headers
Simon Matter | 1 Oct 2005 10:50

Re: question about hardware architecture.

> 2005/9/30, Simon Matter <simon.matter <at> ch.sauter-bc.com>:
>> > Helo.
>> >
>> > I was asked to prepere hardware architecture to Cyrus based
>> > e-mail system for large number of accounts.
>> >
>> > What i want to propose is.
>> >
>> > 4 IBM xSeries 346 for mailbox servers.
>> > EMC CX700 as storeage.
>> >
>> > But i dont know how te resolve problem of mountig volumes from EMC.
>> >
>> > I want to do this for this way:
>> >
>> > Every server in normal way is mounting from EMC one volume on wich are
>> > binaries and mailboxes for this instance. When this server crash, i
>> > would like to remount this volume on the one from 3 remaining servers,
>> > and there run this instance.
>> >
>> > On SUN hardware i was using Veritas VM for such cluster operation.
>> > Now on x86 i've no idea. Veritas is not good for me, because as i
>> know,
>> > he doesn't work on Debian or FreeBSD systems which i plan to use.
>> >
>> > Have you got any idea ? which help me ;-)
>>
>> Just some ideas:
>>
>> For Linux there are some cluster FS like
(Continue reading)

Permalink | Reply | 2 comments |
headers
evildad | 1 Oct 2005 12:01
Picon
Favicon

Re: Ant: RE: RE: RE: RE: Cyrus Imap

Hi there,
i use Pam_mysql 0.5 and i tried 0.6. Both didn't work
for me.
I changed /etc/pam.d/imap 

I commented out:
account required pam_mysql.so user=mail passwd=secret
host=localhost db=mail table=accountuser
usercolumn=username passwdcolumn=password crypt=1
logtable=log logmsgcolumn=msg logusercolumn=user
loghostcolumn=host logpidcolumn=pid logtimecolumn=time

and replaced it with 
account required pam_permit.so

With this configuration I can login.
But there is still one Problem left.

I've sent a mail to a domain I've created in
web-cyradm  and receive a Mailbox does not exist
error.
Does web-cyradm not create the mailboxes?

Thanks, 
Evildad

> Message: 2
> Date: Thu, 29 Sep 2005 21:19:39 +0200
> From: Andreas Winkelmann <ml <at> awinkelmann.de>
> Subject: Re: Ant:  RE: RE: RE: RE: Cyrus Imap
(Continue reading)

Permalink | Reply | 0 comments |
headers
Georg Gell | 1 Oct 2005 13:25
Favicon
Gravatar

cyrus sasl realm problem

Hello,

I have an old server with about 50 mail users, which uses cyrus imapd
with sasl and pam_mysql. The server settings are:
unixhierarchysep: no
virtdomains: no

On the new server, I want users to be able to log in with their email
addresses as username, but I want to let the old users use their old
username/password combinations. So I set
unixhierarchysep: yes
virtdomains: yes
defaultdomain: servername.domainname.com
sasl_pwcheck_method: auxprop
sasl_sql_engine: mysql
sasl_sql_select: SELECT password FROM accountuser WHERE username = '%u <at> %r'
...

This works well. But I want to migrate the old account to the new
machine. As I understand the docs, this should work, because username
without realm are used with defaultdomain as result. But this doesn't
happen for sasl authentication.

Let's say I have user georg with password georgpass on the old server. I
thought on the new server, I would leave the mailbox on cyrus like
user/georg, and for auth in the mysql database I would just add to each
username the  <at> servername.domainname.com, so that if the default domain
is added to the username we should be able to log in.

But something else happens (trying to use the pop server):
(Continue reading)

Permalink | Reply | 3 comments |
headers
Lee Nau | 1 Oct 2005 19:41
Picon

cyradm login problems

I am using cyrus 2.1.18-1 with the imaps protocol.  The sasl authentication method is shadow.  Whenever I issue the cyradm command, specifically  "cyradm --user cyrus localhost --auth login" I am met with an "IMAP password:" prompt.  The cyrus user's system and sasldb password are the same, and entering it at this prompt results in being returned to the shell with roughly two tabs of whitespace before the prompt.  If I issue the command "cyradm --user cyrus localhost"  (leaving off the auth method), I am returned to the shell without any prompt for passwords.  Any help would be greatly appreciated.

-Lee

----
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Permalink | Reply | 0 comments |
headers
Gary Mills | 1 Oct 2005 23:57
Picon
Picon
Favicon

Easysieve 1.5 is available

easysieve.pl is a web application that offers a simplified interface
for commonly-used Cyrus sieve script functions.  Each web form has
a detailed explanation of its purpose, and each field on the form
has a block of text explaining what should be entered there.

