[Dovecot] master user auth problem

Mon Aug 13 11:24:57 EEST 2012

Hi,

I tried to setup a master auth authentication. I also use
auth_pop3wrapper to authenticate from qmail-ldap. But I could not
login with master user.

Here is the config.
auth_master_user_separator = *
passdb {
  driver = passwd-file
  args = /usr/local/etc/dovecot/passwd.masterusers
  master = yes
  pass = yes
}

  passdb  {
    # Path for checkpassword binary
    driver = checkpassword
    args = /var/qmail/bin/auth_popwrapper
  }
userdb {
        driver =  prefetch
 }

cat /opt/surmail/etc/dovecot/passwd.masterusers
user:{SHA}W6ph5Mm5Pz8GgiULbPgzG37mj9g=

The log:

#telnet localhost 143

Trying 0.0.0.0...
Connected to 0.
Escape character is '^]'.
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE
IDLE STARTTLS AUTH=PLAIN] SurGATE Messaging Suite POP3/IMAP ready.
o login user at domain.com*user password
o NO [AUTHORIZATIONFAILED] Authorization failed

Aug 09 16:17:44 auth: Debug:
auth(user,127.0.0.1,master,<KmGNDdXGrwB/AAAB>): Master user lookup for
login: user at domain.com
Aug 09 16:17:44 auth: Debug:
passwd-file(user,127.0.0.1,master,<KmGNDdXGrwB/AAAB>): lookup:
user=user file= /usr/local/etc/dovecot/passwd.masterusers
Aug 09 16:17:44 auth: Info:
passdb(user,127.0.0.1,master,<KmGNDdXGrwB/AAAB>): Master user logging
in as user at domain.com
Aug 09 16:17:44 auth: Debug:
checkpassword(user at domain.com,127.0.0.1,<KmGNDdXGrwB/AAAB>):  execute:
/var/qmail/bin/auth_popwrapper
/usr/local/dovecot/libexec/dovecot/checkpassword-reply
Aug 09 16:17:44 auth: Debug:
checkpassword(user at domain.com,127.0.0.1,<KmGNDdXGrwB/AAAB>): Received
input:
Aug 09 16:17:44 auth: Debug:
checkpassword(user at domain.com,127.0.0.1,<KmGNDdXGrwB/AAAB>):
exit_status=3
Aug 09 16:17:44 auth: Info:
checkpassword(user at domain.com,127.0.0.1,<KmGNDdXGrwB/AAAB>): Login
failed (status=3)
Aug 09 16:17:46 auth: Debug: client out: FAIL   1
user=user at domain.com authz
Aug 09 16:18:08 auth: Debug: client in: AUTH    2       PLAIN
service=imap    secured session=KmGNDdXGrwB/AAAB        lip=127.0.0.1
 rip=127.0.0.1   lport=143       rport=48047     resp=<hidden>