|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: chroot + sasl2 passwd auth
From: Andreas Winkelmann (ml
awinkelmann.de)
Date: Sat May 13 2006 - 10:14:38 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Am Saturday 13 May 2006 16:52 schrieb Brendan Grossman:
> I'm setting up Cyrus SASL2 auth on an OpenBSD 3.8-stable system and at the
> moment getting the following error...
>
> warning: SASL authentication failure: Could not open db
>
> smtpd.conf didn't exist in /usr/local/lib/sasl2/, so I created it adding
> the following line...
>
> pwcheck_method: pwcheck
I don't think your Cyrus-SASL is compiled with "pwcheck". Since Cyrus-SASL 2.x
you should use saslauthd, if you want to authenticate System-Users.
pwcheck_method: saslauthd
And because saslauthd can only handle PLAIN and LOGIN, add a second line.
mech_list: plain login
> I'm not sure if it's being read or not, but whatever the case, the passwd
Maybe /etc/sasl or /etc/sasl2. Look in the Documentation of your OS regarding
Cyrus-SASL.
> file won't be able to be read from a chroot environment, so I was wondering
> how I go about this setup... I want to leave it chroot'd and I don't want
> to copy the passwd file to there.
Move the socket from saslauthd to the chroot. Start it with an additional
"-m":
saslauthd -a xxxx -m /var/spool/postfix/right/path/to/socket/dir
--
Andreas
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]