username with '@' : works but weird...

From: Joel CARNAT (no email)
Date: Wed Feb 15 2006 - 10:04:25 EST

  • Next message: Casper: "Murder error"

    Hi,

    I want my user to log with their email addresse (eg, ).
    All my users are stored in LDAP (OpenLDAP) -
    "mail=,ou=...,dc=here,dc=com".

    It's working - aka I can authenticate a real user.
    But, as the "admins: cyrus", I have to have an LDAP entry set like
    "mail=cyrus@,dc=here,dc=com" with the password. This looks not nice to
    me so I think maybe my whole cyrus conf is not clean - working but not
    the "right" way.

    To have a working conf, I did :
    # egrep -v '^$|^#' /etc/default/saslauthd
    START=yes
    MECHANISMS="ldap"

    # cat /etc/saslauthd.conf
    ldap_servers: ldap://localhost/
    ldap_search_base: dc=here,dc=com
    ldap_bind_dn: cn=Manager,dc=here,dc=com
    ldap_bind_pw: secret
    #ldap_filter: mail=%u
    ldap_filter: mail=%u@%d
    ldap_version: 3

    # egrep -v '^$|^#' /etc/imapd.conf
    configdirectory: /var/lib/cyrus
    defaultpartition: default
    partition-default: /var/spool/cyrus/mail
    partition-news: /var/spool/cyrus/news
    newsspool: /var/spool/news
    altnamespace: no
    unixhierarchysep: yes
    lmtp_downcase_rcpt: yes
    admins: cyrus
    allowanonymouslogin: no
    popminpoll: 1
    autocreatequota: 0
    umask: 077
    sieveusehomedir: false
    sievedir: /var/spool/sieve
    hashimapspool: true
    allowplaintext: yes
    sasl_mech_list: PLAIN
    loginrealms: here.com
    sasl_pwcheck_method: saslauthd
    sasl_auto_transition: no
    tls_ca_path: /etc/ssl/certs
    tls_session_timeout: 1440
    tls_cipher_list: TLSv1+HIGH:!aNULL:@STRENGTH

    If I set :
    ##########
    virtdomains: yes
    defaultdomain: here.com
    ##########

    what I want to end with is:
    1. as much as possible in LDAP
    2. loggin with
    3. most of the email will be
    4. cyrus admin be "cyrus" (or whatever that does not look like a email
       address. using "ldap_filter: (|(mail=%U@%d)(ou=%U))" does what I want
       although I'm nearly sure it's not "the clean way" to go.

    seems to make sense ?
    what's the part of my conf to modify ?

    thanks for help,
            Jo 

    -- 
,- This mail runs ------.
`--------- NetBSD/smtp -'




    ----
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
  • Next message: Casper: "Murder error"





    Hosted Email Solutions

    Invaluement Anti-Spam DNSBLs



    		Powered By FreeBSD   Powered By FreeBSD