It's available at: ftp://ftp.cc.umanitoba.ca/src/

This version no longer requires the websieve libraries, using the
Cyrus libraries exclusively.  It also supports pre-authentication
with the Pubcookie/WebISO invisible portal, in addition to the
built-in authentication.

--

-- 
-Gary Mills-    -Unix Support-    -U of M Academic Computing and Networking-
----
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Permalink | Reply | 0 comments |
headers
David Mwadzala | 3 Oct 2005 11:51

Cyrus IMAP/POP Greeting Banner

Hi,
 
How does one change the  Cyrus IMAP/POP greeting banner?
 
David Mwadzala
----
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Permalink | Reply | 1 comment |
headers
Ken Murchison | 3 Oct 2005 14:18

Re: Cyrus IMAP/POP Greeting Banner

David Mwadzala wrote:

> Hi,
>  
> How does one change the  Cyrus IMAP/POP greeting banner?

This is certainly a FAQ.  Search the archives for several threads on 
this topic.  The short answer is modify the source.

--

-- 
Kenneth Murchison     Oceana Matrix Ltd.
Software Engineer     21 Princeton Place
716-662-8973 x26      Orchard Park, NY 14127
--PGP Public Key--    http://www.oceana.com/~ken/ksm.pgp
----
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Permalink | Reply | 0 comments |
headers
brad | 3 Oct 2005 15:06

Re: cyrus sasl realm problem

On Sat, 2005-10-01 at 13:25 +0200, Georg Gell wrote:
> Hello,
> 
> I have an old server with about 50 mail users, which uses cyrus imapd
> with sasl and pam_mysql. The server settings are:
> unixhierarchysep: no
> virtdomains: no
> 
> On the new server, I want users to be able to log in with their email
> addresses as username, but I want to let the old users use their old
> username/password combinations. So I set
> unixhierarchysep: yes
> virtdomains: yes
> defaultdomain: servername.domainname.com
> sasl_pwcheck_method: auxprop
> sasl_sql_engine: mysql
> sasl_sql_select: SELECT password FROM accountuser WHERE username = '%u <at> %r'
> ...
> 
> This works well. But I want to migrate the old account to the new
> machine. As I understand the docs, this should work, because username
> without realm are used with defaultdomain as result. But this doesn't
> happen for sasl authentication.
> 
> Let's say I have user georg with password georgpass on the old server. I
> thought on the new server, I would leave the mailbox on cyrus like
> user/georg, and for auth in the mysql database I would just add to each
> username the  <at> servername.domainname.com, so that if the default domain
> is added to the username we should be able to log in.
> 
> But something else happens (trying to use the pop server):
> If I log in from a remote computer, reading the debug log, I see that
> the user is being tested with domainname.com as realm (username:
> georg <at> domainname.com).
> But if I log in from localhost, no realm is added(username: georg).
> 
> What I don't understand after spending much time reading the docs is this:
> Who adds the realm, imapd or sasl? And why are they different depending
> on the location from where I try to log in? And whatever adds the realm,
> how is it decided what to use? And finally, how can I change it?
> 
> Thanks in advance!
> 
> Best regards
> 
> Georg

With virtdomains turned on then cyrus will use the domain sent with the
username if the user logs in fully qualified.  Otherwise cyrus does a
reverse lookup on the IP that the user logged in on uses the domain from
that lookup as the user's domain.  The lookup can be either from DNS or
hosts file or any other means.

Hope that helps,

--

-- 
Brad Crotchett, RHCE
brad <at> bradandkim.net

----
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Permalink | Reply | 2 comments |
headers
Georg Gell | 3 Oct 2005 15:57
Favicon
Gravatar

