[Dovecot] Dovecot PAM sessions with Maildir
Sean Smitz
sean.smitz at us.fujitsu.com
Wed Aug 6 21:03:46 EEST 2008
I am configuring a new mail server on RHEL 5 x64. I have configured
dovecot as follows:
...
protocols = imaps
...
ssl_cert_file = /etc/pki/dovecot/certs/mailserver.cer
ssl_key_file = /etc/pki/dovecot/private/mailserver.pem
...
login_process_size = 64
...
mail_location = maildir:~/Maildir
...
passdb pam {
args = "session=yes cache_key=%u%s dovecot"
}
...
I'm getting the following error messages in /var/log/maillog:
Aug 5 20:57:45 [hostname] dovecot: imap-login: Aborted login:
rip=::ffff:128.8.244.15, lip=::ffff:[server], TLS
Aug 5 21:01:34 [hostname] dovecot: imap-login: Aborted login:
user=<[me]>, method=PLAIN, rip=::ffff:[server], lip=::ffff:[server], TLS
I'm getting the following messages in /var/log/audit/audit.log:
type=USER_AUTH msg=audit(1217984152.016:347): user pid=7669 uid=0
auid=10243 subj=user_u:system_r:dovecot_auth_t:s0 msg='PAM:
authentication acct="[me]" : exe="/usr/libexec/dovecot/dovecot-auth"
(hostname=::ffff:[client], addr=::ffff:[client], terminal=dovecot
res=success)'
type=USER_ACCT msg=audit(1217984152.017:348): user pid=7669 uid=0
auid=10243 subj=user_u:system_r:dovecot_auth_t:s0 msg='PAM: accounting
acct="[me]" : exe="/usr/libexec/dovecot/dovecot-auth"
(hostname=::ffff:[client], addr=::ffff:[client], terminal=dovecot
res=success)'
type=USER_START msg=audit(1217984152.017:349): user pid=7669 uid=0
auid=10243 subj=user_u:system_r:dovecot_auth_t:s0 msg='PAM: session open
acct="[me]" : exe="/usr/libexec/dovecot/dovecot-auth"
(hostname=::ffff:[client], addr=::ffff:[client], terminal=dovecot
res=failed)'
I find the message in the audit.log interesting because I configured the
connection with SSL not TLS, but if I use TLS the result is the same.
More information about the dovecot
mailing list