[Dovecot] 2.0.5 masteruser problem with uncached users

Timo Sirainen tss at iki.fi
Thu Oct 14 17:46:28 EEST 2010


On Fri, 2010-10-08 at 15:38 +0200, Ralf Hildebrandt wrote:

> # fuer user*masteruser logins
> passdb {
>   args = /usr/dovecot-2/etc/dovecot/dovecot.masteruser
>   driver = passwd-file
>   master = yes
>   pass = yes

You can't use pass=yes with passdb pam. From wiki:

"You should also add the pass=yes setting to the master passdb if
possible. It means that Dovecot verifies that the login user really
exists before allowing the master user to log in. Without the setting if
a nonexistent login username is given, depending on the configuration,
it could either return an internal login error (the userdb lookup
failed) or create a whole new user (with eg. static userdb). pass=yes
doesn't work with PAM or LDAP with auth_bind=yes, because both of them
require knowing the user's password."

But .. yeah, maybe a fallback should be to do a userdb lookup instead.
Or change it to a pass=yes|no|userdb setting.



More information about the dovecot mailing list