auth with entire email addr instead of just username

Reindl Harald h.reindl at thelounge.net
Thu Oct 2 20:28:52 UTC 2014


Am 02.10.2014 um 22:24 schrieb Cliff Hayes:
> Good point.
> But when I try to add a user with the "user at domain" format using the useradd command I get error...
> useradd: invalid user name 'user at domain.com'
>
> Here is output you requested:

passdb {
  driver = pam
}
userdb {
  driver = passwd
}

this are local users - never ever mixed mail and system users here

http://wiki2.dovecot.org/VirtualUsers
http://wiki2.dovecot.org/Sasl

combined both you have a uniqe auth-provider for incoming and
outgoing mail independent of system users

> # 2.0.9: /etc/dovecot/dovecot.conf
> # OS: Linux 2.6.32-431.29.2.el6.x86_64 x86_64 Scientific Linux release 6.5 (Carbon)
> auth_debug = yes
> auth_debug_passwords = yes
> auth_verbose = yes
> auth_verbose_passwords = plain
> mail_access_groups = mail
> mail_debug = yes
> mail_location = maildir:~/Maildir
> mbox_write_locks = fcntl
> namespace {
>   hidden = no
>   inbox = yes
>   list = yes
>   location =
>   prefix =
>   separator = .
>   subscriptions = yes
>   type = private
> }
> passdb {
>   driver = pam
> }
> protocols = imap
> ssl_ca = </etc/pki/dovecot/certs/intermediate.crt
> ssl_cert = </etc/pki/dovecot/certs/avalon20140929.crt
> ssl_key = </etc/pki/dovecot/private/avalon20140929.key
> userdb {
>   driver = passwd
> }
> verbose_ssl = yes
> protocol imap {
>   imap_id_log = *
> }
> 
> 
> On 10/2/2014 3:19 PM, Reindl Harald wrote:
>> Am 02.10.2014 um 22:13 schrieb Cliff Hayes:
>>> I am trying to configure a new IMAP based mail server.
>>> I thought I had everything correct.
>>> I have dovecot logging turned up and see that dovecot is processing the entire email address as the username like
>>> this...
>>> Oct  2 14:52:20 servername dovecot: auth: Debug: pam(testuser at domain.com,1.2.3.4): lookup service=dovecot
>>> ... and of course pam is reporting that as an invalid user.
>>> Moments ago when all was mbox, authentication worked fine.
>>> I can see Thunderbird has the username correct (no domain).
>>> What is tacking on the domain and how do I fix?
>> output of "dovecot -n" would be in general a good start
>>
>> * how looks your user database
>> * if you don't use domain as part of the username what do you do
>>    in case you get a second domain and names collide
>> * these days the full qualified mail address as username is common
>>    and in caes of virtual users you can feed all from the same
>>    source instead hanlde the localpart special for login-names

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <http://dovecot.org/pipermail/dovecot/attachments/20141002/8d093b20/attachment.sig>


More information about the dovecot mailing list