
>> query to Mysql: saslauthd is asking for the pass of "user" instead of
>> "user at domain dot com", which is the complete sasl_username received by
>> postfix
>> (although saslauthd takes the domain part as "realm").
> Use a version before 2.1.17, best to downgrade to 2.1.15.
I downgraded to 2.1.15 (and marked this version as "hold" so new apt-get
upgrades don't break SMTP auth again) and now it works ok again. I'm still
wondering why this non-transparent changes have been introduced in
cyrus-sasl2. I'll be glad to hear about it.
A workaround to use latest versions (2.1.18+), I guess, could be to use
MySQL plugin / auxprop (instead of pam_mysql) and hack the sql sentence
(mysql_statement) to something like this:
select %p from user_table where username = '%u@%r'
I haven't tried it but it should work. No idea about having this fixed
using pam_mysql, apart from the downgrade, of course :-/
Regards,
-Roman
|
|
|