Re: cyrus sasl realm problem

brad schrieb:
> On Sat, 2005-10-01 at 13:25 +0200, Georg Gell wrote:
> 
>>Hello,
>>
>>I have an old server with about 50 mail users, which uses cyrus imapd
>>with sasl and pam_mysql. The server settings are:
>>unixhierarchysep: no
>>virtdomains: no
>>
>>On the new server, I want users to be able to log in with their email
>>addresses as username, but I want to let the old users use their old
>>username/password combinations. So I set
>>unixhierarchysep: yes
>>virtdomains: yes
>>defaultdomain: servername.domainname.com
>>sasl_pwcheck_method: auxprop
>>sasl_sql_engine: mysql
>>sasl_sql_select: SELECT password FROM accountuser WHERE username = '%u <at> %r'
>>...
>>
>>This works well. But I want to migrate the old account to the new
>>machine. As I understand the docs, this should work, because username
>>without realm are used with defaultdomain as result. But this doesn't
>>happen for sasl authentication.
>>
>>Let's say I have user georg with password georgpass on the old server. I
>>thought on the new server, I would leave the mailbox on cyrus like
>>user/georg, and for auth in the mysql database I would just add to each
>>username the  <at> servername.domainname.com, so that if the default domain
>>is added to the username we should be able to log in.
>>
>>But something else happens (trying to use the pop server):
>>If I log in from a remote computer, reading the debug log, I see that
>>the user is being tested with domainname.com as realm (username:
>>georg <at> domainname.com).
>>But if I log in from localhost, no realm is added(username: georg).
>>
>>What I don't understand after spending much time reading the docs is this:
>>Who adds the realm, imapd or sasl? And why are they different depending
>>on the location from where I try to log in? And whatever adds the realm,
>>how is it decided what to use? And finally, how can I change it?
>>
>>Thanks in advance!
>>
>>Best regards
>>
>>Georg
> 
> 
> With virtdomains turned on then cyrus will use the domain sent with the
> username if the user logs in fully qualified.  Otherwise cyrus does a
> reverse lookup on the IP that the user logged in on uses the domain from
> that lookup as the user's domain.  The lookup can be either from DNS or
> hosts file or any other means.
> 
> Hope that helps,
> 
Thanks for the quick reply. Sadly this is not true on my system.
trying imtest:
moritz> imtest -a georg localhost (on moritz.have2.com)
ebug.log:
Oct  3 15:46:21 [imap] sql plugin doing query SELECT password FROM
accountuser WHERE username = 'georg <at> moritz.have2.com';_
 moritz.have2.com is the fqdn of my sever.

moritz> imtest -a georg moritz.have2.com (on moritz.have2.com)
Oct  3 15:49:23 [imap] sql plugin doing query SELECT password FROM
accountuser WHERE username = 'georg <at> have2.com';_

notebook> imtest -a georg moritz.have2.com (from home dial up)
Oct  3 15:49:23 [imap] sql plugin doing query SELECT password FROM
accountuser WHERE username = 'georg <at> have2.com';_

Where does the realm part come from? If I connect to localhost, it uses
the server's fqdn (which is also the defaultdomain in my imapd.conf),
that's what I'd expect. If I connect from the same machine to the
external IP, I have have2.com as realm. Why? And even worse from my
dial-up ip (reverse lookup looks like dial-up-XXX.highway.telekom.at), I
have also have2.com as realm. So the realm cannot be related to the ip
of the logged in user, or am I missing something?

Regards

Georg
----
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Permalink | Reply | 1 comment |
headers
brad | 3 Oct 2005 16:36

Re: cyrus sasl realm problem

On Mon, 2005-10-03 at 15:57 +0200, Georg Gell wrote:
> brad schrieb:

> > With virtdomains turned on then cyrus will use the domain sent with the
> > username if the user logs in fully qualified.  Otherwise cyrus does a
> > reverse lookup on the IP that the user logged in on uses the domain from
> > that lookup as the user's domain.  The lookup can be either from DNS or
> > hosts file or any other means.
> > 
> > Hope that helps,
> > 
> Thanks for the quick reply. Sadly this is not true on my system.
> trying imtest:
> moritz> imtest -a georg localhost (on moritz.have2.com)
> ebug.log:
> Oct  3 15:46:21 [imap] sql plugin doing query SELECT password FROM
> accountuser WHERE username = 'georg <at> moritz.have2.com';_
>  moritz.have2.com is the fqdn of my sever.
> 
> moritz> imtest -a georg moritz.have2.com (on moritz.have2.com)
> Oct  3 15:49:23 [imap] sql plugin doing query SELECT password FROM
> accountuser WHERE username = 'georg <at> have2.com';_
> 
> notebook> imtest -a georg moritz.have2.com (from home dial up)
> Oct  3 15:49:23 [imap] sql plugin doing query SELECT password FROM
> accountuser WHERE username = 'georg <at> have2.com';_
> 
> Where does the realm part come from? If I connect to localhost, it uses
> the server's fqdn (which is also the defaultdomain in my imapd.conf),
> that's what I'd expect. If I connect from the same machine to the
> external IP, I have have2.com as realm. Why? And even worse from my
> dial-up ip (reverse lookup looks like dial-up-XXX.highway.telekom.at), I
> have also have2.com as realm. So the realm cannot be related to the ip
> of the logged in user, or am I missing something?
> 
> Regards
> 
> Georg

I think this would be the expected behavior.  It is stripping the sub-
domain which IIRC is what it should do.  But I am not positive why it is
not stripping the sub-domain on your localhost  test.  Might be the way
your hosts file is set up or it may not strip the sub-domain if it
resolves it from the hosts file but does if it resolves it from DNS.

--

-- 
Brad Crotchett, RHCE
brad <at> bradandkim.net

----
Cyrus Home Page: http://asg.web.cmu.edu/cyrus
Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu
List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
Permalink | Reply | 0 comments |

Gmane