[Dovecot] Denying user won't work as expected
Hello
I tried to use the "deny user" feature but it does not work as expected ... ( dovecot 2.0.12 ) we use LDAP as authentication source
I modified the 10-auth.conf file as the following
#
!include auth-deny.conf.ext #!include auth-master.conf.ext
#!include auth-system.conf.ext #!include auth-sql.conf.ext !include auth-ldap.conf.ext #!include auth-passwdfile.conf.ext #!include auth-checkpassword.conf.ext #!include auth-vpopmail.conf.ext #!include auth-static.conf.ext
I modified the auth-deny.conf.ext file as the following
passdb { driver = ldap deny = yes
# File contains a list of usernames, one per line args = /usr/local/etc/dovecot/deny-users }
I have tested writting one user (me) in the /usr/local/etc/dovecot/deny-users and the result is the login is denied for ALL users ...
If I do not uncomment the !include auth-deny.conf.ext
line in 10-auth.conf file everything works well I really need this feature
Thanks for any help
On Mon, 2011-06-27 at 09:50 +0200, Frank Bonnet wrote:
passdb { driver = ldap deny = yes
# File contains a list of usernames, one per line args = /usr/local/etc/dovecot/deny-users }
I have tested writting one user (me) in the /usr/local/etc/dovecot/deny-users
You have driver=ldap there, which means that LDAP tries to read the deny-users file as its configuration file.
and the result is the login is denied for ALL users ...
I'm surprised that it even starts up..
If replacing driver=ldap with driver=passwd-file doesn't help, show your actual dovecot -n output.
On 06/28/2011 02:11 AM, Timo Sirainen wrote:
On Mon, 2011-06-27 at 09:50 +0200, Frank Bonnet wrote:
passdb { driver = ldap deny = yes
# File contains a list of usernames, one per line args = /usr/local/etc/dovecot/deny-users}
I have tested writting one user (me) in the /usr/local/etc/dovecot/deny-users You have driver=ldap there, which means that LDAP tries to read the deny-users file as its configuration file.
and the result is the login is denied for ALL users ... I'm surprised that it even starts up..
If replacing driver=ldap with driver=passwd-file doesn't help, show your actual dovecot -n output.
If I do that the denying does not work , I'we written my login in
/usr/local/etc/dovecot/deny-users and I am still able to log in ( after restarting dovecot of course ) see attached the dovecot -n output
Thanks
On Tue, 2011-06-28 at 10:49 +0200, Frank Bonnet wrote:
If I do that the denying does not work , I'we written my login in
/usr/local/etc/dovecot/deny-users and I am still able to log in ( after restarting dovecot of course ) see attached the dovecot -n output
There is no deny passdb in your dovecot -n output.
participants (2)
-
Frank Bonnet
-
Timo Sirainen