[Dovecot] Dovecot PAM sessions with Maildir
Timo Sirainen
tss at iki.fi
Wed Aug 6 21:11:00 EEST 2008
On Aug 6, 2008, at 2:03 PM, Sean Smitz wrote:
> I am configuring a new mail server on RHEL 5 x64. I have configured
> dovecot as follows:
> ...
> protocols = imaps
> ...
> ssl_cert_file = /etc/pki/dovecot/certs/mailserver.cer
> ssl_key_file = /etc/pki/dovecot/private/mailserver.pem
> ...
> login_process_size = 64
> ...
> mail_location = maildir:~/Maildir
> ...
> passdb pam {
> args = "session=yes cache_key=%u%s dovecot"
> }
> ...
>
> I'm getting the following error messages in /var/log/maillog:
> Aug 5 20:57:45 [hostname] dovecot: imap-login: Aborted login:
> rip=::ffff:128.8.244.15, lip=::ffff:[server], TLS
> Aug 5 21:01:34 [hostname] dovecot: imap-login: Aborted login:
> user=<[me]>, method=PLAIN, rip=::ffff:[server], lip=::ffff:[server],
> TLS
You could see if auth_debug=yes shows more. Although debugging PAM
problems is annoying because PAM's logging is so bad.
> I find the message in the audit.log interesting because I configured
> the connection with SSL not TLS, but if I use TLS the result is the
> same.
I think you're confusing SSL and TLS with imaps port and STARTTLS
command (and so do many client UIs..). You're going to be using TLS
connections in any case.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 194 bytes
Desc: This is a digitally signed message part
Url : http://dovecot.org/pipermail/dovecot/attachments/20080806/03d834b5/attachment.bin
More information about the dovecot
mailing list