[Dovecot] login_user & first_valid_uid
Hi all,
I have next settings in .conf file
...
# # Login user for SQL-based virtual users # login_user = dovecot first_valid_uid = 100 first_valid_gid = 100 ...
System user dovecot has UID/GID = 101/101. But every time when user logins I see in log file
Oct 29 15:51:25 orion dovecot: Logins with login process UID 101 (user elnino) not permitted (see login_user in config file). Oct 29 15:51:25 orion dovecot: auth(default): Growing pool 'plain_auth_request' with: 1024
Why dovecot generate these warnings and how I can get rid of them?
Thanks in advance, Alexander-- Kind Regards, Alexander Shikoff minotaur@crete.org.ua
Check your password file...perhaps you have two users with the same uid?
Alexander Shikoff wrote:
Hi all,
I have next settings in .conf file
...
# # Login user for SQL-based virtual users # login_user = dovecot first_valid_uid = 100 first_valid_gid = 100 ...
System user dovecot has UID/GID = 101/101. But every time when user logins I see in log file
Oct 29 15:51:25 orion dovecot: Logins with login process UID 101 (user elnino) not permitted (see login_user in config file). Oct 29 15:51:25 orion dovecot: auth(default): Growing pool 'plain_auth_request' with: 1024
Why dovecot generate these warnings and how I can get rid of them?
Thanks in advance, Alexander
On Sat, Oct 29, 2005 at 10:18:30AM -0500, Robert Cooper wrote:
Check your password file...perhaps you have two users with the same uid?
No. There is only one user with UID = 101:
/var/log>grep :101: /etc/passwd dovecot:*:101:101:Dovecot:/home/dovecot:/sbin/nologin
-- Kind Regards, Alexander Shikoff minotaur@crete.org.ua Mob.: +380 67 946 31 49
Alexander Shikoff wrote:
first_valid_uid = 100 first_valid_gid = 100
and last_valid_uid/last_valid_gid?
System user dovecot has UID/GID = 101/101. But every time when user logins Oct 29 15:51:25 orion dovecot: Logins with login process UID 101 (user elnino)
So uid 101 is "elnino", not "dovecot". Or did you assign this uid to both users?
my working config:
first_valid_uid = 103 last_valid_uid = 103
first_valid_gid = 104 last_valid_gid = 104
I use "userdb static" with uid=103 and gid=104.
On Sun, Oct 30, 2005 at 10:40:41AM +0100, Jakob Hirsch wrote:
Alexander Shikoff wrote:
first_valid_uid = 100 first_valid_gid = 100
and last_valid_uid/last_valid_gid? Neither last_valid_uid nor last_valid_gid are not set.
But when I set them both to 102 the behaviour does not change.
So uid 101 is "elnino", not "dovecot". Or did you assign this uid to both users?
No. User elnino placed in MySQL database. And two queries are used:
password_query = SELECT password FROM users WHERE login = '%Lu'
user_query = SELECT "mbox:/var/mail/virtual/%Ld/L%n:INBOX=/var/mail/virtual/%Ld/L%n:INDEX=MEMORY" AS mail, 'dovecot' AS uid, 'dovecot' AS gid FROM users WHERE login = '%Lu'
So I'm still getting next messages in log file: Oct 30 13:26:39 orion dovecot: Logins with login process UID 101 (user sl) not permitted (see login_user in config file). Oct 30 13:26:39 orion dovecot: auth(default): Growing pool 'plain_auth_request' with: 1024
:(
-- Kind Regards, Alexander Shikoff minotaur@crete.org.ua Mob.: +380 67 946 31 49
Alexander Shikoff wrote:
password_query = SELECT
passwordFROMusersWHERE login = '%Lu' user_query = SELECT "mbox:/var/mail/virtual/%Ld/L%n:INBOX=/var/mail/virtual/%Ld/L%n:INDEX=MEMORY" ASuid, 'dovecot' ASgidFROM users WHERE login = '%Lu'
So you seem to use a 0.99 version, right? Just an idea: Did you try to use numerical uid/gid instead of "dovecot"?
btw, you could even spare the second query with "auth_userdb = static ..." (though I'm not sure, 0.99 time is a while ago...)
On Sun, Oct 30, 2005 at 01:01:09PM +0100, Jakob Hirsch wrote:
Alexander Shikoff wrote:
password_query = SELECT
passwordFROMusersWHERE login = '%Lu' user_query = SELECT "mbox:/var/mail/virtual/%Ld/L%n:INBOX=/var/mail/virtual/%Ld/L%n:INDEX=MEMORY" ASuid, 'dovecot' ASgidFROM users WHERE login = '%Lu'So you seem to use a 0.99 version, right? No again :) 1.0-alpha3 Just an idea: Did you try to use numerical uid/gid instead of "dovecot"? I've tried this already. The same behaviour.
-- Kind Regards, Alexander Shikoff minotaur@crete.org.ua Mob.: +380 67 946 31 49
On Sat, 2005-10-29 at 15:56 +0300, Alexander Shikoff wrote:
Oct 29 15:51:25 orion dovecot: Logins with login process UID 101 (user elnino) not permitted (see login_user in config file).
This means that you're trying to log in as "elnino" user which has the same UID as what you've set to login_user in dovecot.conf. That isn't allowed.
On Sun, Oct 30, 2005 at 05:47:47PM +0200, Timo Sirainen wrote:
On Sat, 2005-10-29 at 15:56 +0300, Alexander Shikoff wrote:
Oct 29 15:51:25 orion dovecot: Logins with login process UID 101 (user elnino) not permitted (see login_user in config file).
This means that you're trying to log in as "elnino" user which has the same UID as what you've set to login_user in dovecot.conf. That isn't allowed.
Thanks. I understood my mistake. FYI: user elnino can access it's mailbox regardless of this warning: Oct 29 14:16:25 orion dovecot: Logins with login process UID 101 (user elnino) not permitted (see login_user in config file). Oct 29 14:16:25 orion dovecot: auth(default): Growing pool 'plain_auth_request' with: 1024 Oct 29 14:16:25 orion dovecot: pop3-login: Login: user=<elnino>, method=PLAIN, rip=192.168.3.1, lip=192.168.5.23 Oct 29 14:16:25 orion dovecot: pop3(elnino): Logout. top=0/0, retr=1/ del=1/1, size=3245
-- Kind Regards, Alexander Shikoff minotaur@crete.org.ua Mob.: +380 67 946 31 49
participants (4)
-
Alexander Shikoff
-
Jakob Hirsch
-
Robert Cooper
-
Timo Sirainen